JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.16.109.194

182.16.109.194 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 89%: ?

89%

ISP	Netsec Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45753
Domain Name	netsec.com
Country	🇭🇰 Hong Kong
City	Tung Chung, Islands

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.16.109.194

Whois 182.16.109.194

IP Abuse Reports for 182.16.109.194:

This IP address has been reported a total of 31 times from 23 distinct sources. 182.16.109.194 was first reported on May 28th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-25 21:23:47 (3 days ago)	Abuse Detected (2)	Brute-Force Web App Attack
🇨🇦 internetworld	2026-06-24 23:49:36 (4 days ago)	internetworld-prod-01 Fail2Ban ban. Jail=nginx-web-probe-iw. Sanitized automatic report from interne ... show more internetworld-prod-01 Fail2Ban ban. Jail=nginx-web-probe-iw. Sanitized automatic report from internetworld.ca server security monitoring. show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 23:39:24 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 19:39:14.819326 2026] [security2:error] [pid 30108:tid 30108] [client 182.16.109.194:50097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.greenmountainfeeds.com"] [uri "/.env"] [unique_id "ajxqoqGqpvkKc4AjkXaO2gAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 21:56:35 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 17:56:25.431868 2026] [security2:error] [pid 28644:tid 28644] [client 182.16.109.194:51282] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ictsl.net"] [uri "/.env"] [unique_id "ajxSiY8DtXHAzNUgmOkNOAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 MusicLibrary	2026-06-24 21:41:23 (4 days ago)	Attempted access to sensitive configuration files (.env, .git, etc.)	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 21:04:15 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 17:04:05.625626 2026] [security2:error] [pid 21838:tid 21838] [client 182.16.109.194:53959] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "urlpick.com"] [uri "/.env"] [unique_id "ajxGRRBEf-xc0m33hXX6RQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 20:48:40 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 16:48:29.166042 2026] [security2:error] [pid 7182:tid 7182] [client 182.16.109.194:55458] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.justinrudd.com"] [uri "/.env"] [unique_id "ajxCnR6QHZiaV0EclhOpOwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 alessio loto	2026-06-24 20:21:38 (4 days ago)	WAF Detection: Security_Scanner_Blocked (Abusive IP). AI Confirmed Attack Payload.	Bad Web Bot
Anonymous	2026-06-24 20:14:23 (4 days ago)	[Firewall Canary] Temporary ban due to firewall rule match [URI:*/.env]	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 20:09:23 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 16:09:11.299735 2026] [security2:error] [pid 6120:tid 6120] [client 182.16.109.194:55189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cvoguemag.com"] [uri "/.env"] [unique_id "ajw5Zy83kQofzpea19bijgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 19:48:39 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 15:48:28.605273 2026] [security2:error] [pid 16185:tid 16315] [client 182.16.109.194:60837] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "internationalboardofstandards.com"] [uri "/.env"] [unique_id "ajw0jDoMy6btVBbQR8EUsQAAAkk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 19:20:47 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 15:20:34.465171 2026] [security2:error] [pid 1551:tid 1608] [client 182.16.109.194:59045] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "asetiadi.net"] [uri "/.env"] [unique_id "ajwuAldnXDqFrw_rFZI-igAAARU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 18:37:11 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 182.16.109.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 14:36:57.612876 2026] [security2:error] [pid 13039:tid 13039] [client 182.16.109.194:61358] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.darrenj.com"] [uri "/.env"] [unique_id "ajwjyfUIoGo2qUu1rRctSwAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-06-24 18:21:15 (4 days ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.env	Web App Attack
🇨🇦 polycoda	2026-06-20 21:57:31 (1 week ago)	AutoBlock: 🎯 Vulnerability Scanner (Non Decay-Based)	Hacking Web App Attack

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.206.182.220

🇨🇦 85.217.149.28

🇨🇳 47.96.85.128

🇺🇸 44.202.77.53

🇬🇧 2a03:b0c0:1:e0:0:1:8a29:1001

🇺🇸 2001:470:1:fb5::187

🇵🇰 175.107.244.96

🇨🇳 171.108.182.228

🇮🇩 163.7.11.155

🇭🇰 144.48.243.18

🇬🇧 138.68.154.41

🇺🇸 104.243.35.45

🇺🇸 65.49.1.93

🇫🇷 62.210.142.162

🇺🇸 44.38.59.230

🇻🇳 42.96.20.16

🇯🇵 20.89.48.223

🇺🇸 18.207.79.144

🇨🇳 14.103.111.110

🇫🇷 5.39.1.238