JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.232.14.138

185.232.14.138 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 66%: ?

66%

ISP	Hostinger International Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	hostinger.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.232.14.138

Whois 185.232.14.138

IP Abuse Reports for 185.232.14.138:

This IP address has been reported a total of 13 times from 10 distinct sources. 185.232.14.138 was first reported on June 6th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Lino Project	2026-06-06 19:55:46 (3 hours ago)	CrowdSec abuse IP report (host SRV-2) Scenario: crowdsecurity/http-sensitive-files	Hacking
🇷🇺 DZBOT	2026-06-06 18:49:17 (4 hours ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
Anonymous	2026-06-06 18:45:03 (4 hours ago)	Bot / scanning and/or hacking attempts: GET /backend/.env HTTP/1.1, GET /.env HTTP/1.1, GET /member/ ... show more Bot / scanning and/or hacking attempts: GET /backend/.env HTTP/1.1, GET /.env HTTP/1.1, GET /member/.env HTTP/1.1, GET /admin/.env HTTP/1.1, GET /laravel/.env HTTP/1.1, GET /api/.env HTTP/1.1, GET /dev/.env HTTP/1.1, GET /core/.env HTTP/1.1, GET /app/.env HTTP/1.1 show less	Hacking Web App Attack
🇫🇷 masterguru	2026-06-06 17:48:36 (5 hours ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-196)	Hacking Web App Attack
🇨🇭 Origon	2026-06-06 16:32:02 (6 hours ago)	http-sensitive-files - IP: 185.232.14.138 - time="2026-06-06T18:32:01+02:00" level=info msg="(555f6 ... show more http-sensitive-files - IP: 185.232.14.138 - time="2026-06-06T18:32:01+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 185.232.14.138 (SG/47583) : 4h ban on Ip 185.232.14.138" module=db show less	Web App Attack
🇩🇪 big-cloud.nl	2026-06-06 16:31:11 (6 hours ago)	Try to access /arrangementen/core/.env	Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 16:29:01 (6 hours ago)	(mod_security) mod_security (id:210492) triggered by 185.232.14.138 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 185.232.14.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 12:28:54.735829 2026] [security2:error] [pid 7575:tid 7601] [client 185.232.14.138:29336] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "securitymediaservices.com"] [uri "/core/.env"] [unique_id "aiRKxs8JZ2AU16F7BXu2uwAAARY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 13:59:33 (9 hours ago)	(mod_security) mod_security (id:210492) triggered by 185.232.14.138 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 185.232.14.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 09:59:25.424595 2026] [security2:error] [pid 26383:tid 26383] [client 185.232.14.138:50382] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davefortier.com"] [uri "/app/.env"] [unique_id "aiQnvRxr_ncI3apGaWJnmAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-06 12:06:23 (11 hours ago)	Blocked: Reason='Suspicious traffic score=80 (review-based detection)'; Requests=24	Hacking
🇬🇧 consul.to	2026-06-06 10:49:37 (12 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 mnsf	2026-06-06 10:05:14 (13 hours ago)	Abuse Detected (9)	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-06 09:33:01 (13 hours ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-197)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 09:02:29 (14 hours ago)	(mod_security) mod_security (id:210492) triggered by 185.232.14.138 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 185.232.14.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 05:02:21.904707 2026] [security2:error] [pid 15320:tid 15320] [client 185.232.14.138:17810] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "madisonmedia.ai"] [uri "/.env"] [unique_id "aiPiHbjKPrhM8r9cLojomQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 27.155.120.135

🇮🇷 5.232.14.189

🇷🇴 2.57.121.112

🇺🇸 198.211.112.71

🇮🇩 103.171.85.192

🇬🇧 51.195.244.36

🇮🇳 45.122.123.88

🇺🇸 24.242.241.150

🇮🇷 2.180.235.99

🇨🇳 220.180.166.214

🇵🇷 196.42.11.108

🇦🇷 168.90.255.34

🇺🇸 147.185.132.126

🇨🇳 123.12.227.32

🇬🇧 87.106.65.126

🇪🇸 196.196.150.6

🇦🇺 115.166.18.92

🇫🇷 82.25.63.194

🇮🇹 78.212.150.156

🇮🇳 125.19.245.34