JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.242.3.12

185.242.3.12 was found in our database!

This IP was reported 271 times. Confidence of Abuse is 100%: ?

100%

ISP	Felcloud
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60223
Domain Name	felcloud.net
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.242.3.12

Whois 185.242.3.12

IP Abuse Reports for 185.242.3.12:

This IP address has been reported a total of 271 times from 166 distinct sources. 185.242.3.12 was first reported on January 27th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 jfz-abuse	2026-06-04 07:12:43 (1 hour ago)	fail2ban: apache-filepath-recon ...	Web App Attack
🇺🇸 donarev419	2026-06-04 06:56:20 (1 hour ago)	Connection to port 80 with data transfer. Data preview: GET /.env HTTP/1.1 Host: 107.175.212.44 Us ... show more Connection to port 80 with data transfer. Data preview: GET /.env HTTP/1.1 Host: 107.175.212.44 User-agent: Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; H show less	Port Scan Hacking
🇺🇸 RH5	2026-06-04 06:47:57 (1 hour ago)	Restricted URL probing (/.env) (UTC 2026-06-04 06:47)	Web App Attack
🇩🇪 piticu iuli	2026-06-04 05:13:15 (3 hours ago)	(mod_security) mod_security triggered on hostname [redacted] 185.242.3.12 (-)	SQL Injection
🇺🇸 ersei.net	2026-06-04 04:06:17 (4 hours ago)	Brute force multiple 403s	Brute-Force
🇬🇧 andypiper	2026-06-04 01:03:08 (7 hours ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇬🇧 martenmark	2026-06-04 00:56:55 (7 hours ago)	185.242.3.12 - - [04/Jun/2026:00:56:54 +0000] "GET /.env HTTP/1.1" 301 659 "-" "Mozilla/5.0 (Linux; ... show more 185.242.3.12 - - [04/Jun/2026:00:56:54 +0000] "GET /.env HTTP/1.1" 301 659 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" ... show less	Web App Attack
🇩🇪 femboy.cat	2026-06-04 00:09:43 (8 hours ago)	Port scan to tcp/443 from 185.242.3.12	Brute-Force
Anonymous	2026-06-03 22:03:48 (10 hours ago)	185.242.3.12 - - [04/Jun/2026:07:03:42 +0900] "GET /.env HTTP/1.1" 403 495 "-" "Mozilla/5.0 (Linux; ... show more 185.242.3.12 - - [04/Jun/2026:07:03:42 +0900] "GET /.env HTTP/1.1" 403 495 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 185.242.3.12 - - [04/Jun/2026:07:03:43 +0900] "POST / HTTP/1.1" 403 495 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 185.242.3.12 - - [04/Jun/2026:07:03:47 +0900] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 495 "-" "python-requests/2.25.1" ... show less	Brute-Force
🇨🇳 Peter Yu	2026-06-03 22:00:53 (10 hours ago)		Bad Web Bot Web App Attack
🇦🇹 Erpelstolz	2026-06-03 21:40:15 (10 hours ago)	VM 131: 185.242.3.12 - - [03/Jun/2026:23:40:15 +0200] "POST / HTTP/1.1" 200 3118	Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-03 20:08:02 (12 hours ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇩🇪 Skyrider	2026-06-03 19:56:37 (12 hours ago)	crowdsecurity/CVE-2017-9841	Hacking
🇬🇧 thetomtaylor.co.uk	2026-06-03 19:07:02 (13 hours ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [wa01,wa02]	Bad Web Bot Web App Attack
🇦🇺 afleventoffice.com.au	2026-06-03 18:20:58 (13 hours ago)	GET /.env HTTP/1.1	Web App Attack

Showing 1 to 15 of 271 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 172.217.33.155

🇺🇸 66.132.195.46

🇿🇦 41.56.132.74

🇧🇪 34.140.177.248

🇻🇳 14.191.107.17

🇹🇼 198.235.24.22

🇬🇧 195.206.182.201

🇧🇷 181.214.221.57

🇺🇸 134.122.122.188

🇨🇳 120.48.108.170

🇨🇳 117.156.78.8

🇲🇲 103.105.172.7

🇫🇮 95.216.75.224

🇺🇸 74.7.229.118

🇩🇪 47.245.136.243

🇨🇦 20.116.34.103

🇮🇪 20.105.65.67

🇺🇸 203.161.38.233

🇮🇩 168.110.195.99

🇺🇸 150.107.38.143