JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.3.139.141

192.3.139.141 was found in our database!

This IP was reported 230 times. Confidence of Abuse is 100%: ?

100%

ISP	ColoCrossing
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Hostname(s)	192-3-139-141-host.colocrossing.com
Domain Name	colocrossing.com
Country	🇺🇸 United States of America
City	Buffalo, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.3.139.141

Whois 192.3.139.141

IP Abuse Reports for 192.3.139.141:

This IP address has been reported a total of 230 times from 146 distinct sources. 192.3.139.141 was first reported on May 8th 2021, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-05 11:32:51 (1 week ago)	bot net	DNS Poisoning
🇩🇪 Holger	2026-05-14 16:57:10 (1 month ago)	Bruteforce WebAttack	Brute-Force Web App Attack
🇬🇧 openstrike.co.uk	2026-05-13 05:13:31 (1 month ago)	25 attacks on env grabbing URLs, config grabbing URLs (type 2), VC URLs, password grabbing URLs: GET ... show more 25 attacks on env grabbing URLs, config grabbing URLs (type 2), VC URLs, password grabbing URLs: GET /backend/.env HTTP/1.1 GET /config.json HTTP/1.1 GET /.git/config HTTP/1.1 GET /.aws/credentials HTTP/1.1 show less	Hacking
🇳🇱 CryptoYakari	2026-05-12 13:17:02 (1 month ago)	192.3.139.141 - - [12/May/2026:16:16:55 +0300] "GET /sitemap.xml HTTP/1.0" 404 1876 "-" "Mozilla/5.0 ... show more 192.3.139.141 - - [12/May/2026:16:16:55 +0300] "GET /sitemap.xml HTTP/1.0" 404 1876 "-" "Mozilla/5.0 (compatible; Applebot/0.1; +http://www.apple.com/go/applebot)" 192.3.139.141 - - [12/May/2026:16:16:56 +0300] "GET /asset-manifest.json HTTP/1.0" 404 1876 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.0.0 Safari/537.36" 192.3.139.141 - - [12/May/2026:16:16:56 +0300] "GET /manifest.json HTTP/1.0" 404 1876 "-" "Mozilla/5.0 (compatible; PerplexityBot/1.0; +https://perplexity.ai/perplexitybot)" 192.3.139.141 - - [12/May/2026:16:16:57 +0300] "GET /build-manifest.json HTTP/1.0" 404 1876 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)" 192.3.139.141 - - [12/May/2026:16:16:59 +0300] "GET /_next/static/buildManifest.js HTTP/1.0" 404 1876 "-" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" ... show less	Web Spam Blog Spam Web App Attack Bad Web Bot
🇩🇪 pltcldvlpr	2026-05-12 12:55:33 (1 month ago)	CMS/framework probe. Matched path: 192.3.139.141 - - [12/May/2026:14:55:32 +0200] "GET /.env.example ... show more CMS/framework probe. Matched path: 192.3.139.141 - - [12/May/2026:14:55:32 +0200] "GET /.env.example HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" asn=36352 org="HostPapa": 192.3.139.141 - - [12/May/2026:14:55:32 +0200] "GET /.env.example HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" asn=36352 org="HostPapa" ... show less	Web App Attack
🇬🇧 seniorlinuxadmin	2026-05-12 12:53:11 (1 month ago)	192.3.139.141 - - [12/May/2026:13:53:10 +0100] "GET /static/js/ie10-viewport-bug-workaround.js.map H ... show more 192.3.139.141 - - [12/May/2026:13:53:10 +0100] "GET /static/js/ie10-viewport-bug-workaround.js.map HTTP/1.1" 403 158 "-" "Mozilla/5.0 (compatible; ClaudeBot/1.0; [email protected])" show less	Port Scan Web App Attack
🇫🇷 dynamix	2026-05-12 11:30:43 (1 month ago)	Multiple WAF Violations	Web App Attack
🇨🇦 john doe	2026-05-12 11:16:54 (1 month ago)	SentinelBot: Env File Hunting (score: 73)	Bad Web Bot
🇺🇸 alecj.com	2026-05-12 10:05:20 (1 month ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇩🇪 akasolutions.de	2026-05-12 08:36:24 (1 month ago)	(mod_security) mod_security triggered on hostname [redacted] 192.3.139.141 (US/United States/192-3-1 ... show more (mod_security) mod_security triggered on hostname [redacted] 192.3.139.141 (US/United States/192-3-139-141-host.colocrossing.com) show less	SQL Injection
🇩🇪 todix	2026-05-12 07:21:07 (1 month ago)	Web App Attack Exploid from 192.3.139.141	Web App Attack
🇩🇪 4server	2026-05-12 07:11:41 (1 month ago)	[TueMay1209:11:35.3326932026][security2:error][pid3851371:tid3851468][client192.3.139.141:0]ModSecur ... show more [TueMay1209:11:35.3326932026][security2:error][pid3851371:tid3851468][client192.3.139.141:0]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"204\"][id\"390709\"][rev\"30\"][msg\"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely\"][data\"/.env\"][severity\"CRITICAL\"][hostname\"autodiscover.serban.ch\"][uri\"/public/.env\"][unique_id\"agLSpz5qmwJ1IQm6AOhodQAAAMk\"] show less	Port Scan Brute-Force Web App Attack
🇩🇪 Holger	2026-05-12 06:31:18 (1 month ago)	Bruteforce WebAttack	Brute-Force Web App Attack
🇩🇪 Hans Wurst	2026-05-12 05:34:45 (1 month ago)	Many 404-Error: Suspicion of URL-Fuzzing/Bot-Scan.	Web App Attack
🇫🇷 Baking333	2026-05-12 05:21:36 (1 month ago)	[redacted] 192.3.139.141 - - [12/May/2026:06:21:33 +0100] "GET /[redacted] HTTP/1.1" 302 1573 0/7045 ... show more [redacted] 192.3.139.141 - - [12/May/2026:06:21:33 +0100] "GET /[redacted] HTTP/1.1" 302 1573 0/70458 "http://[redacted]/[redacted]" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" [redacted] 192.3.139.141 - - [12/May/2026:06:21:33 +0100] "GET /__env.js HTTP/1.1" 302 1573 0/461310 "http://[redacted]/__env.js" "Mozilla/5.0 (iPad; CPU OS 18_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.1 Mobile/15E148 Safari/604.1" show less	Bad Web Bot Web App Attack

Showing 1 to 15 of 230 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇾 190.128.201.18

🇸🇦 188.52.42.188

🇻🇳 27.79.46.126

🇮🇳 203.190.153.90

🇰🇪 197.248.207.139

🇳🇱 176.65.139.181

🇨🇳 117.50.130.208

🇸🇬 94.231.206.11

🇧🇷 82.47.106.219

🇧🇬 79.124.40.126

🇳🇱 45.156.87.147

🇳🇱 45.142.193.223

🇺🇸 18.116.101.220

🇨🇱 190.162.50.153

🇶🇦 176.202.218.160

🇵🇰 119.156.83.33

🇩🇪 88.214.25.124

🇪🇸 87.221.84.132

🇳🇱 45.148.10.151

🇭🇰 43.99.24.120