AbuseIPDB » 194.233.72.214

194.233.72.214 was found in our database!

This IP was reported 592 times. Confidence of Abuse is 100%: ?

100%

ISP	Contabo Asia Private Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS141995
Hostname(s)	m31042.contaboserver.net
Domain Name	contabo.com
Country	Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 194.233.72.214

Whois 194.233.72.214

IP Abuse Reports for 194.233.72.214:

This IP address has been reported a total of 592 times from 188 distinct sources. 194.233.72.214 was first reported on May 1st 2025, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
cleverest.eu	2025-07-01 23:38:51 (1 week ago)	MimirWAF has 56 incidents from 1 distinct domain => {"bad_request_uri / script_kiddie_detection","bl ... show moreMimirWAF has 56 incidents from 1 distinct domain => {"bad_request_uri / script_kiddie_detection","blacklisted_access / definite_repeat_offender"} show less	Brute-Force Web App Attack
Anonymous	2025-07-01 23:05:44 (1 week ago)	[Drupal AbuseIPDB module] Request path is blacklisted. /wp-config.php	Web App Attack
masterguru	2025-07-01 22:41:12 (1 week ago)	Restricted File Access Attempt. Matched phrase "wp-config.php" at REQUEST_FILENAME. (930130-173)	Hacking Web App Attack
ThreatBook.io	2025-07-01 22:32:43 (1 week ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/194.233.72.214<br / ... show moreThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/194.233.72.214 2025-07-01 00:58:07 /phpinfo.php 2025-07-01 00:58:06 /phpinfo 2025-07-01 00:57:52 / 2025-07-01 00:58:08 /_phpinfo.php show less	Web App Attack
pigro	2025-07-01 20:35:36 (1 week ago)	194.233.72.214 - - [01/Jul/2025:22:35:35 +0200] "GET /api/.env HTTP/2.0" 301 0 "-" "Mozilla/5.0 (Win ... show more194.233.72.214 - - [01/Jul/2025:22:35:35 +0200] "GET /api/.env HTTP/2.0" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 194.233.72.214 - - [01/Jul/2025:22:35:35 +0200] "GET /api/shared/config/config.env HTTP/2.0" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack
rtbh.com.tr	2025-07-01 20:07:28 (1 week ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
Anonymous	2025-07-01 19:38:47 (1 week ago)		Web App Attack
srebrakowski.com	2025-07-01 19:17:02 (1 week ago)	crowdsec/crowdsecurity/http-sensitive-files	Hacking
URAN Publishing Service	2025-07-01 18:58:25 (1 week ago)	194.233.72.214 - - [01/Jul/2025:21:58:11 +0300] "GET /wp-config.php HTTP/1.1" 404 2847 "-" "Mozilla/ ... show more194.233.72.214 - - [01/Jul/2025:21:58:11 +0300] "GET /wp-config.php HTTP/1.1" 404 2847 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 194.233.72.214 - - [01/Jul/2025:21:58:23 +0300] "GET /api/.env HTTP/1.1" 404 2880 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack
Bedios GmbH	2025-07-01 16:40:43 (1 week ago)	Login credentials theft attempt	Hacking
Anonymous	2025-07-01 16:12:43 (1 week ago)	Aggressive web scan	Web App Attack
IRT@Unisi	2025-07-01 14:09:18 (1 week ago)	Apache: Attempt to access forbidden file or directory.	Bad Web Bot
cvb	2025-07-01 04:57:56 (2 weeks ago)	[Tue Jul 01 06:54:52.888166 2025] [access_compat:error] [pid 1770:tid 1770] [client 194.233.72.214:4 ... show more[Tue Jul 01 06:54:52.888166 2025] [access_compat:error] [pid 1770:tid 1770] [client 194.233.72.214:42258] AH01797: client denied by server configuration: /var/www/html/config/aws.yml [Tue Jul 01 06:55:10.853220 2025] [access_compat:error] [pid 807:tid 807] [client 194.233.72.214:59974] AH01797: client denied by server configuration: /var/www/html/config/constants.js [Tue Jul 01 06:55:49.459487 2025] [access_compat:error] [pid 3504:tid 3504] [client 194.233.72.214:48342] AH01797: client denied by server configuration: /var/www/html/config/application.yml [Tue Jul 01 06:55:50.158456 2025] [access_compat:error] [pid 811:tid 811] [client 194.233.72.214:48350] AH01797: client denied by server configuration: /var/www/html/config/storage.yml [Tue Jul 01 06:57:52.673607 2025] [access_compat:error] [pid 3504:tid 3504] [client 194.233.72.214:46162] AH01797: client denied by server configuration: /var/www/html/config/aws.yml [Tue Jul 01 06:57:55.318297 2025] [access_compat:error] [pid 1770:tid 17 ... RK-Cloud show less	Brute-Force Web App Attack
Anonymous	2025-07-01 03:53:47 (2 weeks ago)	[Tue Jul 01 05:53:41.693734 2025] [proxy_fcgi:error] [pid 1431:tid 1589] [client 194.233.72.214:5991 ... show more[Tue Jul 01 05:53:41.693734 2025] [proxy_fcgi:error] [pid 1431:tid 1589] [client 194.233.72.214:59910] AH01071: Got error 'Primary script unknown' [Tue Jul 01 05:53:42.173565 2025] [proxy_fcgi:error] [pid 1433:tid 1582] [client 194.233.72.214:59912] AH01071: Got error 'Primary script unknown' [Tue Jul 01 05:53:43.145813 2025] [proxy_fcgi:error] [pid 1433:tid 1568] [client 194.233.72.214:59936] AH01071: Got error 'Primary script unknown' [Tue Jul 01 05:53:43.624938 2025] [proxy_fcgi:error] [pid 2677:tid 2720] [client 194.233.72.214:59952] AH01071: Got error 'Primary script unknown' [Tue Jul 01 05:53:45.116499 2025] [proxy_fcgi:error] [pid 1431:tid 1549] [client 194.233.72.214:59974] AH01071: Got error 'Primary script unknown' ... show less	Brute-Force Web App Attack
breubit	2025-07-01 03:50:09 (2 weeks ago)	194.233.72.214 - - [01/Jul/2025:05:50:09 +0200] "GET /wp-config HTTP/1.1" 404 3125 "-" "Mozilla/5.0 ... show more194.233.72.214 - - [01/Jul/2025:05:50:09 +0200] "GET /wp-config HTTP/1.1" 404 3125 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Web App Attack

Showing 61 to 75 of 592 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

205.210.31.252

106.75.23.247

36.90.135.55

2602:fa59:9:9a9::1

92.118.39.87

185.177.72.35

154.57.216.74

211.101.235.68

80.94.95.229

34.44.138.170

88.149.153.87

103.159.132.91

117.205.84.160

52.169.54.134

172.207.242.55

59.97.176.226

8.219.110.12

213.232.120.228

3.235.10.4

117.216.211.19