JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.133.206.142

209.133.206.142 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 100%: ?

100%

ISP	HIVELOCITY, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS29802
Hostname(s)	209-133-206-142.static.hvvc.us
Domain Name	hivelocity.net
Country	🇺🇸 United States of America
City	Tampa, Florida

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.133.206.142

Whois 209.133.206.142

IP Abuse Reports for 209.133.206.142:

This IP address has been reported a total of 141 times from 104 distinct sources. 209.133.206.142 was first reported on June 9th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 Peregrine	2026-06-19 03:10:12 (2 days ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: - 209.133.206.142 - - [15/Jun/2026:17:29:02 -0300] "GET / ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: - 209.133.206.142 - - [15/Jun/2026:17:29:02 -0300] "GET /database/.env HTTP/1.1" 404 414 - 209.133.206.142 - - [15/Jun/2026:17:29:02 -0300] "GET /.env HTTP/1.1" 404 414 - 209.133.206.142 - - [15/Jun/2026:17:29:03 -0300] "GET /database/.env HTTP/1.1" 404 414 - 209.133.206.142 - - [15/Jun/2026:17:29:03 -0300] "GET /.env HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-06-18 03:09:58 (3 days ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: - 209.133.206.142 - - [15/Jun/2026:17:29:02 -0300] "GET / ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: - 209.133.206.142 - - [15/Jun/2026:17:29:02 -0300] "GET /database/.env HTTP/1.1" 404 414 - 209.133.206.142 - - [15/Jun/2026:17:29:02 -0300] "GET /.env HTTP/1.1" 404 414 - 209.133.206.142 - - [15/Jun/2026:17:29:03 -0300] "GET /database/.env HTTP/1.1" 404 414 - 209.133.206.142 - - [15/Jun/2026:17:29:03 -0300] "GET /.env HTTP/1.1" 404 414 show less	Bad Web Bot
🇩🇪 mxinfra	2026-06-18 02:31:40 (3 days ago)	Repeated unauthorized access attempts.	Port Scan Hacking Brute-Force
🇧🇷 Peregrine	2026-06-17 03:09:57 (4 days ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: - 209.133.206.142 - - [15/Jun/2026:17:29:02 -0300] "GET / ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: - 209.133.206.142 - - [15/Jun/2026:17:29:02 -0300] "GET /database/.env HTTP/1.1" 404 414 - 209.133.206.142 - - [15/Jun/2026:17:29:02 -0300] "GET /.env HTTP/1.1" 404 414 - 209.133.206.142 - - [15/Jun/2026:17:29:03 -0300] "GET /database/.env HTTP/1.1" 404 414 - 209.133.206.142 - - [15/Jun/2026:17:29:03 -0300] "GET /.env HTTP/1.1" 404 414 show less	Bad Web Bot
🇩🇪 mxinfra	2026-06-17 02:31:37 (4 days ago)	Repeated unauthorized access attempts.	Port Scan Hacking Brute-Force
🇬🇧 openstrike.co.uk	2026-06-16 05:14:46 (5 days ago)	3 attacks on env grabbing URLs: GET /.env HTTP/1.1	Hacking
🇩🇪 mxinfra	2026-06-16 02:31:27 (5 days ago)	Repeated unauthorized access attempts.	Port Scan Hacking Brute-Force
🇬🇧 andypiper	2026-06-16 01:02:37 (5 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇺🇸 mnsf	2026-06-16 00:13:13 (5 days ago)	Scanning/Probing (21)	Brute-Force Web App Attack
Anonymous	2026-06-15 20:55:24 (5 days ago)	209.133.206.142 - - [16/Jun/2026:04:55:23 +0800] "GET /database/.env HTTP/1.1" 301 242 "-" "Go-http- ... show more 209.133.206.142 - - [16/Jun/2026:04:55:23 +0800] "GET /database/.env HTTP/1.1" 301 242 "-" "Go-http-client/1.1" ... show less	Bad Web Bot Web App Attack
🇳🇱 wlt-blocker	2026-06-15 20:40:36 (5 days ago)	Unauthorized access to webpage admin	Web App Attack
🇧🇷 Peregrine	2026-06-15 20:29:09 (5 days ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: - 209.133.206.142 - - [15/Jun/2026:17:29:02 -0300] "GET / ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: - 209.133.206.142 - - [15/Jun/2026:17:29:02 -0300] "GET /database/.env HTTP/1.1" 404 414 - 209.133.206.142 - - [15/Jun/2026:17:29:02 -0300] "GET /.env HTTP/1.1" 404 414 - 209.133.206.142 - - [15/Jun/2026:17:29:03 -0300] "GET /database/.env HTTP/1.1" 404 414 - 209.133.206.142 - - [15/Jun/2026:17:29:03 -0300] "GET /.env HTTP/1.1" 404 414 show less	Bad Web Bot
🇪🇸 Francisco Vallejo	2026-06-15 20:02:58 (5 days ago)	[Mon Jun 15 22:02:58.082039 2026] [core:info] [pid 481576:tid 130565854459584] [client 209.133.206.1 ... show more [Mon Jun 15 22:02:58.082039 2026] [core:info] [pid 481576:tid 130565854459584] [client 209.133.206.142:36248] AH00128: File does not exist: /var/www/franvallejo/database/.env, referer: http://85.85.126.22/database/.env [Mon Jun 15 22:02:58.085256 2026] [core:info] [pid 481576:tid 130566577964736] [client 209.133.206.142:36238] AH00128: File does not exist: /var/www/franvallejo/api/.env, referer: http://85.85.126.22/api/.env [Mon Jun 15 22:02:58.085905 2026] [core:info] [pid 301578:tid 130567427307200] [client 209.133.206.142:36258] AH00128: File does not exist: /var/www/franvallejo/.env, referer: http://85.85.126.22/.env [Mon Jun 15 22:02:58.387969 2026] [core:info] [pid 481576:tid 130567444092608] [client 209.133.206.142:36268] AH00128: File does not exist: /var/www/franvallejo/database/.env [Mon Jun 15 22:02:58.391648 2026] [core:info] [pid 301578:tid 130567030941376] [client 209.133.206.142:36276] AH00128: File does not exist: /var/www/franvallejo/api/.env ... show less	Brute-Force SSH
🇫🇷 ELYAZ	2026-06-15 19:18:47 (5 days ago)	(y3) Failed access -byebye- from 209.133.206.142 (US/United States/209-133-206-142.static.hvvc.us): ... show more (y3) Failed access -byebye- from 209.133.206.142 (US/United States/209-133-206-142.static.hvvc.us): (CF_ENABLE) show less	Hacking
🇬🇧 CrystalMaker	2026-06-15 18:13:56 (5 days ago)	Vulnerability scan - GET /api/.env; GET /database/.env; GET /.env; GET /database/.env; GET /api/.env ... show more Vulnerability scan - GET /api/.env; GET /database/.env; GET /.env; GET /database/.env; GET /api/.env; GET /.env show less	Hacking

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c34::12c

🇨🇴 206.62.136.130

🇻🇪 201.249.205.94

🇫🇷 185.182.8.41

🇨🇳 180.102.110.151

🇺🇸 172.239.71.244

🇺🇸 172.239.64.155

🇩🇪 151.243.11.248

🇨🇳 120.240.155.198

🇬🇧 118.193.65.175

🇧🇬 91.191.209.98

🇫🇷 88.187.88.37

🇳🇱 85.11.167.11

🇱🇹 81.30.98.49

🇱🇹 77.90.185.79

🇺🇸 66.132.224.82

🇺🇸 65.49.1.158

🇺🇸 34.220.28.82

🇧🇷 191.53.41.215

🇧🇷 177.174.89.99