JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.192.29.178

212.192.29.178 was found in our database!

This IP was reported 79 times. Confidence of Abuse is 100%: ?

100%

ISP	RCS Technologies FZE LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS397032
Domain Name	sparkedhost.net
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.192.29.178

Whois 212.192.29.178

IP Abuse Reports for 212.192.29.178:

This IP address has been reported a total of 79 times from 55 distinct sources. 212.192.29.178 was first reported on May 13th 2026, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 NonOggiCaroMio	2026-06-14 21:27:08 (12 hours ago)	Arruso ca si: crowdsecurity/http-sensitive-files	Brute-Force
🇩🇪 IloGus	2026-06-14 21:00:20 (12 hours ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇩🇪 LRob.fr	2026-06-14 19:15:10 (14 hours ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇩🇪 pscriptos	2026-06-14 16:41:35 (17 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇩🇪 Hary74656	2026-06-14 16:14:48 (17 hours ago)	[Sun Jun 14 18:14:39.573535 2026] [security2:error] [pid 361237:tid 361417] [client 212.192.29.178:3 ... show more [Sun Jun 14 18:14:39.573535 2026] [security2:error] [pid 361237:tid 361417] [client 212.192.29.178:33518] [client 212.192.29.178] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/.git/" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.git/ found within REQUEST_FILENAME: /.git/head"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "aschi.at"] [uri "/.git/HEAD"] [unique_id "ai7Tb15P0LtoaPf0IpkmXQAAASM"] [Sun Jun 14 18:14:39.588728 2026] [security2:error] [pid 361660:tid 361794] [client 212.192.29.178:33526] [client 212.192.29.178] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/sha ... show less	Web App Attack
🇫🇷 Lunix	2026-06-14 16:13:51 (17 hours ago)		Brute-Force Web App Attack
🇳🇱 Site.eu	2026-06-14 14:11:21 (19 hours ago)	Excessive multi-domain requests	Brute-Force
🇫🇷 pm33	2026-06-14 10:08:51 (23 hours ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
Anonymous	2026-06-14 09:58:44 (23 hours ago)	Fail2ban jail=webexploits banned IP=212.192.29.178 after 1 hits. Reason=web probing.	Brute-Force Web App Attack
🇬🇧 openstrike.co.uk	2026-06-14 05:13:52 (1 day ago)	11 attacks on VC URLs, config grabbing URLs (type 2), password grabbing URLs, env grabbing URLs: GET ... show more 11 attacks on VC URLs, config grabbing URLs (type 2), password grabbing URLs, env grabbing URLs: GET /.git/config HTTP/1.1 GET /config.json HTTP/1.1 GET /.aws/credentials HTTP/1.1 GET /.env.production HTTP/1.1 show less	Hacking
🇫🇷 masterguru	2026-06-14 03:39:39 (1 day ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-196)	Hacking Web App Attack
Anonymous	2026-06-14 02:48:28 (1 day ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
🇳🇱 juutis	2026-06-14 02:29:20 (1 day ago)	Multiple WAF abuses - IP blocked	Hacking Brute-Force Web App Attack
🇩🇪 kkwemi	2026-06-14 00:37:41 (1 day ago)	Blocked by block-exploit-paths on /.env	Bad Web Bot
Anonymous	2026-06-13 22:22:19 (1 day ago)	(caddyscan) Scanner path probe from 212.192.29.178 (US/United States/-): 5 in the last 3600 secs; Po ... show more (caddyscan) Scanner path probe from 212.192.29.178 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 212.192.29.178 - - [13/Jun/2026:22:22:11 +0000] "GET /.git/HEAD HTTP/1.1" [REDACTED] 200 2627 212.192.29.178 - - [13/Jun/2026:22:22:11 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 212.192.29.178 - - [13/Jun/2026:22:22:12 +0000] "GET /.env.local HTTP/1.1" [REDACTED] 200 2627 212.192.29.178 - - [13/Jun/2026:22:22:13 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 212.192.29.178 - - [13/Jun/2026:22:22:14 +0000] "GET /backend/.env HTTP/1.1" show less	Port Scan

Showing 1 to 15 of 79 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 178.128.51.84

🇯🇵 101.36.105.50

🇬🇧 35.177.218.207

🇮🇳 124.253.119.57

🇸🇬 103.189.234.244

🇦🇪 94.202.213.69

🇨🇦 85.217.149.72

🇱🇹 81.30.98.225

🇮🇳 59.179.31.237

🇨🇱 34.176.210.25

🇿🇦 102.217.109.187

🇺🇸 57.141.20.49

🇩🇪 45.86.202.102

🇮🇳 34.131.130.74

🇺🇸 34.48.250.114

🇩🇪 31.70.70.17

🇳🇱 31.14.32.4

🇧🇷 177.141.167.170

🇸🇪 162.158.182.159

🇰🇷 124.61.210.150