JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.194.85.14

216.194.85.14 was found in our database!

This IP was reported 82 times. Confidence of Abuse is 100%: ?

100%

ISP	HostRoyale Technologies Pvt Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS207990
Domain Name	hostroyale.com
Country	🇺🇸 United States of America
City	Wilmington, Delaware

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.194.85.14

Whois 216.194.85.14

IP Abuse Reports for 216.194.85.14:

This IP address has been reported a total of 82 times from 69 distinct sources. 216.194.85.14 was first reported on January 30th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 geot	2026-06-09 10:32:56 (1 week ago)	HEAD /k8s.yml HTTP/1.1 HEAD /kubernetes.yml HTTP/1.1	Web App Attack
🇫🇷 SpaceHost-Server	2026-06-08 22:28:14 (1 week ago)		Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-08 22:00:18 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-07. show less	Web App Attack SSH Hacking
🇩🇪 FeG Deutschland	2026-06-08 15:09:10 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇵🇱 dzpk	2026-06-08 14:28:11 (1 week ago)	[08/Jun/2026:16:26:14 +0200] 178092877446.050966 216.194.85.14 36085 HOST 80 [08/Jun/2026:16:26:35 + ... show more [08/Jun/2026:16:26:14 +0200] 178092877446.050966 216.194.85.14 36085 HOST 80 [08/Jun/2026:16:26:35 +0200] 178092879570.941918 216.194.85.14 38379 HOST 80 [08/Jun/2026:16:28:10 +0200] 178092889018.974268 216.194.85.14 45515 HOST 80 show less	Web App Attack
🇩🇪 netclix.gr	2026-06-08 13:08:23 (1 week ago)	(security_scan) Sensitive File Scan Blocked 216.194.85.14 (US/United States/-): 1 in the last 4600 s ... show more (security_scan) Sensitive File Scan Blocked 216.194.85.14 (US/United States/-): 1 in the last 4600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 216.194.85.14 - - [08/Jun/2026:16:08:20 +0300] "HEAD /admin/config.php HTTP/2.0" 404 0 "-" "Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected])" show less	Port Scan
🇪🇸 el-brujo	2026-06-08 12:38:30 (1 week ago)	Cloudflare WAF: Request Path: /sftp-config.json Request Query: Host: foro.elhacker.net userAgent: M ... show more Cloudflare WAF: Request Path: /sftp-config.json Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected]) Action: block Source: firewallManaged ASN Description: HostRoyale Technologies Pvt Ltd Country: US Method: HEAD Timestamp: 2026-06-08T12:38:30Z ruleId: c2a2f414a67c409f90cccb6c5bba0215. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇫🇷 bazter.pro	2026-06-08 12:07:23 (1 week ago)	Auto-Ban [2026-06-08 15:07:14]: CRITICAL: .env attack; DC: HostRoyale Technologies Pvt Ltd [Paths: 2 ... show more Auto-Ban [2026-06-08 15:07:14]: CRITICAL: .env attack; DC: HostRoyale Technologies Pvt Ltd [Paths: 29] \| Details: Exploit trap paths: /.env.production, /.env.staging, /.env.example, /.env.backup, /blog/wp-config.php \| Sensitive files/paths: /.env.production, /.env.staging, /.env.example, /.travis.yml, /local_settings.py.swp \| 404 errors (30): /.env.example, /settings/production.py, /values.yaml, /.ftpconfig, /configuration.php, /app/etc/env.php, /local_settings.py.swp, /persistence.xml, /.secrets.json, /.env.backup (and 17 more) \| 403 errors (1): /.travis.yml \| Other paths: /db_connect.php show less	Web App Attack Hacking
🇫🇷 Coco Bongo	2026-06-08 11:52:04 (1 week ago)	216.194.85.14 [redacted].contaboserver.net (207990-HostRoyale Technologies Pvt Ltd United States -) ... show more 216.194.85.14 [redacted].contaboserver.net (207990-HostRoyale Technologies Pvt Ltd United States -) - - [08/Jun/2026:13:50:22 +0200] "HEAD /.settings.php.swp HTTP/1.1" 404 0 "-" "Mozilla/5.0 (compatibl ... show less	Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-08 11:46:47 (1 week ago)	URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .b ... show more URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .backup/ .bak/ .bck/ .bk/ .bkp/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .cnf/ .com/ .compositefont/ .config/ .conf/ .copy/ .crt/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dist/ .dll/ .dos/ .dpkg-dist/ .drv/ .gadget/ .hta/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .inf/ .ini/ .jks/ .jse/ .key/ .licx/ .lnk/ .log/ .mdb/ .msc/ .ocx/ .old/ .pass/ .pdb/ .pfx/ .pif/ .pem/ .pol/ .prf/ .printer/ .pwd/ .rdb/ .rdp/ .reg/ .resources/ .resx/ .sav/ .save/ .scr/ .sct/ .sh/ .shs/ .sql/ .sqlite/ .sqlite3/ .swap/ .swo/ .swp/ .sys/ .temp/ .tfstate/ .tlb/ .tmp/ .vb/ .vbe/ .vbs/ .vbproj/ .vsdisco/ .vxd/ .webinfo/ .ws/ .wsc/ .wsf/ .wsh/ .xsd/ .xsx/" at TX:extension. (920440-193) show less	Hacking
🇫🇷 LoneRider	2026-06-08 11:35:02 (1 week ago)	[08/Jun/2026:13:33:35.893157 +0200] aiaoj66Z4HqZ_Xoc5LNUVAAAAAE 216.194.85.14 59374 127.0.0.1 7081 [ ... show more [08/Jun/2026:13:33:35.893157 +0200] aiaoj66Z4HqZ_Xoc5LNUVAAAAAE 216.194.85.14 59374 127.0.0.1 7081 [08/Jun/2026:13:34:52.716027 +0200] aiao3I-xeAltHsBMp0xX5QAAAAM 216.194.85.14 35918 127.0.0.1 7081 [08/Jun/2026:13:35:02.273508 +0200] aiao5oOROfDxght8XttrYAAAAAA 216.194.85.14 40596 127.0.0.1 7081 ... show less	Hacking
🇬🇧 ISPLtd	2026-06-08 11:19:38 (1 week ago)	216.194.85.14 [08/Jun/2026:08:17:11 -0300] target.domain:80 URL:/.env.swo "GET /.env.swo 216.194.85. ... show more 216.194.85.14 [08/Jun/2026:08:17:11 -0300] target.domain:80 URL:/.env.swo "GET /.env.swo 216.194.85.14 [08/Jun/2026:08:19:38 -0300] claire.target.domain:80 URL:/config.php "HEAD /config.php ... show less	Hacking Web App Attack
🇫🇮 as211431.net	2026-06-08 10:54:01 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (HEAD meth ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (HEAD method) Endpoint: /.vscode/sftp.json UA: Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected]) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 Blexyel	2026-06-08 10:53:14 (1 week ago)	216.194.85.14 - - [08/Jun/2026:12:53:13 +0200] "HEAD /.git/config HTTP/1.1" 200 0 "-" "Mozilla/5.0 ( ... show more 216.194.85.14 - - [08/Jun/2026:12:53:13 +0200] "HEAD /.git/config HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected])" ... show less	Brute-Force Web App Attack
🇫🇷 vtchost.com	2026-06-08 10:47:04 (1 week ago)	vtchost.com:443 216.194.85.14 - - [08/Jun/2026:12:47:04 +0200] "HEAD /.config.php.swp HTTP/1.1" 404 ... show more vtchost.com:443 216.194.85.14 - - [08/Jun/2026:12:47:04 +0200] "HEAD /.config.php.swp HTTP/1.1" 404 2704 "-" "Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected])" ... show less	Web App Attack

Showing 1 to 15 of 82 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇬 197.46.161.28

🇧🇷 190.89.137.236

🇬🇧 138.68.179.246

🇳🇱 45.142.193.70

🇺🇸 216.73.216.226

🇬🇹 190.151.130.5

🇮🇹 151.115.167.37

🇺🇸 147.185.132.233

🇺🇸 147.185.132.89

🇸🇬 103.189.234.96

🇺🇸 75.91.173.216

🇺🇸 64.62.197.60

🇷🇺 5.104.36.205

🇬🇧 217.154.38.181

🇬🇧 185.216.145.184

🇷🇺 185.42.43.60

🇨🇳 180.167.128.203

🇳🇱 167.71.6.191

🇺🇸 147.185.132.65

🇨🇳 115.190.115.237