JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 46.151.193.87

46.151.193.87 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 44%: ?

44%

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60068
Hostname(s)	unn-46-151-193-87.datapacket.com
Domain Name	datacamp.co.uk
Country	🇿🇦 South Africa
City	Johannesburg, Gauteng

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 46.151.193.87

Whois 46.151.193.87

IP Abuse Reports for 46.151.193.87:

This IP address has been reported a total of 12 times from 8 distinct sources. 46.151.193.87 was first reported on May 25th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 alferez	2026-05-31 04:57:37 (4 days ago)	Searching .(env\|sql\|zip\|tar\|rar) files	Hacking Exploited Host Web App Attack
🇦🇪 CG	2026-05-30 05:05:35 (5 days ago)	Web application attack, Automated scan	Web App Attack Hacking SQL Injection
🇧🇪 cmbplf	2026-05-29 01:34:22 (6 days ago)	529 requests with url.path *.env	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-29 00:38:26 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 46.151.193.87 (unn-46-151-193-87.datapacket.com ... show more (mod_security) mod_security (id:210492) triggered by 46.151.193.87 (unn-46-151-193-87.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 28 20:38:23.511528 2026] [security2:error] [pid 20561:tid 20561] [client 46.151.193.87:25085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jamesmsmall.com"] [uri "/.env"] [unique_id "ahjf_ySO-Sd-Fiaz9eoufAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-05-29 00:06:24 (6 days ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇮🇩 sockominfo	2026-05-28 09:00:39 (1 week ago)	Suspicious user agent detected python-requests/2.31.0. Threat Score: 3.4/10 (LOW). Confidence: 30%. ... show more Suspicious user agent detected python-requests/2.31.0. Threat Score: 3.4/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-28 08:00:40 (1 week ago)	Suspicious user agent detected python-requests/2.31.0. Threat Score: 3.5/10 (LOW). Confidence: 30%. ... show more Suspicious user agent detected python-requests/2.31.0. Threat Score: 3.5/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-28 07:00:39 (1 week ago)	Suspicious user agent detected python-requests/2.31.0. Threat Score: 3.6/10 (LOW). Confidence: 30%. ... show more Suspicious user agent detected python-requests/2.31.0. Threat Score: 3.6/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇧🇷 dominioz	2026-05-28 06:28:12 (1 week ago)	2026-05-28 06:27:59 GET /.env.txt - - 46.151.193.87 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x6 ... show more 2026-05-28 06:27:59 GET /.env.txt - - 46.151.193.87 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64) - 404 1440 2026-05-28 06:27:59 GET /.env.inc - - 46.151.193.87 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64) - 404 1440 2026-05-28 06:27:59 GET /.env.php - - 46.151.193.87 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64) - 404 1440 2026-05-28 06:27:59 GET /.env.yml - - 46.151.193.87 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64) - 404 1440 ... show less	Web App Attack
🇮🇩 sockominfo	2026-05-28 04:00:11 (1 week ago)	Suspicious user agent detected python-requests/2.31.0. Threat Score: 0/10 (INFORMATIONAL). Reported ... show more Suspicious user agent detected python-requests/2.31.0. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇳🇱 e.fierstra	2026-05-27 00:23:24 (1 week ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇩🇪 london2038.com	2026-05-25 05:58:56 (1 week ago)	Probing for exploits 46.151.193.87 - - [25/May/2026:07:58:52 +0200] "GET /internal/.env HTTP/1.1" 42 ... show more Probing for exploits 46.151.193.87 - - [25/May/2026:07:58:52 +0200] "GET /internal/.env HTTP/1.1" 422 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64)" 46.151.193.87 - - [25/May/2026:07:58:52 +0200] "GET /private/.env HTTP/1.1" 422 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64)" show less	Hacking Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.155

🇺🇸 3.135.236.109

🇨🇳 218.92.201.254

🇺🇸 205.210.31.40

🇮🇩 69.5.20.232

🇬🇧 35.203.210.231

🇺🇸 35.185.32.235

🇺🇸 216.73.217.121

🇮🇳 182.78.107.6

🇦🇷 181.116.220.140

🇮🇹 151.84.223.149

🇺🇸 73.204.25.187

🇷🇺 62.192.226.83

🇺🇸 43.166.245.172

🇨🇳 42.51.33.162

🇬🇧 35.203.211.249

🇨🇳 14.29.214.161

🇺🇸 2600:3c03::2000:f9ff:fe88:a72e

🇺🇸 193.36.225.225

🇭🇺 178.238.208.153