JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 46.202.145.215

46.202.145.215 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 92%: ?

92%

ISP	US ISP
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	ukrtelecom.ua
Country	🇧🇷 Brazil
City	Sao Paulo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 46.202.145.215

Whois 46.202.145.215

IP Abuse Reports for 46.202.145.215:

This IP address has been reported a total of 38 times from 16 distinct sources. 46.202.145.215 was first reported on June 1st 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-07 08:59:32 (1 hour ago)	(mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 04:59:28.327194 2026] [security2:error] [pid 14881:tid 14881] [client 46.202.145.215:50092] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bodeur.com"] [uri "/dev/.env"] [unique_id "aiUy8CgXJiaC8kbj8XgdsQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 07:35:30 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 03:35:26.032677 2026] [security2:error] [pid 1448:tid 1448] [client 46.202.145.215:18272] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "technesa.com"] [uri "/laravel/.env"] [unique_id "aiUfPpU9dC2rsn96OXUqQAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 06:46:03 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 02:46:00.414627 2026] [security2:error] [pid 6932:tid 6932] [client 46.202.145.215:40514] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "soglove.com"] [uri "/member/.env"] [unique_id "aiUTqIX4L55Otgp7X14EkgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-07 05:55:48 (4 hours ago)	46.202.145.215 - - [07/Jun/2026:07:55:47 +0200] "GET /api/.env HTTP/1.1" 301 169 "-" "Mozilla/5.0 (M ... show more 46.202.145.215 - - [07/Jun/2026:07:55:47 +0200] "GET /api/.env HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" show less	Web App Attack
🇬🇧 Apache	2026-06-07 02:36:35 (7 hours ago)	(mod_security) mod_security (id:210492) triggered by 46.202.145.215 (BR/Brazil/-): 5 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 46.202.145.215 (BR/Brazil/-): 5 in the last 300 secs (CF_ENABLE) show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 02:29:27 (8 hours ago)	(mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 22:29:22.744984 2026] [security2:error] [pid 26591:tid 26591] [client 46.202.145.215:26056] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jamworldmovements.com"] [uri "/laravel/.env"] [unique_id "aiTXgsRsfzw0ljJ0ytQJdQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-07 00:59:59 (9 hours ago)	(caddyscan) Scanner path probe from 46.202.145.215 (BR/Brazil/-): 5 in the last 3600 secs; Ports: ; ... show more (caddyscan) Scanner path probe from 46.202.145.215 (BR/Brazil/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 46.202.145.215 - - [07/Jun/2026:00:59:56 +0000] "GET /backend/.env HTTP/1.1" [REDACTED] 200 2627 46.202.145.215 - - [07/Jun/2026:00:59:56 +0000] "GET /app/.env HTTP/1.1" [REDACTED] 200 2627 46.202.145.215 - - [07/Jun/2026:00:59:56 +0000] "GET /laravel/.env HTTP/1.1" [REDACTED] 200 2627 46.202.145.215 - - [07/Jun/2026:00:59:56 +0000] "GET /dev/.env HTTP/1.1" [REDACTED] 200 2627 46.202.145.215 - - [07/Jun/2026:00:59:56 +0000] "GET /admin/.env HTTP/1.1" show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-06 21:14:43 (13 hours ago)	(mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 17:14:38.037762 2026] [security2:error] [pid 22231:tid 22231] [client 46.202.145.215:53626] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "epicjellyfish.com"] [uri "/backend/.env"] [unique_id "aiSNvgGcnbYVbKWWi6LRggAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-06 20:23:03 (14 hours ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-193)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 18:04:01 (16 hours ago)	(mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 14:03:55.750310 2026] [security2:error] [pid 1737:tid 1737] [client 46.202.145.215:45434] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "montebiancoltd.com"] [uri "/api/.env"] [unique_id "aiRhCzVwbaOF5hgVWm4QBAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-06 17:24:18 (17 hours ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-201)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 16:24:04 (18 hours ago)	(mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 12:24:02.254522 2026] [security2:error] [pid 2139:tid 2139] [client 46.202.145.215:44108] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lloydprins.com"] [uri "/core/.env"] [unique_id "aiRJop19aaVU0mpHr_Jg2QAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 16:04:18 (18 hours ago)	(mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 12:04:12.963750 2026] [security2:error] [pid 4053:tid 4053] [client 46.202.145.215:17292] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tracdynamics.com"] [uri "/.env"] [unique_id "aiRE_AxTdJdAzGz5AeouiwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 BlueWire Hosting	2026-06-06 14:07:19 (20 hours ago)	Probing websites for vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 12:15:08 (22 hours ago)	(mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.145.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 08:15:00.209346 2026] [security2:error] [pid 20625:tid 20625] [client 46.202.145.215:33792] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lambert-heating-and-air.com"] [uri "/laravel/.env"] [unique_id "aiQPRORKNzUFwoqkQVkXvwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 183.82.111.224

🇭🇰 152.32.132.28

🇺🇸 207.90.244.17

🇧🇷 205.210.31.205

🇺🇸 174.254.254.17

🇵🇰 119.73.100.210

🇷🇴 91.211.87.106

🇺🇸 76.50.16.195

🇧🇷 45.205.1.67

🇭🇰 45.142.154.10

🇸🇬 43.173.177.246

🇺🇸 35.231.146.137

🇬🇧 35.203.211.228

🇬🇧 35.203.210.83

🇰🇷 1.214.214.114

🇮🇪 2a05:d018:10df:d401:a913:3b63:d3f3:512e

🇧🇷 177.16.244.39

🇳🇱 176.65.148.2

🇺🇸 162.216.150.79

🇺🇸 147.185.132.255