JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 46.202.198.136

46.202.198.136 was found in our database!

This IP was reported 98 times. Confidence of Abuse is 100%: ?

100%

ISP	US ISP
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	ukrtelecom.ua
Country	🇺🇸 United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 46.202.198.136

Whois 46.202.198.136

IP Abuse Reports for 46.202.198.136:

This IP address has been reported a total of 98 times from 42 distinct sources. 46.202.198.136 was first reported on May 31st 2026, and the most recent report was 21 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-06-08 02:33:02 (21 minutes ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-195)	Hacking Web App Attack
Anonymous	2026-06-08 00:36:07 (2 hours ago)	(caddyscan) Scanner path probe from 46.202.198.136 (US/United States/-): 5 in the last 3600 secs; Po ... show more (caddyscan) Scanner path probe from 46.202.198.136 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 46.202.198.136 - - [08/Jun/2026:00:36:06 +0000] "GET /dev/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [08/Jun/2026:00:36:06 +0000] "GET /app/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [08/Jun/2026:00:36:06 +0000] "GET /backend/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [08/Jun/2026:00:36:06 +0000] "GET /core/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [08/Jun/2026:00:36:06 +0000] "GET /admin/.env HTTP/1.1" show less	Port Scan
Anonymous	2026-06-07 23:14:17 (3 hours ago)	(caddyscan) Scanner path probe from 46.202.198.136 (US/United States/-): 5 in the last 3600 secs; Po ... show more (caddyscan) Scanner path probe from 46.202.198.136 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 46.202.198.136 - - [07/Jun/2026:23:14:12 +0000] "GET /api/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [07/Jun/2026:23:14:12 +0000] "GET /backend/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [07/Jun/2026:23:14:12 +0000] "GET /app/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [07/Jun/2026:23:14:12 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [07/Jun/2026:23:14:12 +0000] "GET /core/.env HTTP/1.1" show less	Port Scan
🇱🇺 conseilgouz	2026-06-07 13:51:18 (13 hours ago)	are-17 : Block hidden directories=>/new/.env(/)	Hacking
🇬🇧 Apache	2026-06-07 08:41:26 (18 hours ago)	(mod_security) mod_security (id:210492) triggered by 46.202.198.136 (US/United States/-): 5 in the l ... show more (mod_security) mod_security (id:210492) triggered by 46.202.198.136 (US/United States/-): 5 in the last 300 secs (CF_ENABLE) show less	Brute-Force Web App Attack
🇲🇾 Rizzy	2026-06-07 08:38:54 (18 hours ago)	Multiple WAF Violations	Brute-Force Web App Attack
Anonymous	2026-06-07 07:29:54 (19 hours ago)	(caddyscan) Scanner path probe from 46.202.198.136 (US/United States/-): 5 in the last 3600 secs; Po ... show more (caddyscan) Scanner path probe from 46.202.198.136 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 46.202.198.136 - - [07/Jun/2026:07:29:51 +0000] "GET /dev/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [07/Jun/2026:07:29:51 +0000] "GET /core/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [07/Jun/2026:07:29:51 +0000] "GET /app/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [07/Jun/2026:07:29:51 +0000] "GET /new/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [07/Jun/2026:07:29:51 +0000] "GET /member/.env HTTP/1.1" show less	Port Scan
🇺🇸 kosada.com	2026-06-07 04:02:19 (22 hours ago)	Web vulnerability probing: /api/.env	Web App Attack
🇩🇪 SCHAPPY	2026-06-07 00:26:21 (1 day ago)	Critical web app attack detected. Restricted File Access Attempt	Web App Attack
Anonymous	2026-06-06 22:41:16 (1 day ago)	(caddyscan) Scanner path probe from 46.202.198.136 (US/United States/-): 5 in the last 3600 secs; Po ... show more (caddyscan) Scanner path probe from 46.202.198.136 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 46.202.198.136 - - [06/Jun/2026:22:41:15 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [06/Jun/2026:22:41:15 +0000] "GET /dev/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [06/Jun/2026:22:41:15 +0000] "GET /core/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [06/Jun/2026:22:41:15 +0000] "GET /backend/.env HTTP/1.1" [REDACTED] 200 2627 46.202.198.136 - - [06/Jun/2026:22:41:15 +0000] "GET /api/.env HTTP/1.1" show less	Port Scan
🇨🇦 polycoda	2026-06-06 22:25:29 (1 day ago)	AutoBlock: 🎯 Vulnerability Scanner (Non Decay-Based)	Hacking Web App Attack
🇧🇷 Halux	2026-06-06 19:10:36 (1 day ago)	46.202.198.136 Probing protected path or service	Web App Attack
🇬🇧 WebNiraj	2026-06-06 18:27:12 (1 day ago)	(mod_security) mod_security (id:949110) triggered by 46.202.198.136 (US/United States/-): 5 in the l ... show more (mod_security) mod_security (id:949110) triggered by 46.202.198.136 (US/United States/-): 5 in the last 3600 secs [SIGMA] show less	Brute-Force
🇹🇷 baku.hosting	2026-06-06 17:14:12 (1 day ago)	CSF Auto Report: (mod_security) mod_security (id:949110) triggered by 46.202.198.136 (US/United Stat ... show more CSF Auto Report: (mod_security) mod_security (id:949110) triggered by 46.202.198.136 (US/United States/-): 5 in the last 3600 secs show less	Brute-Force Web App Attack
🇬🇧 consul.to	2026-06-06 13:19:58 (1 day ago)	Web attack/malicious scanning detected	Web App Attack

Showing 1 to 15 of 98 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇿 196.28.226.125

🇨🇳 116.179.33.21

🇮🇩 103.27.250.197

🇷🇴 2.57.121.25

🇹🇼 198.235.24.57

🇧🇷 187.72.128.177

🇸🇬 168.144.37.240

🇩🇪 134.122.93.100

🇧🇪 130.211.74.36

🇻🇳 116.110.208.186

🇨🇦 85.217.149.23

🇧🇷 45.226.119.175

🇸🇬 45.82.78.107

🇺🇸 45.33.85.62

🇬🇧 35.242.181.226

🇺🇸 35.188.251.231

🇩🇪 34.179.239.248

🇺🇸 34.67.8.162

🇩🇪 213.95.191.47

🇩🇪 167.94.146.76