JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 46.202.224.122

46.202.224.122 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 21%: ?

21%

ISP	US ISP
Usage Type	Data Center/Web Hosting/Transit
ASN	AS40676
Domain Name	ukrtelecom.ua
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 46.202.224.122

Whois 46.202.224.122

IP Abuse Reports for 46.202.224.122:

This IP address has been reported a total of 10 times from 5 distinct sources. 46.202.224.122 was first reported on January 26th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 4server	2026-05-28 01:11:05 (3 weeks ago)	[ThuMay2803:11:00.6180232026][security2:error][pid1761965:tid1762212][client46.202.224.122:0]ModSecu ... show more [ThuMay2803:11:00.6180232026][security2:error][pid1761965:tid1762212][client46.202.224.122:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"www.aid-web.ch.81-17-25-250.cpanel.site\"][uri\"/.env.development\"][unique_id\"aheWJJ2l9yNlCUpvk3LihwAAANY\"] show less	Hacking Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-27 21:59:21 (3 weeks ago)	Auto-ban: >3000 req/min op 2026-05-27	Web App Attack SSH Hacking
🇺🇸 OceanTreasure	2026-05-27 20:35:30 (3 weeks ago)	tcp/443; WordPress config credential harvesting: "GET /wp-config.php~" @ 2026-05-27T20:34:27Z [proxy ... show more tcp/443; WordPress config credential harvesting: "GET /wp-config.php~" @ 2026-05-27T20:34:27Z [proxy] show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 16:12:23 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 46.202.224.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.224.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 12:12:13.650485 2026] [security2:error] [pid 12015:tid 12015] [client 46.202.224.122:42975] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.villamarehiltonhead.empoweruohio.org"] [uri "/.env.save"] [unique_id "ahcX3fI2O9FJHE4_fcDwkQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 00:22:38 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 46.202.224.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.224.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 20:22:32.719970 2026] [security2:error] [pid 2407:tid 2407] [client 46.202.224.122:42161] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.vsecuritysolutions.com"] [uri "/.env.bak"] [unique_id "ahY5SN09uLNRroRQpj8IhQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-26 23:54:38 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 46.202.224.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.224.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 19:54:32.093318 2026] [security2:error] [pid 16600:tid 16600] [client 46.202.224.122:41147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.comunitatregantsangles.cat.zentinex.com"] [uri "/sftp-config.json"] [unique_id "ahYyuOlDKsmuUqsy_lDPqAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-26 18:11:37 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 46.202.224.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.224.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 14:11:32.645211 2026] [security2:error] [pid 32153:tid 32153] [client 46.202.224.122:54849] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dbfitwell.com"] [uri "/.env.dusk.local"] [unique_id "ahXiVLsPdQsAVpmNphg7hwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-26 23:14:48 (10 months ago)	(mod_security) mod_security (id:240950) triggered by 46.202.224.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240950) triggered by 46.202.224.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 19:08:22.786268 2025] [security2:error] [pid 27651:tid 27878] [client 46.202.224.122:45391] ModSecurity: Access denied with code 403 (phase 1). Pattern match "\\\\D" at TX:1. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "4530"] [id "240950"] [rev "2"] [msg "COMODO WAF: XSS & SQL injection vulnerability in Pragyan CMS 3.0 (CVE-2015-1471)\|\|whm.staging.kettlehill.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "whm.staging.kettlehill.com"] [uri "/_users/org.couchdb.user:poc"] [unique_id "aIVf5q1-ZZtwgx0WzfstfgAAAUU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-29 22:59:53 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 46.202.224.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 46.202.224.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 18:59:46.796971 2025] [security2:error] [pid 3709432:tid 3709432] [client 46.202.224.122:40901] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.farmers123.com"] [uri "/wp-config.php.bak"] [unique_id "aDjm4qmHzOiljnoka1a1yAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-01-26 02:40:19 (1 year ago)	\| Common web attack.	Hacking SQL Injection Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 195.154.211.56

🇨🇱 136.248.242.166

🇹🇼 111.70.32.2

🇳🇱 89.21.67.156

🇨🇳 47.98.173.211

🇩🇪 213.209.159.227

🇹🇼 198.235.24.57

🇳🇱 193.176.31.234

🇮🇷 188.211.2.183

🇲🇰 188.44.20.30

🇮🇷 185.180.131.9

🇰🇷 168.110.100.192

🇺🇸 162.216.150.87

🇳🇱 161.35.145.192

🇺🇸 139.144.239.72

🇮🇩 112.215.66.237

🇷🇴 94.156.152.234

🇫🇷 85.217.140.51

🇨🇷 82.21.238.177

🇺🇸 66.132.186.210