JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 46.22.135.141

46.22.135.141 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 0%: ?

ISP	Blacknight Cloud Hosting
Usage Type	Data Center/Web Hosting/Transit
ASN	AS39122
Hostname(s)	135-141.colo.sta.blacknight.ie
Domain Name	blacknight.ie
Country	🇮🇪 Ireland
City	Dublin, Leinster

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 46.22.135.141

Whois 46.22.135.141

IP Abuse Reports for 46.22.135.141:

This IP address has been reported a total of 39 times from 19 distinct sources. 46.22.135.141 was first reported on June 20th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 SOC-BR	2024-06-24 07:01:32 (1 year ago)	Attack detected by Fortinet - misc: AndroxGh0st.Malware - 2024-06-23 01:22:00 - Source Port 55857	Port Scan Hacking
🇺🇸 TPI-Abuse	2024-06-24 06:37:14 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 46.22.135.141 (135-141.colo.sta.blacknight.ie): ... show more (mod_security) mod_security (id:210492) triggered by 46.22.135.141 (135-141.colo.sta.blacknight.ie): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 24 02:37:07.784699 2024] [security2:error] [pid 1658] [client 46.22.135.141:52583] [client 46.22.135.141] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.snegenika.co.il"] [uri "/.env"] [unique_id "ZnkUE3VrbNR-02sHCQZmqwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 mkey	2024-06-24 05:44:02 (1 year ago)	2024-06-23 22:05:51 - Unauthorized connection probe. Source on blacklist	Port Scan Hacking
🇮🇩 Incidents Response Neptus Team	2024-06-24 01:26:00 (1 year ago)	Report Abuse IP	Hacking Exploited Host Web App Attack
Anonymous	2024-06-23 14:50:41 (1 year ago)	[15:50:39] 0: Scanning for exploits - /.env (Repeat abuser, 2 other attacks previously recorded.)	Web App Attack
🇺🇸 gu-alvareza	2024-06-23 07:05:27 (1 year ago)	AndroxGh0st.Malware	Hacking Exploited Host
🇳🇱 BlueWire Hosting	2024-06-23 04:10:16 (1 year ago)	Scanning for Laravel vulnerabilities	Web App Attack
🇺🇸 nationaleventpros.com	2024-06-23 02:20:59 (1 year ago)	vulnerability scan	Web App Attack
🇺🇸 TPI-Abuse	2024-06-23 02:03:53 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 46.22.135.141 (135-141.colo.sta.blacknight.ie): ... show more (mod_security) mod_security (id:210492) triggered by 46.22.135.141 (135-141.colo.sta.blacknight.ie): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 22 22:03:48.265004 2024] [security2:error] [pid 28871:tid 47399233992448] [client 46.22.135.141:56520] [client 46.22.135.141] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "econpage.com"] [uri "/.env"] [unique_id "ZneChPvwbHw47rUdNjRr_AAAAFY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2024-06-23 01:53:46 (1 year ago)	46.22.135.141 - - [23/Jun/2024:04:53:45 +0300] "GET /.env HTTP/1.1" 404 277 "-" "Mozilla/5.0 (Linux; ... show more 46.22.135.141 - - [23/Jun/2024:04:53:45 +0300] "GET /.env HTTP/1.1" 404 277 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 46.22.135.141 - - [23/Jun/2024:04:53:46 +0300] "GET /.env HTTP/1.1" 404 3223 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2024-06-23 00:59:12 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 46.22.135.141 (135-141.colo.sta.blacknight.ie): ... show more (mod_security) mod_security (id:210492) triggered by 46.22.135.141 (135-141.colo.sta.blacknight.ie): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 22 20:59:05.563873 2024] [security2:error] [pid 1796] [client 46.22.135.141:50132] [client 46.22.135.141] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "livingwaterresortandspa.com"] [uri "/.env"] [unique_id "ZndzWfS876nIBZ90WAwqhQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-06-23 00:33:11 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 46.22.135.141 (135-141.colo.sta.blacknight.ie): ... show more (mod_security) mod_security (id:210492) triggered by 46.22.135.141 (135-141.colo.sta.blacknight.ie): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 22 20:33:07.665630 2024] [security2:error] [pid 9045] [client 46.22.135.141:53866] [client 46.22.135.141] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "quakeprediction.com"] [uri "/.env"] [unique_id "ZndtQzZZd06NYs6CE6jYygAAAC8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 london2038.com	2024-06-22 18:53:54 (1 year ago)	Malformed or malicious web request 46.22.135.141 - - [22/Jun/2024:20:53:50 +0200] "POST / HTTP/1.1" ... show more Malformed or malicious web request 46.22.135.141 - - [22/Jun/2024:20:53:50 +0200] "POST / HTTP/1.1" 404 12907 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" show less	Hacking Web App Attack
🇪🇸 10dencehispahard SL	2024-06-22 17:05:47 (1 year ago)	Unauthorized login attempts [ accesslogs]	Brute-Force
🇮🇩 Burayot	2024-06-22 15:39:54 (1 year ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 46.22.135.141 (IE/Ireland/135-141.co ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 46.22.135.141 (IE/Ireland/135-141.colo.sta.blacknight.ie): 2 in the last 3600 secs show less	Web App Attack

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇹 5.89.75.194

🇰🇷 222.239.218.186

🇰🇷 211.46.188.16

🇧🇷 177.86.123.124

🇺🇸 162.216.149.86

🇰🇷 121.78.158.30

🇨🇳 120.48.26.185

🇺🇸 104.152.52.240

🇺🇸 104.152.52.238

🇺🇸 104.152.52.71

🇺🇸 104.152.52.67

🇺🇸 104.152.52.66

🇳🇴 82.102.27.93

🇺🇸 20.168.0.73

🇧🇷 177.78.56.105

🇧🇷 177.23.175.64

🇳🇱 176.65.139.173

🇺🇸 157.230.191.203

🇯🇵 156.227.232.198

🇧🇷 152.67.46.203