JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.226.121.33

64.226.121.33 was found in our database!

This IP was reported 78 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.226.121.33

Whois 64.226.121.33

IP Abuse Reports for 64.226.121.33:

This IP address has been reported a total of 78 times from 34 distinct sources. 64.226.121.33 was first reported on July 19th 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-01-12 17:56:05 (5 months ago)	Web scans for used solutions.	Web App Attack
Anonymous	2026-01-12 15:06:03 (5 months ago)	64.226.121.33 - - [12/Jan/2026:16:05:53 +0100] "GET /.git/config HTTP/1.1" 403 8702 "-" "Mozilla/5.0 ... show more 64.226.121.33 - - [12/Jan/2026:16:05:53 +0100] "GET /.git/config HTTP/1.1" 403 8702 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 64.226.121.33 - - [12/Jan/2026:16:05:53 +0100] "GET /.git/config HTTP/1.1" 403 541 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 64.226.121.33 - - [12/Jan/2026:16:05:53 +0100] "GET /.git/config HTTP/1.1" 403 5560 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 64.226.121.33 - - [12/Jan/2026:16:05:53 +0100] "GET /jquery.filer/php/readme.txt HTTP/1.1" 403 958 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 64.226.121.33 - - [12/Jan/2026:16:05:53 +0100] "GET /assets/vendor/jquery.filer/php/readme.txt HTTP/1.1" 403 958 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 ... show less	DDoS Attack
🇳🇱 Jordy	2026-01-12 13:05:37 (5 months ago)	12/Jan/2026:14:05:36.781182 +0100Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 12/Jan/2026:14:05:36.781182 +0100Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 64.226.121.33] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.git/ found within REQUEST_FILENAME: /.git/config"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "ramongames.nl"] [uri "/.git/config"] [unique_id "aWTxoNJkbn89grS-xEHfXAAAAAA"] 12/Jan/2026:14:05:36.781182 +0100Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 64.226.121.33] ModSecurity: Warning. Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "9 ... show less	Web App Attack
🇳🇱 Site.eu	2026-01-12 12:33:51 (5 months ago)	Excessive 404/403 errors	Brute-Force
🇩🇪 enjoyably	2026-01-12 11:44:16 (5 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Hacking Web App Attack
🇩🇪 BlueWire Hosting	2026-01-12 09:42:47 (5 months ago)	Probing websites for vulnerabilities	SQL Injection Web App Attack
🇳🇱 Savvii	2026-01-12 09:26:56 (5 months ago)	20 attempts against mh-misbehave-ban on milky	Brute-Force Bad Web Bot Web App Attack
🇩🇪 KiekerJan	2026-01-12 08:46:14 (5 months ago)	64.226.121.33 - - [12/Jan/2026:09:46:13 +0100] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 ... show more 64.226.121.33 - - [12/Jan/2026:09:46:13 +0100] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 64.226.121.33 - - [12/Jan/2026:09:46:14 +0100] "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" ... show less	Web App Attack
🇳🇱 Site.eu	2026-01-12 07:34:14 (5 months ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 enjoyably	2026-01-12 06:53:32 (5 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/CVE-2017-9841	Web App Attack
Anonymous	2026-01-10 11:48:33 (5 months ago)	Bot / scanning and/or hacking attempts: GET /media/kcfinder/upload.php HTTP/1.1, GET /assets/jquery- ... show more Bot / scanning and/or hacking attempts: GET /media/kcfinder/upload.php HTTP/1.1, GET /assets/jquery-file-upload/server/php/ HTTP/1.1, POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1, GET /plugin/server/php/ HTTP/1.1, GET /admin/responsive_filemanager/filemanager/dialog.php HTTP/1, GET /scripts/filemanager/dialog.php HTTP/1.1, GET /app/webroot/js/kcfinder/upload.php HTTP/1.1, GET /asset/filemanager/dialog.php HTTP/1.1, GET /filemanager/filemanager/dialog.php HTTP/1.1, GET /resources/js/tinymce/plugins/filemanager/dialog.php HTTP/1, GET /assets/scripts/filemanager/dialog.php HTTP/1.1 show less	Hacking Web App Attack
🇳🇱 Savvii	2026-01-10 11:43:15 (5 months ago)	15 attempts against mh-modsecurity-ban on hostbillst2	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-01-10 08:56:54 (5 months ago)	Excessive multi-domain requests	Brute-Force
🇳🇱 lometje	2026-01-10 08:50:00 (5 months ago)	Login attempt or request with invalid authentication from 64.226.121.33 (64.226.121.33). Requested U ... show more Login attempt or request with invalid authentication from 64.226.121.33 (64.226.121.33). Requested URL: '/media/kcfinder/upload.php'. (Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36) show less	Hacking Brute-Force Bad Web Bot
🇩🇪 enjoyably	2026-01-10 08:27:11 (5 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Hacking Web App Attack

Showing 1 to 15 of 78 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 194.48.251.105

🇬🇧 35.203.211.132

🇬🇧 35.203.210.71

🇵🇱 185.182.97.78

🇳🇱 176.65.149.30

🇺🇸 162.216.150.49

🇺🇸 144.48.83.12

🇨🇳 106.12.120.171

🇷🇴 94.156.152.50

🇺🇸 91.230.168.145

🇮🇷 85.198.19.251

🇺🇸 64.62.156.192

🇨🇳 60.223.251.132

🇰🇷 59.21.37.60

🇬🇧 193.163.125.9

🇩🇪 192.109.200.220

🇺🇸 109.105.209.15

🇫🇷 91.231.89.228

🇫🇷 91.231.89.76

🇩🇪 81.88.45.49