JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.187.5.120

66.187.5.120 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 39%: ?

39%

ISP	Hostodo
Usage Type	Data Center/Web Hosting/Transit
ASN	AS399804
Domain Name	hostodo.com
Country	🇺🇸 United States of America
City	Las Vegas, Nevada

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.187.5.120

Whois 66.187.5.120

IP Abuse Reports for 66.187.5.120:

This IP address has been reported a total of 22 times from 10 distinct sources. 66.187.5.120 was first reported on April 24th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 martenmark	2026-06-04 13:19:01 (1 week ago)	66.187.5.120 - - [04/Jun/2026:13:19:00 +0000] "GET /.env.local HTTP/1.1" 403 669 "-" "Mozilla/5.0 (c ... show more 66.187.5.120 - - [04/Jun/2026:13:19:00 +0000] "GET /.env.local HTTP/1.1" 403 669 "-" "Mozilla/5.0 (compatible; keyhunt/2.0)" ... show less	Web App Attack
🇫🇷 ELYAZ	2026-06-04 12:34:33 (1 week ago)	(y3) Failed access -byebye- from 66.187.5.120 (US/United States/-): (CF_ENABLE)	Hacking
Anonymous	2026-06-01 08:38:59 (2 weeks ago)	Blocked: Reason='Suspicious traffic score=60 (review-based detection)'; Requests=32	Hacking
🇩🇪 mxbl	2026-05-31 16:50:03 (2 weeks ago)	Scanning for CMS vulnerabilities on a non-CMS system: /.git/config	Web App Attack
🇫🇷 SpaceHost-Server	2026-05-30 22:31:21 (2 weeks ago)		Brute-Force Web App Attack
🇩🇪 macrob	2026-05-29 08:07:49 (2 weeks ago)	2026/05/29 08:07:47 [error] 4160936#4160936: 265085261 access forbidden by rule, client: 66.187.5.1 ... show more 2026/05/29 08:07:47 [error] 4160936#4160936: 265085261 access forbidden by rule, client: 66.187.5.120, server: binixo.co, request: "GET /.env HTTP/1.1", host: "binixo.co" 2026/05/29 08:07:47 [error] 4160932#4160932: 265085190 access forbidden by rule, client: 66.187.5.120, server: binixo.co, request: "GET /.env.local HTTP/1.1", host: "binixo.co" 2026/05/29 08:07:48 [error] 4160936#4160936: 265085261 access forbidden by rule, client: 66.187.5.120, server: binixo.co, request: "GET /.env.production HTTP/1.1", host: "binixo.co" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-29 03:51:07 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 66.187.5.120 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.187.5.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 28 23:51:00.002354 2026] [security2:error] [pid 26953:tid 26953] [client 66.187.5.120:50631] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cmexico.co"] [uri "/.env"] [unique_id "ahkNJFktEoXDV7J5N1vzUwAAACo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 macrob	2026-05-28 23:13:28 (2 weeks ago)	2026/05/28 23:13:26 [error] 4096446#4096446: 264054138 access forbidden by rule, client: 66.187.5.1 ... show more 2026/05/28 23:13:26 [error] 4096446#4096446: 264054138 access forbidden by rule, client: 66.187.5.120, server: binixo.co, request: "GET /.env HTTP/1.1", host: "binixo.co" 2026/05/28 23:13:27 [error] 4096446#4096446: 264054140 access forbidden by rule, client: 66.187.5.120, server: binixo.co, request: "GET /.env.local HTTP/1.1", host: "binixo.co" 2026/05/28 23:13:27 [error] 4096445#4096445: 264054098 access forbidden by rule, client: 66.187.5.120, server: binixo.co, request: "GET /.env.production HTTP/1.1", host: "binixo.co" ... show less	Web App Attack
🇩🇪 bescared	2026-05-28 22:48:45 (2 weeks ago)	F2B - Malicious activity detected. URL Probing. -c23856ef-	Hacking Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-05-28 22:34:18 (2 weeks ago)		Brute-Force Web App Attack
🇩🇪 macrob	2026-05-28 10:31:31 (2 weeks ago)	2026/05/28 10:31:28 [error] 4016242#4016242: 262817241 access forbidden by rule, client: 66.187.5.1 ... show more 2026/05/28 10:31:28 [error] 4016242#4016242: 262817241 access forbidden by rule, client: 66.187.5.120, server: binixo.co, request: "GET /.env HTTP/1.1", host: "binixo.co" 2026/05/28 10:31:30 [error] 4016242#4016242: 262817241 access forbidden by rule, client: 66.187.5.120, server: binixo.co, request: "GET /.env.local HTTP/1.1", host: "binixo.co" 2026/05/28 10:31:30 [error] 4016242#4016242: 262817241 access forbidden by rule, client: 66.187.5.120, server: binixo.co, request: "GET /.env.production HTTP/1.1", host: "binixo.co" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-28 03:21:28 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 66.187.5.120 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.187.5.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 23:21:22.706817 2026] [security2:error] [pid 24664:tid 24664] [client 66.187.5.120:58318] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mindtoken.app"] [uri "/.env.local"] [unique_id "ahe0slE335LrjMQmTr1GvQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-05-27 22:31:07 (3 weeks ago)		Brute-Force Web App Attack
🇩🇪 macrob	2026-05-27 22:22:34 (3 weeks ago)	2026/05/27 22:22:32 [error] 3951710#3951710: 261461735 access forbidden by rule, client: 66.187.5.1 ... show more 2026/05/27 22:22:32 [error] 3951710#3951710: 261461735 access forbidden by rule, client: 66.187.5.120, server: binixo.co, request: "GET /.env HTTP/1.1", host: "binixo.co" 2026/05/27 22:22:32 [error] 3951710#3951710: 261461735 access forbidden by rule, client: 66.187.5.120, server: binixo.co, request: "GET /.env.local HTTP/1.1", host: "binixo.co" 2026/05/27 22:22:33 [error] 3951710#3951710: 261461735 access forbidden by rule, client: 66.187.5.120, server: binixo.co, request: "GET /.env.production HTTP/1.1", host: "binixo.co" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 21:03:24 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 66.187.5.120 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.187.5.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 17:03:18.068901 2026] [security2:error] [pid 14554:tid 14554] [client 66.187.5.120:57049] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arabou.co"] [uri "/.env"] [unique_id "ahdcFtl2GqoZ7k5VJERlbgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 204.76.203.81

🇫🇷 146.70.194.236

🇺🇸 147.185.132.208

🇻🇳 103.167.89.178

🇺🇸 54.224.176.230

🇸🇬 45.194.17.43

🇺🇸 2607:f8b0:4004:100d::128

🇰🇷 211.254.212.59

🇸🇪 192.178.93.147

🇫🇷 91.231.89.169

🇳🇱 86.54.31.34

🇨🇳 58.221.60.25

🇺🇸 23.105.162.48

🇲🇽 187.192.86.153

🇺🇸 150.107.38.160

🇺🇸 148.72.152.145

🇫🇷 91.196.152.219

🇨🇳 61.129.70.208

🇰🇷 59.21.37.60

🇨🇳 58.220.39.200