JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 75.119.134.234

75.119.134.234 was found in our database!

This IP was reported 92 times. Confidence of Abuse is 100%: ?

100%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	vmi3162392.contaboserver.net
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 75.119.134.234

Whois 75.119.134.234

IP Abuse Reports for 75.119.134.234:

This IP address has been reported a total of 92 times from 65 distinct sources. 75.119.134.234 was first reported on April 28th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 andypiper	2026-06-16 01:00:26 (2 hours ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇺🇸 mnsf	2026-06-16 00:16:38 (2 hours ago)	Abuse Detected (9)	Brute-Force Web App Attack
Anonymous	2026-06-15 20:08:28 (7 hours ago)	75.119.134.234 - - [16/Jun/2026:04:08:28 +0800] "GET /api/.env HTTP/1.1" 301 236 "-" "Go-http-client ... show more 75.119.134.234 - - [16/Jun/2026:04:08:28 +0800] "GET /api/.env HTTP/1.1" 301 236 "-" "Go-http-client/1.1" ... show less	Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-15 16:02:47 (11 hours ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇬🇧 Oakley	2026-06-15 14:57:50 (12 hours ago)	(confirmed_bot_sig) Confirmed bot	Hacking
🇨🇭 zynex	2026-06-15 12:48:46 (14 hours ago)	URL Probing: /api/.env	Web App Attack
🇳🇱 BlueWire Hosting	2026-06-15 12:47:58 (14 hours ago)	Probing websites for vulnerabilities	Web App Attack
🇨🇭 TheCoon	2026-06-15 12:45:01 (14 hours ago)	Automated: Credential theft attempt - JSON bomb served	Web App Attack Hacking
🇬🇧 consul.to	2026-06-15 11:54:56 (15 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇪🇸 elcruzado.es	2026-06-15 11:46:52 (15 hours ago)	(mod_security) mod_security triggered on hostname [redacted] 75.119.134.234 (FR/France/vmi3162392.co ... show more (mod_security) mod_security triggered on hostname [redacted] 75.119.134.234 (FR/France/vmi3162392.contaboserver.net) show less	SQL Injection
🇺🇸 TPI-Abuse	2026-06-15 10:20:43 (16 hours ago)	(mod_security) mod_security (id:210492) triggered by 75.119.134.234 (vmi3162392.contaboserver.net): ... show more (mod_security) mod_security (id:210492) triggered by 75.119.134.234 (vmi3162392.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 06:20:39.846961 2026] [security2:error] [pid 28369:tid 28369] [client 75.119.134.234:38060] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "emmlogistics.com"] [uri "/db/.env"] [unique_id "ai_R9wuBqogXL2_dD2tSwAAAAE4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 10:01:16 (17 hours ago)	(mod_security) mod_security (id:210492) triggered by 75.119.134.234 (vmi3162392.contaboserver.net): ... show more (mod_security) mod_security (id:210492) triggered by 75.119.134.234 (vmi3162392.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 06:01:11.941674 2026] [security2:error] [pid 28818:tid 28823] [client 75.119.134.234:39612] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arrowsinthequiver.com"] [uri "/db/.env"] [unique_id "ai_NZ8RIphRj0RdOLyUrlQAAAUM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ghostwarriors	2026-06-15 09:20:38 (17 hours ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-15 03:36:14 (23 hours ago)	2026-06-15T05:36:13.107185 mail2.akcurate.de sshd-session[43648]: Invalid user cimtprecision from 75 ... show more 2026-06-15T05:36:13.107185 mail2.akcurate.de sshd-session[43648]: Invalid user cimtprecision from 75.119.134.234 port 52918 2026-06-15T05:36:13.113545 mail2.akcurate.de sshd-session[43648]: Connection closed by invalid user cimtprecision 75.119.134.234 port 52918 [preauth] ... show less	Brute-Force SSH
Anonymous	2026-06-15 03:28:48 (23 hours ago)	2026-06-15 03:55:21,669 fail2ban.actions [757]: NOTICE [sshd] Ban 75.119.134.234 2026-06-15 ... show more 2026-06-15 03:55:21,669 fail2ban.actions [757]: NOTICE [sshd] Ban 75.119.134.234 2026-06-15 05:28:48,116 fail2ban.actions [757]: NOTICE [sshd] Ban 75.119.134.234 ... show less	Brute-Force Exploited Host

Showing 1 to 15 of 92 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.198

🇺🇸 192.3.16.60

🇳🇱 160.119.76.48

🇨🇱 216.155.93.75

🇫🇮 204.168.240.142

🇳🇱 178.16.54.237

🇩🇪 167.94.146.49

🇺🇸 156.235.89.153

🇧🇩 103.135.252.20

🇸🇬 47.84.100.21

🇮🇱 46.116.145.8

🇭🇰 38.76.171.153

🇺🇸 35.239.152.182

🇺🇸 3.21.52.165

🇺🇸 2607:f8b0:4001:c20::125

🇲🇽 187.191.48.24

🇺🇸 151.246.207.37

🇫🇮 147.185.133.182

🇫🇷 141.101.68.59

🇰🇷 110.10.176.24