JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 92.204.145.139

92.204.145.139 was found in our database!

This IP was reported 253 times. Confidence of Abuse is 0%: ?

ISP	Host Europe GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	Unknown
Domain Name	godaddy.com
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 92.204.145.139

Whois 92.204.145.139

IP Abuse Reports for 92.204.145.139:

This IP address has been reported a total of 253 times from 116 distinct sources. 92.204.145.139 was first reported on December 27th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Axel	2024-12-01 19:22:51 (1 year ago)	Attempted access to flagged sensitive file. Full access log entry: 92.204.145.139 - - [18/Nov/2024:2 ... show more Attempted access to flagged sensitive file. Full access log entry: 92.204.145.139 - - [18/Nov/2024:20:11:16 -0500] "GET /.env HTTP/1.1" 404 1022 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" show less	Brute-Force
🇺🇸 mawan	2024-11-21 17:34:04 (1 year ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack
🇫🇷 himanshu LNU	2024-11-21 04:37:06 (1 year ago)	Domain : creacent.com Rule : env 2024-11-21 04:35:54 *hidden-privacy* GET /.env - 80 - 92.204.14 ... show more Domain : creacent.com Rule : env 2024-11-21 04:35:54 *hidden-privacy* GET /.env - 80 - 92.204.145.139 HTTP/1.1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0 - creacent.com 403 0 64 0 207 4299 - - show less	Hacking SQL Injection
🇺🇸 TPI-Abuse	2024-11-20 20:27:28 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 ... show more (mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 20 15:27:24.328101 2024] [security2:error] [pid 4941:tid 4941] [client 92.204.145.139:60778] [client 92.204.145.139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wilmbifoundation.com"] [uri "/.env"] [unique_id "Zz5GLHYbEoz9sj07jzQNwQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-11-20 18:01:18 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 ... show more (mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 20 13:01:13.030694 2024] [security2:error] [pid 7963:tid 7963] [client 92.204.145.139:59236] [client 92.204.145.139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "easy-ad.net"] [uri "/.env"] [unique_id "Zz4j6fPUpyFu-_yWdLonIgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 CrystalMaker	2024-11-19 22:13:57 (1 year ago)	Vulnerability scan - GET /.env	Hacking
🇺🇸 TPI-Abuse	2024-11-19 21:52:53 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 ... show more (mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 19 16:52:48.366715 2024] [security2:error] [pid 24284:tid 24284] [client 92.204.145.139:52204] [client 92.204.145.139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.19"] [uri "/.env"] [unique_id "Zz0IsLBUAASFVUZ0Gy7O_QAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-11-19 17:27:57 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 ... show more (mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 19 12:27:52.383289 2024] [security2:error] [pid 20260:tid 20260] [client 92.204.145.139:50640] [client 92.204.145.139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lenukuhivabookings.com"] [uri "/.env"] [unique_id "ZzzKmPyOSB1JCGZOlI9LMAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-11-19 17:12:01 (1 year ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 TPI-Abuse	2024-11-19 17:03:17 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 ... show more (mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 19 12:03:13.667586 2024] [security2:error] [pid 26617:tid 26617] [client 92.204.145.139:53484] [client 92.204.145.139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "crescentcitycafe.net"] [uri "/.env"] [unique_id "ZzzE0eGOxnBYyL8nZDu9aQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-11-19 15:59:16 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 ... show more (mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 19 10:59:09.427637 2024] [security2:error] [pid 21325:tid 21325] [client 92.204.145.139:47008] [client 92.204.145.139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "carmensaundersrussell.com"] [uri "/.env"] [unique_id "Zzy1zUwcYs10Q9gdbvC9_wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-11-19 15:43:00 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 ... show more (mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 19 10:42:54.040005 2024] [security2:error] [pid 3433547:tid 3433547] [client 92.204.145.139:38462] [client 92.204.145.139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bronislawsuchanek.com"] [uri "/.env"] [unique_id "Zzyx_v8Ir42onsq6nXiQtAAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇯🇵 Valhalla	2024-11-19 15:05:05 (1 year ago)	Suspicious Activity Detected: /.env	Hacking Web App Attack
🇳🇱 Hydra-Shield.fr	2024-11-19 09:53:44 (1 year ago)	Directory Traversal on: /.env	Web App Attack
🇺🇸 TPI-Abuse	2024-11-19 09:17:17 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 ... show more (mod_security) mod_security (id:210492) triggered by 92.204.145.139 (ns1012144.ip-92-204-145.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 19 04:17:10.208115 2024] [security2:error] [pid 29659:tid 29659] [client 92.204.145.139:38060] [client 92.204.145.139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jimlawless.net"] [uri "/.env"] [unique_id "ZzxXls7Ke8l98pOooiVQkgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 253 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 147.90.209.8

🇰🇷 110.14.190.221

🇺🇸 74.82.47.44

🇺🇸 98.80.4.91

🇪🇸 80.24.1.119

🇩🇪 69.5.169.159

🇮🇳 103.54.101.248

🇺🇸 52.180.144.125

🇺🇸 17.246.19.15

🇮🇩 202.145.0.18

🇺🇸 195.184.76.75

🇮🇳 154.84.242.115

🇳🇱 128.90.141.18

🇫🇷 109.199.103.240

🇵🇰 103.141.5.129

🇳🇱 40.126.32.138

🇨🇦 20.151.203.184

🇺🇸 198.199.85.66

🇳🇱 176.65.149.212

🇺🇸 66.132.172.133