JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 94.154.142.235

94.154.142.235 was found in our database!

This IP was reported 93 times. Confidence of Abuse is 100%: ?

100%

ISP	Azadeh Golestan Parast trading as Virtual Dedicated Datacenter Services FZCO
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9009
Domain Name	virtualhost.ae
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 94.154.142.235

Whois 94.154.142.235

IP Abuse Reports for 94.154.142.235:

This IP address has been reported a total of 93 times from 75 distinct sources. 94.154.142.235 was first reported on June 7th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-10 06:57:19 (4 days ago)	/.env.swp	Web App Attack
🇫🇷 geot	2026-06-09 10:32:48 (4 days ago)	HEAD /settings/local.py HTTP/1.1 HEAD /.env HTTP/1.1 HEAD /bitbucket-pipelines.yml HTTP/1.1 HEAD /pr ... show more HEAD /settings/local.py HTTP/1.1 HEAD /.env HTTP/1.1 HEAD /bitbucket-pipelines.yml HTTP/1.1 HEAD /project/settings.py HTTP/1.1 show less	Hacking Web App Attack
🇫🇷 SpaceHost-Server	2026-06-08 22:31:20 (5 days ago)		Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-08 21:59:49 (5 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-07. show less	Web App Attack SSH Hacking
Anonymous	2026-06-08 18:21:58 (5 days ago)	/.env.staging.swp	Web App Attack
🇵🇱 dzpk	2026-06-08 14:28:18 (5 days ago)	[08/Jun/2026:16:27:29 +0200] 178092884955.071720 94.154.142.235 44055 HOST 443 [08/Jun/2026:16:27:37 ... show more [08/Jun/2026:16:27:29 +0200] 178092884955.071720 94.154.142.235 44055 HOST 443 [08/Jun/2026:16:27:37 +0200] 17809288576.380953 94.154.142.235 34005 HOST 443 [08/Jun/2026:16:28:17 +0200] 178092889749.501943 94.154.142.235 38493 HOST 80 show less	Web App Attack
🇨🇭 YF	2026-06-08 14:05:19 (5 days ago)	Environment file probe	Web App Attack
🇺🇸 aks4226	2026-06-08 12:27:41 (5 days ago)	Bot search, attacking common web applications.	Web App Attack
🇫🇷 Donovan	2026-06-08 12:16:14 (5 days ago)	Web scan/exploit blocked by fail2ban on commitshift.fr - jail: npm-scan - 1 attempt(s)	Web App Attack
🇫🇷 bazter.pro	2026-06-08 12:08:02 (5 days ago)	Auto-Ban [2026-06-08 15:07:52]: CRITICAL: Exploit trap paths (4); DC: Azadeh Golestan Parast trading ... show more Auto-Ban [2026-06-08 15:07:52]: CRITICAL: Exploit trap paths (4); DC: Azadeh Golestan Parast trading as Virtual Dedicated Datacenter Services FZCO [Paths: 15] \| Details: Exploit trap paths: /dump.sql, /.npmrc, /.aws/credentials, /db.sql \| Sensitive files/paths: /config.yml.swp, /dump.sql, /.npmrc, /.docker/config.json, /.aws/credentials \| 404 errors (14): /id_rsa, /db.sql, /appsettings.Production.json, /id_ed25519, /.aws/credentials, /application.properties, /project/settings.py, /settings/local.py, /.docker/config.json, /.yarnrc.yml (and 3 more) \| 403 errors (1): /.npmrc \| Other paths: /persistence.xml show less	Web App Attack Hacking
🇫🇷 LoneRider	2026-06-08 11:38:04 (5 days ago)	[08/Jun/2026:13:33:20.475230 +0200] aiaogK6Z4HqZ_Xoc5LNUUwAAAAE 94.154.142.235 42870 127.0.0.1 7081 ... show more [08/Jun/2026:13:33:20.475230 +0200] aiaogK6Z4HqZ_Xoc5LNUUwAAAAE 94.154.142.235 42870 127.0.0.1 7081 [08/Jun/2026:13:33:47.237700 +0200] aiaom3S2tXG_yXGjmQln8AAAAAI 94.154.142.235 42988 127.0.0.1 7080 [08/Jun/2026:13:37:53.813695 +0200] aiapkX54jGBQAXdzgcfx0gAAAAg 94.154.142.235 47596 127.0.0.1 7081 ... show less	Hacking
🇫🇮 as211431.net	2026-06-08 10:56:00 (5 days ago)	Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: BLOCK Protocol: HTTP/1.1 (HEAD meth ... show more Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: BLOCK Protocol: HTTP/1.1 (HEAD method) Endpoint: /.env.old UA: Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected]) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 omartin	2026-06-08 10:50:14 (5 days ago)	Critical Vulnerability Scan detected	Hacking Brute-Force Exploited Host Web App Attack
🇫🇷 vtchost.com	2026-06-08 10:46:46 (5 days ago)	vtchost.com:80 94.154.142.235 - - [08/Jun/2026:12:46:45 +0200] "HEAD /.env.staging.swp HTTP/1.1" 418 ... show more vtchost.com:80 94.154.142.235 - - [08/Jun/2026:12:46:45 +0200] "HEAD /.env.staging.swp HTTP/1.1" 418 150 "-" "Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected])" ... show less	Web App Attack
🇫🇷 sthoyer.de	2026-06-08 10:30:49 (5 days ago)	94.154.142.235 - - [08/Jun/2026:12:26:32 +0200] "HEAD /.wp-config.php.swp HTTP/1.1" 302 - "-" "Mozil ... show more 94.154.142.235 - - [08/Jun/2026:12:26:32 +0200] "HEAD /.wp-config.php.swp HTTP/1.1" 302 - "-" "Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected])" 94.154.142.235 - - [08/Jun/2026:12:27:55 +0200] "HEAD /settings_local.py.swp HTTP/1.1" 302 - "-" "Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected])" 94.154.142.235 - - [08/Jun/2026:12:30:48 +0200] "HEAD /.terraform/terraform.tfstate HTTP/1.1" 302 - "-" "Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected])" ... show less	Web App Attack

Showing 1 to 15 of 93 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 103.111.228.36

🇬🇧 209.42.18.223

🇧🇷 179.102.26.14

🇰🇷 175.214.123.177

🇻🇳 171.244.39.95

🇧🇼 168.167.228.123

🇩🇪 143.244.82.231

🇸🇬 114.119.156.129

🇮🇩 103.63.25.203

🇧🇬 91.191.209.198

🇫🇷 85.217.140.35

🇺🇸 70.120.203.193

🇺🇸 34.24.52.107

🇺🇸 205.210.31.48

🇦🇺 202.62.129.18

🇺🇸 162.216.149.173

🇩🇪 154.217.194.72

🇨🇳 117.14.153.45

🇳🇱 45.148.10.147

🇮🇪 4.210.91.174