JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.147.131.152

142.147.131.152 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 0%: ?

ISP	Web2Objects LLC
Usage Type	Fixed Line ISP
ASN	AS2914
Domain Name	web2objects.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.147.131.152

Whois 142.147.131.152

IP Abuse Reports for 142.147.131.152:

This IP address has been reported a total of 11 times from 5 distinct sources. 142.147.131.152 was first reported on October 30th 2023, and the most recent report was 7 months ago.

Old Reports: The most recent abuse report for this IP address is from 7 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-10-29 00:10:53 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 142.147.131.152 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 142.147.131.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Oct 28 20:10:48.041592 2025] [security2:error] [pid 20767:tid 20767] [client 142.147.131.152:50143] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.nbcnewsradio.com"] [uri "/example.htaccess"] [unique_id "aQFbiN_yuMSEiq1D3cjJ1wAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dayda.net	2025-10-13 03:22:37 (7 months ago)	m=user&c=Users&a=logout&referurl=https://example.com	Bad Web Bot
🇺🇸 TPI-Abuse	2025-10-01 15:02:18 (8 months ago)	(mod_security) mod_security (id:210492) triggered by 142.147.131.152 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 142.147.131.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 01 11:00:43.019686 2025] [security2:error] [pid 9487:tid 9531] [client 142.147.131.152:38155] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.staging.kettlehill.com"] [uri "/wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php"] [unique_id "aN1CG0vyOqnYEaX7Ie4ZlQAAANY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-27 02:58:38 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 142.147.131.152 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 142.147.131.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 22:58:34.399638 2025] [security2:error] [pid 872116:tid 872209] [client 142.147.131.152:58159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/Web.config" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.kettlehill.net"] [uri "/web.config"] [unique_id "aIWV2uDLJ9DFkwipcB3axwAAAkA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-29 15:31:56 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 142.147.131.152 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 142.147.131.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 11:31:44.079960 2025] [security2:error] [pid 2881561:tid 2881561] [client 142.147.131.152:46189] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.farmers123.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.farmers123.com"] [uri "/\\\\windows/win.ini"] [unique_id "aDh94MQIa56cllylojVo7AAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-02-28 21:24:38 (1 year ago)	(mod_security) mod_security (id:211120) triggered by 142.147.131.152 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:211120) triggered by 142.147.131.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 28 16:22:58.759575 2025] [security2:error] [pid 23557:tid 23654] [client 142.147.131.152:59641] [client 142.147.131.152] ModSecurity: Access denied with code 403 (phase 2). Match of "endsWith /modules/paypal/express_checkout/payment.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "29"] [id "211120"] [rev "12"] [msg "COMODO WAF: Remote File Inclusion Attack\|\|staging.kettlehill.com\|F\|2"] [data "Matched Data: https://example.com/? found within REQUEST_FILENAME: /wp-content/plugins/analytics-insights/tools/oauth2callback.php"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "staging.kettlehill.com"] [uri "/wp-content/plugins/analytics-insights/tools/oauth2callback.php"] [unique_id "Z8IpMmtMk7GUxmIrbYV02gAAAZc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-02-23 05:50:08 (1 year ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇩🇪 nyuuzyou	2024-12-14 11:54:26 (1 year ago)	Intensive scraping: /web?s=Tax%20preparation%20services%20Chillicothe&scraper=mwmbl. User-Agent: Moz ... show more Intensive scraping: /web?s=Tax%20preparation%20services%20Chillicothe&scraper=mwmbl. User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 12.5; rv:114.0) Gecko/20100101 Firefox/114.0. show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-11-05 23:43:50 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-11-02 05:29:20 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:227 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-30 22:42:23 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 152.32.226.205

🇸🇬 45.132.75.45

🇧🇪 34.22.181.5

🇮🇳 2401:4900:aa42:8d6c:2839:323b:1875:8dac

🇮🇳 223.181.73.78

🇳🇱 195.178.110.30

🇬🇧 185.122.130.128

🇩🇪 178.105.237.253

🇨🇳 116.255.226.73

🇫🇷 91.231.89.233

🇫🇷 91.231.89.146

🇲🇦 81.192.46.49

🇸🇪 77.53.192.88

🇩🇪 47.245.137.147

🇮🇳 122.160.59.87

🇹🇯 109.75.56.228

🇧🇷 45.238.2.34

🇧🇪 34.79.35.36

🇫🇷 194.163.135.65

🇮🇳 182.95.41.78