JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.147.240.71

142.147.240.71 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 0%: ?

ISP	Web2Objects LLC
Usage Type	Fixed Line ISP
ASN	AS2914
Domain Name	web2objects.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.147.240.71

Whois 142.147.240.71

IP Abuse Reports for 142.147.240.71:

This IP address has been reported a total of 11 times from 4 distinct sources. 142.147.240.71 was first reported on February 27th 2024, and the most recent report was 8 months ago.

Old Reports: The most recent abuse report for this IP address is from 8 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-10-01 14:48:51 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 142.147.240.71 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 142.147.240.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 01 10:47:35.235937 2025] [security2:error] [pid 9487:tid 9524] [client 142.147.240.71:45065] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kettlehill.kettlehill.com\|F\|2"] [data ".old"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kettlehill.kettlehill.com"] [uri "/.ssh/known_hosts.old"] [unique_id "aN0_B0vyOqnYEaX7Ie4PSgAAAM8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-09-03 18:47:58 (1 year ago)	(mod_security) mod_security (id:212620) triggered by 142.147.240.71 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:212620) triggered by 142.147.240.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 03 14:47:50.281115 2024] [security2:error] [pid 11205:tid 11205] [client 142.147.240.71:47865] [client 142.147.240.71] ModSecurity: Access denied with code 403 (phase 2). Pattern match "<script\\\\b" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "65"] [id "212620"] [rev "3"] [msg "COMODO WAF: Cross-site Scripting (XSS) Attack\|\|mail.stdavids-media.com\|F\|2"] [data "Matched Data: <script found within REQUEST_URI: /wp-content/plugins/wpb-show-core/modules/jplayer_new/jplayer_twitter_ver_1.php?audioplayeroption=1&filelist[0][title]=<script>alert(document.domain)</script>"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "mail.stdavids-media.com"] [uri "/wp-content/plugins/wpb-show-core/modules/jplayer_new/jplayer_twitter_ver_1.php"] [unique_id "ZtdZ1msmXA4bBZqfe5l_-QAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-08-01 00:50:59 (1 year ago)	(mod_security) mod_security (id:221260) triggered by 142.147.240.71 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:221260) triggered by 142.147.240.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 31 20:50:50.859309 2024] [security2:error] [pid 27443:tid 27469] [client 142.147.240.71:37055] [client 142.147.240.71] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(?:\\\\'\\\\w+?=)?\\\\(\\\\)\\\\s{" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "77"] [id "221260"] [rev "3"] [msg "COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)\|\|webmail.staging.kettlehill.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.staging.kettlehill.com"] [uri "/debug.cgi"] [unique_id "Zqrb6ntRnOTCPKDh0USvUAAAAhc"], referer: () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2024-07-14 00:06:32 (1 year ago)	Unauthorized login attempts [ accesslogs]	Brute-Force
🇺🇸 TPI-Abuse	2024-05-21 23:17:07 (2 years ago)	(mod_security) mod_security (id:212620) triggered by 142.147.240.71 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:212620) triggered by 142.147.240.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 21 19:16:47.625014 2024] [security2:error] [pid 11514:tid 47525647644416] [client 142.147.240.71:51539] [client 142.147.240.71] ModSecurity: Access denied with code 403 (phase 2). Pattern match "<script\\\\b" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "65"] [id "212620"] [rev "4"] [msg "COMODO WAF: Cross-site Scripting (XSS) Attack\|\|kettlehill.net\|F\|2"] [data "Matched Data: <script found within REQUEST_URI: /?s=\\x22/></script><script>alert(document.domain)</script>"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "kettlehill.net"] [uri "/"] [unique_id "Zk0rX18_MV-GxTuKqwAZGgAAAUc"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2024-05-08 06:01:07 (2 years ago)	Unauthorized login attempts [ accesslogs]	Brute-Force
Anonymous	2024-04-04 06:31:41 (2 years ago)	Common attack or app scan event detected and blocked	Port Scan Hacking Web App Attack
Anonymous	2024-03-29 10:50:07 (2 years ago)	\| XSS (Cross Site Scripting) attempt.	Hacking SQL Injection Web App Attack
🇪🇸 10dencehispahard SL	2024-03-27 07:00:25 (2 years ago)	Unauthorized login attempts [ BI-16635]	Brute-Force
🇪🇸 10dencehispahard SL	2024-03-27 06:51:57 (2 years ago)	WP scan	Web App Attack
🇺🇸 TPI-Abuse	2024-02-27 23:19:28 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 142.147.240.71 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 142.147.240.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 27 18:17:19.738710 2024] [security2:error] [pid 5379:tid 47108607862528] [client 142.147.240.71:57541] [client 142.147.240.71] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/Web.config" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.com"] [uri "/web.config.dat"] [unique_id "Zd5tf3peprykeOeYz0XbUQAAAVc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 170.247.222.189

🇨🇭 213.55.220.182

🇭🇰 199.45.155.105

🇲🇽 186.96.145.241

🇷🇺 81.30.212.94

🇺🇸 47.77.217.201

🇰🇷 220.80.92.17

🇲🇽 187.218.57.50

🇻🇪 186.188.59.185

🇦🇫 125.213.210.41

🇨🇳 124.72.224.69

🇫🇷 109.205.176.207

🇨🇳 106.12.69.68

🇬🇧 81.19.219.205

🇷🇴 80.94.92.187

🇫🇷 2001:41d0:33d:9200::401

🇺🇸 147.185.132.175

🇱🇹 141.98.11.83

🇳🇱 45.153.34.235

🇬🇧 35.203.211.28