JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.147.240.80

142.147.240.80 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 0%: ?

ISP	Web2Objects LLC
Usage Type	Fixed Line ISP
ASN	AS2914
Domain Name	web2objects.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.147.240.80

Whois 142.147.240.80

IP Abuse Reports for 142.147.240.80:

This IP address has been reported a total of 5 times from 2 distinct sources. 142.147.240.80 was first reported on June 1st 2025, and the most recent report was 7 months ago.

Old Reports: The most recent abuse report for this IP address is from 7 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-10-28 17:48:01 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 142.147.240.80 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 142.147.240.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Oct 28 13:47:57.207184 2025] [security2:error] [pid 23624:tid 23635] [client 142.147.240.80:49813] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.fandgins.com"] [uri "/.env.bak"] [unique_id "aQEBzVHcjzw71v0-k4ogjwAAAIg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-26 12:12:43 (8 months ago)	(mod_security) mod_security (id:217200) triggered by 142.147.240.80 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:217200) triggered by 142.147.240.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 26 08:12:36.893705 2025] [security2:error] [pid 18780:tid 18780] [client 142.147.240.80:50607] ModSecurity: Access denied with code 403 (phase 1). Match of "endsWith /wp-cron.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "103"] [id "217200"] [rev "2"] [msg "COMODO WAF: HTTP/1.1 POST request missing Content-Length Header\|\|webdisk.deandobkin.com:443\|F\|2"] [data "/cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh"] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "webdisk.deandobkin.com"] [uri "/cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh"] [unique_id "aNaDNBywyl6F5THMWvpGBgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-05 20:13:25 (10 months ago)	(mod_security) mod_security (id:210730) triggered by 142.147.240.80 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 142.147.240.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 05 16:13:19.447582 2025] [security2:error] [pid 26719:tid 26719] [client 142.147.240.80:36151] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|nbcnewsradio.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "nbcnewsradio.com"] [uri "/...\\\\...\\\\...\\\\...\\\\...\\\\...\\\\...\\\\...\\\\...\\\\windows\\\\win.ini"] [unique_id "aJJl3wpHgDen_C7hg5I77AAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-06-05 18:00:03 (1 year ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-06-01 05:51:18 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 142.147.240.80 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 142.147.240.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 01 01:50:40.937843 2025] [security2:error] [pid 2256137:tid 2256254] [client 142.147.240.80:46191] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|staging.kettlehill.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "staging.kettlehill.com"] [uri "/database.sql"] [unique_id "aDvqMGQ8Dui5hvebpq97IwAAANc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.37.174.62

🇯🇵 207.56.229.243

🇲🇽 189.196.222.55

🇸🇬 107.155.56.47

🇦🇺 74.91.200.217

🇺🇸 71.6.239.136

🇫🇷 51.68.111.215

🇭🇰 223.18.107.70

🇫🇮 147.185.133.43

🇺🇸 147.185.132.246

🇫🇷 141.11.1.134

🇩🇪 107.150.117.167

🇨🇳 101.42.41.164

🇳🇱 91.199.236.33

🇳🇱 91.92.241.87

🇺🇸 64.62.197.3

🇳🇱 45.148.10.151

🇧🇪 35.195.145.116

🇺🇸 20.169.91.107

🇯🇵 8.216.5.198