JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.248.80.117

142.248.80.117 was found in our database!

This IP was reported 286 times. Confidence of Abuse is 100%: ?

100%

ISP	Advin Services LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS22295
Domain Name	advinservers.com
Country	🇺🇸 United States of America
City	Kansas City, Missouri

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.248.80.117

Whois 142.248.80.117

IP Abuse Reports for 142.248.80.117:

This IP address has been reported a total of 286 times from 159 distinct sources. 142.248.80.117 was first reported on March 7th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 alpha	2026-06-20 02:39:21 (1 day ago)	Automated honeypot: scanner probed decoy URL on cdn.aldorand.fr (honeypot decoy)	Bad Web Bot Web App Attack
🇫🇷 alpha	2026-06-18 02:38:07 (3 days ago)	Automated honeypot: scanner probed decoy URL on cdn.aldorand.fr (honeypot decoy)	Bad Web Bot Web App Attack
🇫🇷 alpha	2026-06-16 02:38:03 (5 days ago)	Automated honeypot: scanner probed decoy URL on cdn.aldorand.fr (honeypot decoy)	Bad Web Bot Web App Attack
🇩🇪 Céline	2026-06-16 02:27:12 (5 days ago)	Shield Guard: AbuseIPDB: 100% (très malveillant) \| Honeypot: /service-account.json	Web App Attack
🇩🇪 Bedios GmbH	2026-06-15 23:10:11 (5 days ago)	Login credentials theft attempt	Hacking
🇲🇾 Rizzy	2026-06-15 14:23:23 (6 days ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇫🇷 andreighitan	2026-06-15 11:02:30 (6 days ago)	Automated exploit scanner — credential harvesting, webshell scanning, RCE probing against WordPress ... show more Automated exploit scanner — credential harvesting, webshell scanning, RCE probing against WordPress hosting server. Sustained attack campaign since April 2026. show less	Web App Attack
Anonymous	2026-06-15 10:46:59 (6 days ago)	142.248.80.117 - - [15/Jun/2026:07:46:58 -0300] "GET /.git/FETCH_HEAD HTTP/1.1" 404 125 "-" "Mozilla ... show more 142.248.80.117 - - [15/Jun/2026:07:46:58 -0300] "GET /.git/FETCH_HEAD HTTP/1.1" 404 125 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:150.0) Gecko/20100101 Firefox/150.0" ... show less	Port Scan Hacking SQL Injection Brute-Force Bad Web Bot Exploited Host
🇩🇪 raph	2026-06-15 08:04:19 (6 days ago)	[PROTECTED PATHS] crawler credentials.ini, aws.ini, aws.yml, etc.	Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-15 07:41:31 (6 days ago)	Restricted File Access Attempt. Matched phrase "credentials.json" at REQUEST_FILENAME. (930130-193)	Hacking Web App Attack
Anonymous	2026-06-15 07:04:36 (6 days ago)	Aggressive web scan	Web App Attack
🇩🇪 Skyrider	2026-06-15 06:04:25 (6 days ago)	crowdsecurity/http-sensitive-files	Web App Attack
Anonymous	2026-06-15 06:00:24 (6 days ago)	142.248.80.117 - - [15/Jun/2026:14:00:18 +0800] "GET /wp-content/debug.log HTTP/1.1" 404 396 "-" "Mo ... show more 142.248.80.117 - - [15/Jun/2026:14:00:18 +0800] "GET /wp-content/debug.log HTTP/1.1" 404 396 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 142.248.80.117 - - [15/Jun/2026:14:00:22 +0800] "GET /.env HTTP/1.1" 404 396 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:150.0) Gecko/20100101 Firefox/150.0" 142.248.80.117 - - [15/Jun/2026:14:00:23 +0800] "GET /.env.local HTTP/1.1" 404 396 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:149.0) Gecko/20100101 Firefox/149.0" 142.248.80.117 - - [15/Jun/2026:14:00:23 +0800] "GET /.env.staging HTTP/1.1" 404 396 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 142.248.80.117 - - [15/Jun/2026:14:00:23 +0800] "GET /.anthropic/config.json HTTP/1.1" 404 396 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:150.0) Gecko/20100101 Firefox/150.0" ... show less	Web App Attack
🇫🇷 alpha	2026-06-15 02:37:53 (6 days ago)	Automated honeypot: scanner probed decoy URL on cdn.aldorand.fr (honeypot decoy)	Bad Web Bot Web App Attack
🇷🇸 Smel	2026-06-15 01:18:08 (6 days ago)	Unauthorized Probe/Connection, Hack -	Port Scan Hacking

Showing 1 to 15 of 286 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 193.36.237.30

🇩🇪 64.226.107.125

🇺🇸 97.93.43.157

🇧🇬 91.191.209.198

🇷🇴 2.57.122.177

🇸🇪 188.149.41.41

🇦🇷 186.141.202.35

🇺🇸 137.184.91.64

🇮🇳 103.182.166.56

🇸🇬 94.231.206.253

🇺🇸 72.167.38.71

🇹🇷 31.145.131.202

🇧🇷 190.89.136.226

🇲🇽 186.96.158.180

🇹🇷 185.255.95.139

🇻🇳 171.244.201.80

🇯🇵 152.32.202.250

🇩🇪 69.5.169.171

🇺🇸 20.14.88.205

🇹🇭 202.183.141.189