JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.248.80.190

142.248.80.190 was found in our database!

This IP was reported 260 times. Confidence of Abuse is 100%: ?

100%

ISP	Advin Services LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS22295
Domain Name	advinservers.com
Country	🇺🇸 United States of America
City	Kansas City, Missouri

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.248.80.190

Whois 142.248.80.190

IP Abuse Reports for 142.248.80.190:

This IP address has been reported a total of 260 times from 147 distinct sources. 142.248.80.190 was first reported on March 1st 2026, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-06-16 07:06:38 (18 hours ago)	Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.	Web App Attack
Anonymous	2026-06-16 06:14:59 (19 hours ago)	Aggressive web scan	Web App Attack
🇩🇪 Holger	2026-06-16 03:54:40 (21 hours ago)	WordPress WebAttack	Brute-Force Web App Attack
🇩🇪 pcpiefke	2026-06-15 18:41:07 (1 day ago)	(mod_security) mod_security triggered on hostname [redacted] 142.248.80.190 (US/United States/-)	SQL Injection
🇦🇺 AWW-Admin	2026-06-15 15:54:07 (1 day ago)	(mod_security) mod_security triggered on hostname [redacted] 142.248.80.190 (US/United States/-)	SQL Injection
🇩🇪 todix	2026-06-15 15:21:28 (1 day ago)	Web App Attack Exploid from 142.248.80.190	Web App Attack
🇫🇷 dynamix	2026-06-15 13:52:16 (1 day ago)	Multiple WAF Violations	Web App Attack
🇫🇷 andreighitan	2026-06-15 11:02:33 (1 day ago)	Automated exploit scanner — credential harvesting, webshell scanning, RCE probing against WordPress ... show more Automated exploit scanner — credential harvesting, webshell scanning, RCE probing against WordPress hosting server. Sustained attack campaign since April 2026. show less	Web App Attack
Anonymous	2026-06-15 02:34:36 (1 day ago)	Aggressive web scan	Web App Attack
Anonymous	2026-06-14 22:27:00 (2 days ago)	142.248.80.190 - - [15/Jun/2026:00:26:52 +0200] "GET / HTTP/1.1" 403 12583 "-" "Mozilla/5.0 (Macinto ... show more 142.248.80.190 - - [15/Jun/2026:00:26:52 +0200] "GET / HTTP/1.1" 403 12583 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 142.248.80.190 - - [15/Jun/2026:00:26:53 +0200] "GET / HTTP/1.1" 403 12583 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 142.248.80.190 - - [15/Jun/2026:00:26:53 +0200] "GET /wp-content/debug.log HTTP/1.1" 403 12583 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 142.248.80.190 - - [15/Jun/2026:00:26:54 +0200] "GET /config/credentials.json HTTP/1.1" 403 12583 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36 Edg/146.0.0.0" 142.248.80.190 - - [15/Jun/2026:00:26:54 +0200] "GET /google-services.json HTTP/1.1" 403 12583 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like G ... show less	Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-06-14 17:44:36 (2 days ago)	Accessed trap at '/.env'	Web App Attack
🇧🇾 shopmax	2026-06-14 12:39:31 (2 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇺🇦 URAN Publishing Service	2026-06-14 10:52:22 (2 days ago)	142.248.80.190 - - [14/Jun/2026:13:52:21 +0300] "GET /wp-content/debug.log HTTP/1.1" 404 706 "-" "Mo ... show more 142.248.80.190 - - [14/Jun/2026:13:52:21 +0300] "GET /wp-content/debug.log HTTP/1.1" 404 706 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Safari/605.1.15" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-14 08:00:27 (2 days ago)	142.248.80.190 - - [14/Jun/2026:11:00:26 +0300] "GET /laravel/.env HTTP/1.1" 404 706 "-" "Mozilla/5. ... show more 142.248.80.190 - - [14/Jun/2026:11:00:26 +0300] "GET /laravel/.env HTTP/1.1" 404 706 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 18_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Mobile/15E148 Safari/604.1" 142.248.80.190 - - [14/Jun/2026:11:00:26 +0300] "GET /app/.env HTTP/1.1" 404 706 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/147.0.0.0" ... show less	Web App Attack
🇩🇪 ghostwarriors	2026-06-14 02:20:05 (2 days ago)	Attempts against non-existent wp-login	Brute-Force Web App Attack

Showing 1 to 15 of 260 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2600:1900:4120:e3fb:0:7a::

🇺🇸 216.180.246.107

🇺🇸 216.39.242.74

🇧🇷 191.243.127.172

🇮🇳 182.18.180.44

🇵🇾 181.94.228.116

🇭🇰 152.32.239.90

🇯🇵 56.155.129.64

🇩🇪 43.157.38.131

🇮🇩 36.95.221.140

🇺🇸 20.29.23.176

🇺🇸 4.227.178.199

🇬🇧 2.222.184.217

🇮🇳 203.194.110.196

🇻🇪 190.97.239.152

🇨🇱 190.82.182.238

🇲🇽 187.154.100.150

🇵🇾 186.16.46.105

🇺🇸 157.245.255.210

🇺🇸 147.185.132.90