JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.248.80.196

142.248.80.196 was found in our database!

This IP was reported 133 times. Confidence of Abuse is 100%: ?

100%

ISP	Advin Services LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS22295
Domain Name	advinservers.com
Country	🇺🇸 United States of America
City	Kansas City, Missouri

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.248.80.196

Whois 142.248.80.196

IP Abuse Reports for 142.248.80.196:

This IP address has been reported a total of 133 times from 93 distinct sources. 142.248.80.196 was first reported on November 6th 2025, and the most recent report was 28 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 sc user	2026-06-19 12:22:23 (28 minutes ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇫🇷 Flo Flo	2026-06-19 08:12:02 (4 hours ago)	142.248.80.196 - - - [19/Jun/2026:10:12:02 +0200] "wildcard.flad.xyz" "GET / HTTP/1.1" 444 0 "-" "Mo ... show more 142.248.80.196 - - - [19/Jun/2026:10:12:02 +0200] "wildcard.flad.xyz" "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 0.000 ... show less	Web App Attack
Anonymous	2026-06-19 08:05:07 (4 hours ago)	WAF repeated trigger detected by Fail2Ban	Web App Attack
🇩🇪 paissangroup	2026-06-19 07:51:27 (4 hours ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-06-19 07:04:36 (5 hours ago)	Aggressive web scan	Web App Attack
🇪🇸 Francisco Vallejo	2026-06-19 06:10:30 (6 hours ago)	[Fri Jun 19 08:10:28.634398 2026] [core:info] [pid 1681469:tid 137198920505024] [client 142.248.80.1 ... show more [Fri Jun 19 08:10:28.634398 2026] [core:info] [pid 1681469:tid 137198920505024] [client 142.248.80.196:28804] AH00128: File does not exist: /var/www/franvallejo/wp-content/debug.log [Fri Jun 19 08:10:29.235857 2026] [core:info] [pid 1681469:tid 137197210556096] [client 142.248.80.196:28804] AH00128: File does not exist: /var/www/franvallejo/.env [Fri Jun 19 08:10:30.060601 2026] [core:info] [pid 1681469:tid 137198837954240] [client 142.248.80.196:61920] AH00128: File does not exist: /var/www/franvallejo/config/firebase_credentials.json [Fri Jun 19 08:10:30.060700 2026] [core:info] [pid 1681469:tid 137197747427008] [client 142.248.80.196:61938] AH00128: File does not exist: /var/www/franvallejo/secrets/gcp-key.json [Fri Jun 19 08:10:30.060705 2026] [core:info] [pid 1681469:tid 137198804383424] [client 142.248.80.196:61886] AH00128: File does not exist: /var/www/franvallejo/config/service-account.json ... show less	Brute-Force SSH
🇫🇷 dynamix	2026-06-19 05:17:39 (7 hours ago)	Multiple WAF Violations	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-19 04:35:35 (8 hours ago)	142.248.80.196 - - [19/Jun/2026:07:35:34 +0300] "GET /wp-content/debug.log HTTP/1.1" 404 718 "-" "Mo ... show more 142.248.80.196 - - [19/Jun/2026:07:35:34 +0300] "GET /wp-content/debug.log HTTP/1.1" 404 718 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:149.0) Gecko/20100101 Firefox/149.0" ... show less	Web App Attack
🇺🇸 Rocky Mountain Bioengineering Symposium	2026-06-19 03:56:13 (8 hours ago)	[Thu Jun 18 21:56:13.033857 2026] [authz_core:error] [pid 356103:tid 139816914101824] [client 142.24 ... show more [Thu Jun 18 21:56:13.033857 2026] [authz_core:error] [pid 356103:tid 139816914101824] [client 142.248.80.196:19638] AH01630: client denied by server configuration: /var/www/public_html/contest/.env.swp [Thu Jun 18 21:56:13.080909 2026] [authz_core:error] [pid 356102:tid 139814674331200] [client 142.248.80.196:19658] AH01630: client denied by server configuration: /var/www/public_html/contest/.env.orig [Thu Jun 18 21:56:13.795273 2026] [authz_core:error] [pid 356103:tid 139817199322688] [client 142.248.80.196:19664] AH01630: client denied by server configuration: /var/www/public_html/contest/.env~ ... show less	Bad Web Bot
Anonymous	2026-06-19 03:54:31 (8 hours ago)	(mod_security) mod_security triggered on hostname [redacted])	SQL Injection
🇩🇪 ger-stg-sifi1	2026-06-19 03:44:00 (9 hours ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇬🇧 consul.to	2026-06-19 02:41:45 (10 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 jormaster3k	2026-06-19 02:02:17 (10 hours ago)	Attack against Apache (too many 404s)	Web App Attack
🇩🇪 Tha_14	2026-06-19 00:32:17 (12 hours ago)	Multiple erroneous requests	Web App Attack
🇷🇺 DZBOT	2026-06-19 00:19:41 (12 hours ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack

Showing 1 to 15 of 133 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 183.166.83.106

🇨🇳 182.242.168.202

🇺🇸 167.148.201.64

🇺🇸 148.153.193.3

🇨🇳 58.212.237.37

🇮🇳 20.219.24.10

🇫🇷 13.140.158.134

🇳🇱 204.76.203.231

🇳🇱 176.65.148.99

🇷🇺 83.220.185.70

🇳🇱 45.198.224.244

🇺🇸 24.30.46.249

🇨🇳 1.24.16.140

🇳🇱 172.94.9.166

🇮🇳 152.32.158.74

🇻🇳 113.177.112.203

🇺🇸 71.6.147.254

🇮🇩 36.92.41.115

🇧🇪 34.156.88.104

🇷🇴 2.57.121.25