JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.248.80.63

142.248.80.63 was found in our database!

This IP was reported 182 times. Confidence of Abuse is 100%: ?

100%

ISP	Advin Services LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS22295
Domain Name	advinservers.com
Country	🇺🇸 United States of America
City	Kansas City, Missouri

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.248.80.63

Whois 142.248.80.63

IP Abuse Reports for 142.248.80.63:

This IP address has been reported a total of 182 times from 109 distinct sources. 142.248.80.63 was first reported on March 5th 2026, and the most recent report was 39 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 yvoictra	2026-05-23 17:13:41 (1 week ago)	142.248.80.63 - - [23/May/2026:19:13:39 +0200] "GET /secrets.json HTTP/1.1" 404 134 "-" "Mozilla/5.0 ... show more 142.248.80.63 - - [23/May/2026:19:13:39 +0200] "GET /secrets.json HTTP/1.1" 404 134 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:150.0) Gecko/20100101 Firefox/150.0" 142.248.80.63 - - [23/May/2026:19:13:41 +0200] "GET /.env HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/147.0.0.0" 142.248.80.63 - - [23/May/2026:19:13:41 +0200] "GET /serviceAccountKey.json HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 142.248.80.63 - - [23/May/2026:19:13:41 +0200] "GET /api/.env HTTP/1.1" 404 134 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" 142.248.80.63 - - [23/May/2026:19:13:41 +0200] "GET /service-account.json HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 ... show less	Brute-Force Web App Attack
🇺🇦 URAN Publishing Service	2026-05-23 16:45:03 (1 week ago)	142.248.80.63 - - [23/May/2026:19:44:58 +0300] "GET /backend/.env HTTP/1.1" 404 251 "-" "Mozilla/5.0 ... show more 142.248.80.63 - - [23/May/2026:19:44:58 +0300] "GET /backend/.env HTTP/1.1" 404 251 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 18_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Mobile/15E148 Safari/604.1" 142.248.80.63 - - [23/May/2026:19:44:58 +0300] "GET /api/.env HTTP/1.1" 404 251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Safari/605.1.15" ... show less	Web App Attack
🇫🇷 masterguru	2026-05-23 13:58:10 (1 week ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 142.248.80.63 (US/United States/-): 1 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 142.248.80.63 (US/United States/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇩🇪 dbmwebdesign	2026-05-23 13:02:06 (1 week ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇳🇱 e.fierstra	2026-05-23 09:54:26 (1 week ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇩🇪 Ba-Yu	2026-05-23 06:36:21 (1 week ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇳🇱 Roderic	2026-05-23 06:17:59 (1 week ago)	(mod_security) mod_security triggered on hostname [redacted])	SQL Injection
🇦🇺 aranguren.org	2026-05-23 05:54:30 (1 week ago)	142.248.80.63 - - [23/May/2026:15:54:30 +1000] "GET /.git/refs/heads/main HTTP/1.1" 404 990 "-" "Moz ... show more 142.248.80.63 - - [23/May/2026:15:54:30 +1000] "GET /.git/refs/heads/main HTTP/1.1" 404 990 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 142.248.80.63 - - [23/May/2026:15:54:30 +1000] "GET /.env.production.copy HTTP/1.1" 404 990 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 142.248.80.63 - - [23/May/2026:15:54:30 +1000] "GET /.git/HEAD HTTP/1.1" 404 990 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 142.248.80.63 - - [23/May/2026:15:54:30 +1000] "GET /.git/FETCH_HEAD HTTP/1.1" 404 990 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 142.248.80.63 - - [23/May/2026:15:54:30 +1000] "GET /.git/refs/heads/master HTTP/1.1" 404 990 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chro ... show less	Bad Web Bot
🇩🇪 XICTRON	2026-05-23 05:05:04 (1 week ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack
🇷🇴 iulianh	2026-05-23 02:55:40 (1 week ago)	*	Brute-Force SSH
Anonymous	2026-05-23 02:02:59 (1 week ago)	Auto-reported by Fail2Ban (NPM-Auth)	Web App Attack
Anonymous	2026-05-22 22:44:37 (1 week ago)	Aggressive web scan	Web App Attack
🇩🇪 FeG Deutschland	2026-05-22 22:33:12 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247	Exploited Host Web App Attack
🇪🇸 Gem	2026-05-22 22:14:41 (1 week ago)	Unauthorized web scan.	Web App Attack
🇨🇭 copestack	2026-05-22 19:11:01 (1 week ago)	[RORIDULA CADS] Escalation — coordinated attack detected	Hacking Brute-Force Web App Attack

Showing 76 to 90 of 182 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇪 2a05:d018:10df:d402:ccb1:72ca:1643:755

🇬🇧 193.163.125.184

🇰🇿 188.130.238.179

🇨🇳 182.43.76.81

🇨🇦 104.253.50.241

🇨🇳 61.175.190.222

🇺🇸 34.85.158.5

🇨🇳 180.76.105.69

🇸🇪 178.73.210.62

🇺🇸 172.236.117.243

🇺🇸 162.216.150.248

🇫🇮 147.185.133.208

🇺🇸 107.172.204.15

🇫🇷 82.124.81.35

🇱🇹 81.30.98.144

🇰🇷 61.76.38.54

🇧🇩 59.153.201.44

🇳🇱 45.148.10.157

🇨🇳 36.106.166.81

🇦🇺 34.129.9.73