JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 187.108.1.142

187.108.1.142 was found in our database!

This IP was reported 210 times. Confidence of Abuse is 100%: ?

100%

ISP	SIM INTERNET PROVEDORES DE INTERNET EIRELI.
Usage Type	Fixed Line ISP
ASN	AS28267
Hostname(s)	187-108-1-142.redesiminternet.com.br
Domain Name	redesiminternet.com.br
Country	🇧🇷 Brazil
City	Sao Paulo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 187.108.1.142

Whois 187.108.1.142

IP Abuse Reports for 187.108.1.142:

This IP address has been reported a total of 210 times from 58 distinct sources. 187.108.1.142 was first reported on May 24th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 thetomtaylor.co.uk	2026-05-30 11:05:03 (4 days ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa01]	Hacking Brute-Force Bad Web Bot Web App Attack
🇮🇩 soc-yk	2026-05-30 10:54:11 (4 days ago)	Type: suspicious_network_activity Threat: unknown Risk: 91 Events: 6721 Evidence: - Persistent susp ... show more Type: suspicious_network_activity Threat: unknown Risk: 91 Events: 6721 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified show less	Port Scan Hacking
🇦🇺 LiftUp Hosting	2026-05-30 10:51:59 (4 days ago)	Honeypot hit: Empty payload (likely service probe); 5038 [1] TCP	Port Scan
🇯🇵 mkaraki	2026-05-30 10:42:51 (4 days ago)	1780137763 # Service_probe # SIGNATURE_SEND # source_ip:187.108.1.142 # dst_port:5038 ...	Port Scan
🇺🇸 ShadowWhisperer	2026-05-30 09:15:37 (4 days ago)	HTTP port scan / probe.	Port Scan Web App Attack
🇺🇸 walnuts	2026-05-30 08:58:21 (4 days ago)	Automated: Triggered nginx security jail (nginx-444) - probing blocked paths on web server	Bad Web Bot Web App Attack
🇧🇷 chronos	2026-05-30 08:25:19 (4 days ago)	Web traffic. Possible probing or exploitation attempts. \| Port: 80 \| Proto: TCP \| Location: Brazil, ... show more Web traffic. Possible probing or exploitation attempts. \| Port: 80 \| Proto: TCP \| Location: Brazil, Joinville show less	Brute-Force Bad Web Bot Exploited Host
🇺🇸 cwytech	2026-05-30 02:51:28 (4 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/rdg-local-lockdown-high.	Bad Web Bot Web App Attack
🇧🇷 cibersecoptidata	2026-05-30 02:50:48 (4 days ago)	Port scan / Unsolicited traffic.	Port Scan
🇦🇺 dyln	2026-05-30 01:20:09 (5 days ago)	Dyls honeypot brute-force: proto8 (12 total hits)	Brute-Force
🇺🇸 juguemosalacarioca.com	2026-05-30 00:47:31 (5 days ago)	Multiple HTTP calls attempting to GET resources using common API calls or formats on port 8080	Web App Attack
🇲🇿 delsio	2026-05-30 00:07:50 (5 days ago)	AS37697 ntopng observed inbound attack; alert=Live Flow High Score; source=187.108.1.142; destinatio ... show more AS37697 ntopng observed inbound attack; alert=Live Flow High Score; source=187.108.1.142; destination=160.119.113.199; destination_port=443; score=110; action=bgp_blackhole_and_flowspec_discard; block_duration=18000s; reason=high-confidence ntopng_blacklisted alert=Live Flow High Score dst=160.119.113.199 port=443 show less	Port Scan
🇩🇪 Skyrider	2026-05-29 22:11:17 (5 days ago)	crowdsecurity/http-bad-user-agent	Hacking
🇿🇦 slartybartfast69420blazit	2026-05-29 20:36:02 (5 days ago)	Fail2ban picked up 187.108.1.142 attacking nginx	Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-05-29 19:07:02 (5 days ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa02]	Hacking Brute-Force Bad Web Bot Web App Attack

Showing 76 to 90 of 210 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 2804:30f8:229:c400:e07d:cabc:10d3:ff77

🇺🇸 185.180.141.10

🇲🇽 177.229.209.2

🇺🇸 82.26.162.39

🇺🇸 64.62.197.157

🇺🇸 45.79.207.13

🇿🇼 197.221.232.44

🇺🇸 195.184.76.12

🇸🇬 193.37.32.43

🇯🇵 172.105.218.179

🇺🇸 143.110.141.191

🇸🇬 129.226.95.93

🇮🇳 98.70.48.241

🇺🇸 3.131.24.55

🇺🇸 216.133.145.160

🇧🇷 187.8.120.90

🇺🇸 185.180.141.8

🇬🇧 165.232.104.200

🇺🇸 143.59.90.82

🇻🇺 138.226.239.10