AbuseIPDB » 197.255.142.103

197.255.142.103 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 26%: ?

26%

ISP	CABO VERDE TELECOM, S.A
Usage Type	Fixed Line ISP
ASN	AS37517
Domain Name	cvtelecom.cv
Country	Cape Verde
City	Santa Maria, Sal

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 197.255.142.103

Whois 197.255.142.103

IP Abuse Reports for 197.255.142.103:

This IP address has been reported a total of 14 times from 8 distinct sources. 197.255.142.103 was first reported on February 6th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
TPI-Abuse	2025-02-24 16:06:50 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 197.255.142.103 (-): 1 in the last 300 secs; Po ... show more(mod_security) mod_security (id:225170) triggered by 197.255.142.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 24 11:06:43.054351 2025] [security2:error] [pid 1939674:tid 1939674] [client 197.255.142.103:36428] [client 197.255.142.103] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||velocitymech.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "velocitymech.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z7yZE6p6qlPe3jDOLyYV3wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-02-24 15:23:01 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 197.255.142.103 (-): 1 in the last 300 secs; Po ... show more(mod_security) mod_security (id:225170) triggered by 197.255.142.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 24 10:22:54.139705 2025] [security2:error] [pid 26473:tid 26473] [client 197.255.142.103:15286] [client 197.255.142.103] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||uphillfarmvt.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "uphillfarmvt.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z7yOzum3qro9it7gU9ZaiwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-02-24 14:19:49 (1 month ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
TPI-Abuse	2025-02-19 14:52:16 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 197.255.142.103 (-): 1 in the last 300 secs; Po ... show more(mod_security) mod_security (id:225170) triggered by 197.255.142.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 19 09:52:13.775169 2025] [security2:error] [pid 12004:tid 12004] [client 197.255.142.103:31216] [client 197.255.142.103] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ideaofauniversity.website|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ideaofauniversity.website"] [uri "/wp-json/wp/v2/users"] [unique_id "Z7XwHfsZk3yQlwlxQEAPBgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-02-19 14:25:08 (1 month ago)	XMLRPC Hack Attempts	Hacking Brute-Force
TPI-Abuse	2025-02-19 12:11:27 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 197.255.142.103 (-): 1 in the last 300 secs; Po ... show more(mod_security) mod_security (id:225170) triggered by 197.255.142.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 19 07:11:24.081074 2025] [security2:error] [pid 1427819:tid 1427819] [client 197.255.142.103:24464] [client 197.255.142.103] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||goseethenurse.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "goseethenurse.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z7XKbHQ1QM745pHbJUeyugAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
maxxsense	2025-02-18 12:46:40 (1 month ago)	(wordpress) Failed wordpress login from 197.255.142.103 (CV/Cabo Verde/-)	Brute-Force
pusathosting.com	2025-02-17 17:20:03 (1 month ago)	2ds22 bruteforce	Brute-Force Web App Attack
findlab	2025-02-14 14:00:01 (1 month ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
Anonymous	2025-02-14 11:04:41 (1 month ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
screwlooseit.com.au	2025-02-14 11:00:29 (1 month ago)	Blocked by CSF 14 firewall - Rule: XMLRPC -	Web App Attack
TPI-Abuse	2025-02-13 16:39:04 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 197.255.142.103 (-): 1 in the last 300 secs; Po ... show more(mod_security) mod_security (id:225170) triggered by 197.255.142.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 13 11:38:56.144641 2025] [security2:error] [pid 4474:tid 4474] [client 197.255.142.103:24707] [client 197.255.142.103] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||engine-watch.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "engine-watch.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z64gIHAE-_hc2YPAeShIHgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-02-13 10:01:51 (1 month ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-02-06 10:35:07 (1 month ago)	apache-wordpress-login	Brute-Force Web App Attack

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩