AbuseIPDB » 198.105.100.142
198.105.100.142
This IP was reported 7 times. Confidence of
Abuse
is 0% : ?
ISP
SYN LTD
Usage Type
Fixed Line ISP
ASN
AS64080
Domain Name
syn.uk
Country
๐ฌ๐ง
United Kingdom of Great Britain and Northern Ireland
City
London, England
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 198.105.100.142 :
This IP address has been reported a total of
7
times from
6 distinct
sources.
198.105.100.142 was first reported on
April 23rd 2024 , and the most recent report was
3 months ago
Old Reports:
The most recent abuse report for this IP address is from
3 months ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ต๐ฑ
cheatmaster.store
2026-02-25 23:18:33
(3 months ago)
Automated report: This IP address has been identified as an active public open proxy.
Classification ...
show more
Automated report: This IP address has been identified as an active public open proxy.
Classification: Open Proxy | Spoofing | VPN/Anonymizer | Bad Web Bot.
Country: United Kingdom
Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic.
Reported by automated threat intelligence pipeline. Do not whitelist without manual verification.
show less
Web Spam
Port Scan
Web App Attack
๐บ๐ธ
Kurtbaby
2025-12-30 17:47:00
(5 months ago)
Part of a coordinated attack from many different source IPs that targeted our company's VPN Christma ...
show more
Part of a coordinated attack from many different source IPs that targeted our company's VPN Christmas Eve through the end of the 26th.
show less
Hacking
๐บ๐ธ
TPI-Abuse
2025-09-22 21:56:37
(8 months ago)
(mod_security) mod_security (id:210492) triggered by 198.105.100.142 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 198.105.100.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 22 17:56:32.871080 2025] [security2:error] [pid 15750:tid 15750] [client 198.105.100.142:38231] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.deandobkin.com"] [uri "/.env.old"] [unique_id "aNHGEKNeiDyz2PA947WAVQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
SCHAPPY
2025-08-31 09:40:06
(9 months ago)
IP was involved in L7 DDoS attack.
DDoS Attack
๐บ๐ธ
TPI-Abuse
2025-07-01 07:08:33
(11 months ago)
(mod_security) mod_security (id:210730) triggered by 198.105.100.142 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 198.105.100.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 01 03:08:30.163164 2025] [security2:error] [pid 30219:tid 30229] [client 198.105.100.142:52273] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.kettlehill.net|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kettlehill.net"] [uri "/...\\\\...\\\\...\\\\...\\\\...\\\\...\\\\...\\\\...\\\\...\\\\windows\\\\win.ini"] [unique_id "aGOJbvtpdo0a25O2Z1bhnwAAAMY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
10dencehispahard SL
2025-06-02 04:58:28
(1 year ago)
WP probing for vulnerabilities
Hacking
Exploited Host
๐ฌ๐ง
Steve
2024-04-23 19:08:06
(2 years ago)
Excessive crawling - not obeying robots.txt
Bad Web Bot
Showing 1 to
7
of 7 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: