JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.66.180.242

202.66.180.242 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 19%: ?

19%

ISP	Prizma Solutions (Private) Limited
Usage Type	Fixed Line ISP
ASN	AS139043
Domain Name	prizmasolutions.pk
Country	🇵🇰 Pakistan
City	Lahore, Punjab

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.66.180.242

Whois 202.66.180.242

IP Abuse Reports for 202.66.180.242:

This IP address has been reported a total of 5 times from 4 distinct sources. 202.66.180.242 was first reported on April 24th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-16 06:55:12 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 202.66.180.242 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 202.66.180.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 02:55:07.327956 2026] [security2:error] [pid 22693:tid 22693] [client 202.66.180.242:41918] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 202.66.180.242 (+1 hits since last alert)\|gasoilliquidsdaily.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "gasoilliquidsdaily.com"] [uri "/xmlrpc.php"] [unique_id "ajDzS9-PPV5zIZzXFCnGqgAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 YF	2026-05-16 06:25:41 (1 month ago)	xmlrpc.php Potential DDoS or brute force	DDoS Attack Brute-Force
🇺🇸 TPI-Abuse	2026-05-16 05:32:01 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 202.66.180.242 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 202.66.180.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 16 01:31:57.313110 2026] [security2:error] [pid 20972:tid 20972] [client 202.66.180.242:53461] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 202.66.180.242 (+1 hits since last alert)\|paulsingdahlsen.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "paulsingdahlsen.com"] [uri "/xmlrpc.php"] [unique_id "aggBTVsqmWKI0DkkbU5GDAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 inlink.ltd	2026-05-16 05:22:57 (1 month ago)	Known malicious PHP file or CMS probe	Web App Attack
Anonymous	2026-04-24 22:23:58 (1 month ago)	(wordpress) Failed wordpress login from 202.66.180.242 (PK/Pakistan/-)	Brute-Force

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 193.176.31.211

🇧🇴 190.181.4.12

🇳🇱 176.65.139.181

🇺🇸 136.112.211.88

🇲🇾 115.134.104.71

🇭🇰 101.36.124.220

🇩🇪 95.90.13.168

🇷🇴 94.156.152.50

🇺🇸 66.240.236.116

🇧🇷 45.237.163.162

🇭🇰 199.45.154.181

🇩🇪 193.124.20.252

🇨🇳 182.126.123.121

🇺🇸 172.203.244.252

🇩🇪 167.94.145.19

🇺🇸 162.216.149.136

🇺🇸 143.42.164.204

🇨🇳 116.139.241.61

🇮🇳 103.176.16.143

🇫🇷 91.231.89.147