This IP address has been reported a total of
37
times from
22 distinct
sources.
42.240.130.180 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Blocked by UFW (TCP on 80)
Source port: 23604
TTL: 43
Packet length: 60
TOS: 0x08
This report (for ...
show moreBlocked by UFW (TCP on 80)
Source port: 23604
TTL: 43
Packet length: 60
TOS: 0x08
This report (for 42.240.130.180) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
DDoS Attack
FTP Brute-Force
Ping of Death
Port Scan
Hacking
SQL Injection
Spoofing
Brute-Force
Bad Web Bot
Exploited Host
Web App Attack
SSH
IoT Targeted
Blocked by UFW (TCP on 443)
Source port: 34886
TTL: 43
Packet length: 60
TOS: 0x08
This report (for ...
show moreBlocked by UFW (TCP on 443)
Source port: 34886
TTL: 43
Packet length: 60
TOS: 0x08
This report (for 42.240.130.180) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
Web App Attack
Anonymous
42.240.130.180 - - [23/Jun/2026:21:46:58 +0200] "GET / HTTP/1.1" 403 5768 "http://xvm-127-186.dc2.gh ...
show more42.240.130.180 - - [23/Jun/2026:21:46:58 +0200] "GET / HTTP/1.1" 403 5768 "http://xvm-127-186.dc2.ghst.net" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36" ...
show less
Blocked by UFW (TCP on 80)
Source port: 15340
TTL: 43
Packet length: 60
TOS: 0x08
This report (for ...
show moreBlocked by UFW (TCP on 80)
Source port: 15340
TTL: 43
Packet length: 60
TOS: 0x08
This report (for 42.240.130.180) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
[WedJun0305:32:15.7352202026][security2:error][pid1022003:tid1022408][client42.240.130.180:0]ModSecu ...
show more[WedJun0305:32:15.7352202026][security2:error][pid1022003:tid1022408][client42.240.130.180:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"4hosts.net\"][uri\"/\"][unique_id\"ah-gP0sn71sKoFuS0jsvWgAAAQ8\"]
show less
[SatMay3015:58:59.9709132026][security2:error][pid2773376:tid2773806][client42.240.130.180:0]ModSecu ...
show more[SatMay3015:58:59.9709132026][security2:error][pid2773376:tid2773806][client42.240.130.180:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"r102.ch\"][uri\"/\"][unique_id\"ahrtI5H_oUpKtsn9WCIV6AAAAMc\"]
show less
Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ...
show moreHoneypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud
show less
ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/42.240.130.180
2 ...
show moreThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/42.240.130.180
2026-05-05 05:46:33 /
show less
Web App Attack
Showing 1 to
15
of 37 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ