JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.180.247.74

5.180.247.74 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 0%: ?

ISP	HostRoyale Technologies Pvt Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS203020
Domain Name	hostroyale.com
Country	🇵🇹 Portugal
City	Lisbon, Lisbon

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.180.247.74

Whois 5.180.247.74

IP Abuse Reports for 5.180.247.74:

This IP address has been reported a total of 3 times from 2 distinct sources. 5.180.247.74 was first reported on August 16th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-04-14 02:14:33 (2 months ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/5.180.247.74 2026-04-1 ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/5.180.247.74 2026-04-13 14:02:29 /cc.gif show less	Web App Attack
🇺🇸 TPI-Abuse	2025-09-27 04:29:27 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 5.180.247.74 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 5.180.247.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 27 00:29:19.534074 2025] [security2:error] [pid 24354:tid 24354] [client 5.180.247.74:2684] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.laboquimia.es\|F\|4"] [data "close, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.laboquimia.es"] [uri "/index_h.php"] [unique_id "aNdoH2jBQN5TsRILtAfkbgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-16 11:54:25 (10 months ago)	(mod_security) mod_security (id:210350) triggered by 5.180.247.74 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 5.180.247.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 16 07:54:17.764620 2025] [security2:error] [pid 2180:tid 2180] [client 5.180.247.74:64066] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|backstore.com\|F\|4"] [data "close, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "backstore.com"] [uri "/HermanMiller/Storage.htm"] [unique_id "aKBxadFCy31ssQtvk8ZowgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 157.22.72.37

🇮🇩 27.121.83.84

🇺🇸 154.83.197.94

🇨🇳 111.176.102.6

🇸🇪 83.226.37.149

🇸🇪 83.191.181.23

🇶🇦 37.186.52.151

🇸🇬 20.157.117.15

🇺🇸 20.9.25.20

🇳🇱 176.65.139.215

🇺🇸 168.227.142.231

🇺🇦 159.224.132.77

🇬🇧 51.195.183.76

🇳🇱 45.148.10.147

🇳🇱 45.148.10.141

🇺🇸 34.31.25.173

🇺🇸 18.221.179.104

🇧🇷 186.235.190.179

🇺🇸 173.194.103.20

🇰🇭 110.235.248.137