JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 74.80.208.81

74.80.208.81 was found in our database!

This IP was reported 179 times. Confidence of Abuse is 0%: ?

ISP	Castle Global Inc.
Usage Type	Commercial
ASN	AS36321
Domain Name	castlefunders.com
Country	🇺🇸 United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 74.80.208.81

Whois 74.80.208.81

IP Abuse Reports for 74.80.208.81:

This IP address has been reported a total of 179 times from 58 distinct sources. 74.80.208.81 was first reported on April 12th 2023, and the most recent report was 11 months ago.

Old Reports: The most recent abuse report for this IP address is from 11 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 geot	2025-07-21 12:37:14 (11 months ago)	Ignores restrictions in robots.txt	Bad Web Bot Web App Attack
🇺🇸 Starburst SysOp Team	2025-07-21 09:07:46 (11 months ago)	Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 81.208.80.74.rbl.malwar ... show more Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 81.208.80.74.rbl.malware.expert succeeded at REQUEST_HEADERS:x-forwarded-for. (1001000-iad5-2) show less	Hacking
🇫🇷 service Informatique	2025-07-21 04:00:37 (11 months ago)	GET /robots.txt	Web App Attack
🇺🇸 TPI-Abuse	2025-07-21 00:45:43 (11 months ago)	(mod_security) mod_security (id:217291) triggered by 74.80.208.81 (74-80-208-81.ic2net.net): 1 in th ... show more (mod_security) mod_security (id:217291) triggered by 74.80.208.81 (74-80-208-81.ic2net.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 20 20:45:40.402500 2025] [security2:error] [pid 21022:tid 21022] [client 74.80.208.81:37259] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(\\\\n\|\\\\r)" at ARGS_NAMES:\\nfromwhere. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "145"] [id "217291"] [rev "2"] [msg "HTTP Header Injection Attack via payload (CR/LF detected)\|\|scruffware.com\|F\|2"] [data "Matched Data: \\x0a found within ARGS_NAMES:\\x5cnfromwhere: \\x0afromwhere"] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "scruffware.com"] [uri "/g12privacy.php"] [unique_id "aH2NtDMgoomEPcGgdVdZnQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 SCHAPPY	2025-07-20 12:57:14 (11 months ago)	Bad bot identified by user agent	Bad Web Bot
🇺🇸 ipblock.com	2025-07-20 01:58:00 (11 months ago)	IPBlock protected site ID [4055-d][s=02]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack
Anonymous	2025-07-19 22:50:02 (11 months ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 ipblock.com	2025-07-19 22:47:00 (11 months ago)	IPBlock protected site ID [4055-d][s=01]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2025-07-19 19:54:00 (11 months ago)	IPBlock protected site ID [4055-d][s=02]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack
🇬🇧 WebNiraj	2025-06-27 16:18:56 (1 year ago)	(mod_security) mod_security (id:949110) triggered by 74.80.208.81 (US/United States/74-80-208-81.ic2 ... show more (mod_security) mod_security (id:949110) triggered by 74.80.208.81 (US/United States/74-80-208-81.ic2net.net): 5 in the last 3600 secs [ZETA] show less	Brute-Force
🇬🇧 Globe2	2025-06-26 05:25:03 (1 year ago)	[26/Jun/2025:06:20:06 +0100] cbqQZR3VZ30MyPuLsF5wQgEV 74.80.208.81 37264 91.212.212.13 443 [26/Jun/2 ... show more [26/Jun/2025:06:20:06 +0100] cbqQZR3VZ30MyPuLsF5wQgEV 74.80.208.81 37264 91.212.212.13 443 [26/Jun/2025:06:22:25 +0100] ZGA8wruXa0cbiyZrOF52XPCi 74.80.208.81 36830 91.212.212.13 443 [26/Jun/2025:06:25:02 +0100] 1bwoOcmRYSJM6eT9zO0m6Gmt 74.80.208.81 48632 91.212.212.13 443 ... show less	Web App Attack
🇦🇺 afleventoffice.com.au	2025-06-26 03:49:42 (1 year ago)	GET /conditions-test-series.php HTTP/1.1	Web App Attack
🇪🇸 masterguru	2025-06-26 03:04:23 (1 year ago)	BAD BOT - Detected and Blocked.. Matched phrase "imagesiftbot" at REQUEST_HEADERS:user-agent. (11000 ... show more BAD BOT - Detected and Blocked.. Matched phrase "imagesiftbot" at REQUEST_HEADERS:user-agent. (1100000-122) show less	Bad Web Bot
🇮🇩 hermawan	2025-06-23 16:19:30 (1 year ago)	[Mon Jun 23 23:18:44.761521 2025] [security2:error] [pid 102396:tid 140185086949056] [client 74.80.2 ... show more [Mon Jun 23 23:18:44.761521 2025] [security2:error] [pid 102396:tid 140185086949056] [client 74.80.208.81:24017] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Image" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "222"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Image found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; ImagesiftBot; +imagesift.com) request_line = GET /robots.txt HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "aFl-ZBk_f-cnSUpIk3G4kgAADwg"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[102405] [hHTSkL8hoac] [aFl-ZBk_f-cnSUpIk3G4kgAADwg] keep_alive=[1] [2025-06-23 23:18:44.761527] [R:aFl-ZBk_f-cnSUpIk3G4kgAADwg] UA:'Mozilla/5.0 (compatible; ImagesiftBot; +imagesift.com)' Host:'staklim-jatim.bmkg.go.id' ACCEPT:'text/html,application/xhtml+xml,application/xml;q=0.9, ... show less	Hacking Web App Attack
Anonymous	2025-05-26 14:43:16 (1 year ago)	Excessive crawling/scraping	Hacking Brute-Force

Showing 1 to 15 of 179 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.94.146.41

🇺🇸 158.94.187.10

🇺🇸 147.185.132.152

🇮🇩 103.4.82.144

🇺🇸 66.132.172.225

🇷🇺 194.50.15.0

🇮🇱 95.35.50.15

🇬🇧 94.6.1.60

🇺🇸 65.49.139.223

🇨🇳 61.143.227.17

🇧🇷 205.210.31.199

🇲🇽 201.103.23.141

🇫🇷 185.177.72.51

🇺🇸 173.244.60.241

🇺🇸 154.26.184.99

🇺🇸 72.10.32.138

🇺🇸 64.62.156.79

🇳🇱 45.148.10.147

🇩🇪 43.228.157.180

🇵🇪 38.252.213.122