AbuseIPDB » 104.129.199.48
104.129.199.48
This IP was reported 6 times. Confidence of
Abuse
is 0% : ?
ISP
Zscaler, Inc.
Usage Type
Data Center/Web Hosting/Transit
ASN
AS22616
Domain Name
zscaler.com
Country
๐บ๐ธ
United States of America
City
Los Angeles, California
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 104.129.199.48 :
This IP address has been reported a total of
6
times from
5 distinct
sources.
104.129.199.48 was first reported on
March 12th 2021 , and the most recent report was
1 year ago
Old Reports:
The most recent abuse report for this IP address is from
1 year ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ฆ๐บ
MAGIC
2024-07-30 02:16:00
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2024-07-08 13:15:56
(1 year ago)
(mod_security) mod_security (id:240335) triggered by 104.129.199.48 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 104.129.199.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 08 09:15:50.729112 2024] [security2:error] [pid 28775] [client 104.129.199.48:32251] [client 104.129.199.48] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 141.98.102.179 (1+1 hits since last alert)|www.elpaco.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.elpaco.net"] [uri "/xmlrpc.php"] [unique_id "Zovmho1ZLatTK1T9y3QPnwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-08 11:21:37
(1 year ago)
(mod_security) mod_security (id:240335) triggered by 104.129.199.48 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 104.129.199.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 08 07:21:31.936770 2024] [security2:error] [pid 17120] [client 104.129.199.48:16812] [client 104.129.199.48] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 141.98.102.227 (3+1 hits since last alert)|alpinexport.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "alpinexport.com"] [uri "/xmlrpc.php"] [unique_id "ZovLu6PAjNEZxoS1A7JxjwAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
myagent.site
2024-07-08 00:56:14
(1 year ago)
Banned for posting to wp-login.php without referer {"log":"admin","pwd":"Admin@1","wp-submit":"Log I ...
show more
Banned for posting to wp-login.php without referer {"log":"admin","pwd":"Admin@1","wp-submit":"Log In","redirect_to":"http:\/\/jimmysellshouses.com\/wp-admin\/","testcookie":"1"}
show less
Hacking
2021-03-24 16:02:28
(5 years ago)
port scan and connect, tcp 443 (https)
Port Scan
2021-03-12 05:03:38
(5 years ago)
[1:2012998:5] ET WEB_SERVER PHP Possible https Local File Inclusion Attempt
Brute-Force
Showing 1 to
6
of 6 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: