JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.129.199.54

104.129.199.54 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 0%: ?

ISP	Zscaler, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS22616
Domain Name	zscaler.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.129.199.54

Whois 104.129.199.54

IP Abuse Reports for 104.129.199.54:

This IP address has been reported a total of 3 times from 2 distinct sources. 104.129.199.54 was first reported on July 6th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇾 syokadmin	2024-07-29 08:15:14 (1 year ago)	104.129.199.54 (US/United States/-), 2 distributed smtpauth attacks on account [moktipb.pos@colhoriz ... show more 104.129.199.54 (US/United States/-), 2 distributed smtpauth attacks on account [[email protected]] in the last 3600 secs show less	Brute-Force
🇺🇸 TPI-Abuse	2024-07-08 15:19:54 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 104.129.199.54 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 104.129.199.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 08 11:19:51.565477 2024] [security2:error] [pid 16611] [client 104.129.199.54:33782] [client 104.129.199.54] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 213.152.161.30 (0+1 hits since last alert)\|www.calvarycavaliers.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.calvarycavaliers.org"] [uri "/xmlrpc.php"] [unique_id "ZowDlw40GAGfPD7SMEd9egAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-07-06 16:52:12 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 104.129.199.54 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 104.129.199.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 06 12:52:07.802131 2024] [security2:error] [pid 25650] [client 104.129.199.54:61183] [client 104.129.199.54] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 217.64.127.195 (1+1 hits since last alert)\|www.areafinancieratf.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.areafinancieratf.com"] [uri "/xmlrpc.php"] [unique_id "Zol2N9LndXjyS4VnQAeJ0AAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 206.42.8.243

🇬🇧 196.242.21.26

🇺🇸 162.217.161.247

🇭🇰 152.32.168.34

🇺🇸 152.32.151.121

🇸🇬 101.47.156.21

🇭🇰 101.36.116.204

🇽🇰 95.86.42.141

🇯🇵 92.113.142.203

🇳🇱 62.164.177.222

🇮🇳 49.206.194.29

🇳🇱 45.148.10.157

🇵🇱 45.144.48.159

🇻🇪 38.25.137.134

🇩🇪 13.140.146.177

🇹🇷 188.56.36.106

🇩🇪 176.65.132.17

🇺🇸 147.185.132.229

🇨🇳 113.221.45.5

🇸🇾 95.159.32.251