JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 112.74.45.246

112.74.45.246 was found in our database!

This IP was reported 74 times. Confidence of Abuse is 45%: ?

45%

ISP	Aliyun Computing Co., LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37963
Domain Name	alibabacloud.com
Country	🇨🇳 China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 112.74.45.246

Whois 112.74.45.246

IP Abuse Reports for 112.74.45.246:

This IP address has been reported a total of 74 times from 15 distinct sources. 112.74.45.246 was first reported on April 8th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-25 18:07:25 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 14:07:20.766753 2026] [security2:error] [pid 24131:tid 24131] [client 112.74.45.246:43058] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.jchiggins.com\|F\|2"] [data ".cer"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.jchiggins.com"] [uri "/okok.cer"] [unique_id "aj1uWGL4yYv_VGQC2uDiVgAAAAk"], referer: https://www.jchiggins.com/okok.cer show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 07:32:58 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 03:32:53.270530 2026] [security2:error] [pid 16416:tid 16416] [client 112.74.45.246:52916] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.jboomergrenier.com\|F\|2"] [data ".cer"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.jboomergrenier.com"] [uri "/okok.cer"] [unique_id "ajzZpWfk0a1AmLDMcIXG7gAAABM"], referer: https://www.jboomergrenier.com/okok.cer show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 20:41:13 (3 days ago)	(mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 16:41:06.645243 2026] [security2:error] [pid 16840:tid 16858] [client 112.74.45.246:38336] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|super-8mm.com\|F\|2"] [data ".cer"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "super-8mm.com"] [uri "/okok.cer"] [unique_id "ajxA4rtenvgRR1paNgBcKgAAABA"], referer: https://super-8mm.com/okok.cer show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 16:48:20 (4 days ago)	(mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 12:48:11.933962 2026] [security2:error] [pid 945:tid 945] [client 112.74.45.246:42906] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|dakotagraphics.com\|F\|2"] [data ".cer"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "dakotagraphics.com"] [uri "/okok.cer"] [unique_id "ajq4y5odE99ljOl5C1JrOAAAAA8"], referer: https://dakotagraphics.com/okok.cer show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-06-19 20:25:44 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 18:23:49 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 14:23:42.265704 2026] [security2:error] [pid 25821:tid 25821] [client 112.74.45.246:45510] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|rogerg.com\|F\|2"] [data ".cer"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "rogerg.com"] [uri "/okok.cer"] [unique_id "ajWJLt-1e46nEMMUrkA56gAAAAw"], referer: https://rogerg.com/okok.cer show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 17:04:44 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 13:04:40.492179 2026] [security2:error] [pid 29534:tid 29554] [client 112.74.45.246:52776] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|rogamur.com\|F\|2"] [data ".cer"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "rogamur.com"] [uri "/okok.cer"] [unique_id "ajV2qCEaqfSeVuQXxgw2rwAAARE"], referer: https://rogamur.com/okok.cer show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 13:44:56 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 09:44:51.672684 2026] [security2:error] [pid 9879:tid 9879] [client 112.74.45.246:32984] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|rodzillacharters.com\|F\|2"] [data ".cer"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "rodzillacharters.com"] [uri "/okok.cer"] [unique_id "ajVH0xv5S17z3MWRkAt3kwAAAB8"], referer: https://rodzillacharters.com/okok.cer show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 09:51:38 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 05:51:33.572848 2026] [security2:error] [pid 7145:tid 7145] [client 112.74.45.246:54416] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|rodrandolph.com\|F\|2"] [data ".cer"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "rodrandolph.com"] [uri "/okok.cer"] [unique_id "ajURJd5wn23dGX_pKiu0xgAAAAU"], referer: https://rodrandolph.com/okok.cer show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-19 06:07:14 (1 week ago)	Banned by Fail2Ban on server	Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 05:05:58 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 01:05:53.318429 2026] [security2:error] [pid 4716:tid 4716] [client 112.74.45.246:60772] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|rodeeinsurance.com\|F\|2"] [data ".cer"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "rodeeinsurance.com"] [uri "/okok.cer"] [unique_id "ajTOMQg7PdaCMTFmkpytAgAAAAI"], referer: https://rodeeinsurance.com/okok.cer show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 04:06:13 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 00:06:07.778027 2026] [security2:error] [pid 630:tid 630] [client 112.74.45.246:35686] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|rodandreelpiercam.com\|F\|2"] [data ".cer"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "rodandreelpiercam.com"] [uri "/okok.cer"] [unique_id "ajTAL5H1UxSVRzogleuShQAAABc"], referer: https://rodandreelpiercam.com/okok.cer show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 00:29:43 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 20:29:38.643520 2026] [security2:error] [pid 22030:tid 22030] [client 112.74.45.246:43472] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|rockymtnfire.com\|F\|2"] [data ".cer"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "rockymtnfire.com"] [uri "/okok.cer"] [unique_id "ajSNcjH01HOGkB7HPfyaDgAAAAM"], referer: https://rockymtnfire.com/okok.cer show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-15 04:10:07 (1 week ago)	Multiple, malicious web requests detected	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-14 11:15:31 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 112.74.45.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 07:15:25.178851 2026] [security2:error] [pid 15422:tid 15422] [client 112.74.45.246:35592] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|konahawaii.com\|F\|2"] [data ".cer"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "konahawaii.com"] [uri "/okok.cer"] [unique_id "ai6NTS5hnK0niAT8sVX9JAAAABA"], referer: https://konahawaii.com/okok.cer show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 74 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 106.75.214.209

🇳🇱 103.149.169.6

🇩🇪 37.120.191.97

🇺🇸 24.144.83.228

🇨🇳 14.103.118.61

🇩🇪 213.209.159.236

🇳🇱 195.178.110.30

🇸🇪 185.246.130.20

🇸🇬 165.232.170.62

🇫🇮 147.185.133.85

🇳🇱 91.92.42.198

🇬🇧 86.171.183.128

🇺🇸 2a03:2880:2ff:5f::

🇺🇸 2607:f8b0:4001:c6a::123

🇺🇸 162.216.150.226

🇩🇪 142.251.20.101

🇨🇳 116.172.249.213

🇨🇦 20.63.58.40

🇺🇸 2a03:2880:15ff:71::

🇩🇪 213.209.159.235