JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.156.195.63

124.156.195.63 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 15%: ?

15%

ISP	Asia Pacific Network Information Centre
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132203
Domain Name	apnic.net
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.156.195.63

Whois 124.156.195.63

IP Abuse Reports for 124.156.195.63:

This IP address has been reported a total of 11 times from 2 distinct sources. 124.156.195.63 was first reported on June 9th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-13 06:13:35 (4 days ago)	(mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 02:13:28.917035 2026] [security2:error] [pid 27052:tid 27052] [client 124.156.195.63:54258] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.aticom.net\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.aticom.net"] [uri "/"] [unique_id "aiz1CLjQDW_1SqO03t5JrgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-12 09:20:32 (4 days ago)	Try to access /xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 09:06:36 (5 days ago)	(mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 05:06:31.227710 2026] [security2:error] [pid 9930:tid 9930] [client 124.156.195.63:59092] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|backstore.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "backstore.com"] [uri "/"] [unique_id "aivMF3a0v_C00ZewTrtSmAAAAAw"], referer: http://www.backstore.info show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 06:57:32 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 02:57:26.860447 2026] [security2:error] [pid 12343:tid 12408] [client 124.156.195.63:45164] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.sh2.lol\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.sh2.lol"] [uri "/"] [unique_id "aikK1viuDo8m5JPG2UpWcQAAAE0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 05:50:16 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 01:50:11.077843 2026] [security2:error] [pid 7302:tid 7302] [client 124.156.195.63:44974] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|sabbathseminars.net\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "sabbathseminars.net"] [uri "/"] [unique_id "aij7E5GlGxeqAWE0VOTOHAAAAAI"], referer: https://www.sabbathseminars.org/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 05:34:10 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 01:34:05.547699 2026] [security2:error] [pid 27289:tid 27289] [client 124.156.195.63:59994] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|lockdownclaim.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "lockdownclaim.com"] [uri "/"] [unique_id "aij3Tdo5HK00I2IcEYz6wAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 02:18:54 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 22:18:46.711807 2026] [security2:error] [pid 11682:tid 11682] [client 124.156.195.63:47874] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|technicallydental.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "technicallydental.com"] [uri "/"] [unique_id "aijJhsjDB4EpTIvtyWDZ6AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 02:03:31 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 22:03:26.968833 2026] [security2:error] [pid 21379:tid 21477] [client 124.156.195.63:49896] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|c22p.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "c22p.org"] [uri "/"] [unique_id "aijF7sQNIRNnPlgGAViJfgAAAMo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 10:17:47 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:17:42.170908 2026] [security2:error] [pid 14457:tid 14457] [client 124.156.195.63:51360] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.comp-formation.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.comp-formation.com"] [uri "/"] [unique_id "aifoRkD0JdUW1jShL38k6AAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 10:01:04 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:00:58.451518 2026] [security2:error] [pid 2549:tid 2549] [client 124.156.195.63:38750] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|thoughtage.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "thoughtage.org"] [uri "/"] [unique_id "aifkWtmiqG_G7kbD55a1-AAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 09:44:01 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 124.156.195.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 05:43:52.689631 2026] [security2:error] [pid 27486:tid 27486] [client 124.156.195.63:47358] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|aarce.me\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "aarce.me"] [uri "/"] [unique_id "aifgWNsmhyZR_-WtVV5l_AAAAAE"], referer: http://www.aarce.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇿 213.230.67.218

🇺🇸 184.105.139.74

🇺🇸 173.239.211.9

🇨🇳 119.145.107.60

🇺🇸 74.82.47.19

🇫🇷 46.105.28.235

🇳🇱 45.156.87.13

🇺🇸 45.131.193.34

🇰🇷 211.223.26.139

🇮🇳 202.179.159.55

🇪🇬 197.36.247.71

🇷🇺 193.24.231.70

192.168.200.231

🇨🇱 190.163.94.145

🇳🇱 185.242.226.90

🇷🇺 185.42.24.225

🇳🇱 176.65.148.58

🇺🇸 159.89.133.65

🇸🇬 152.42.164.200

🇺🇸 151.240.45.5