JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 128.1.57.69

128.1.57.69 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 0%: ?

ISP	Zenlayer Inc
Usage Type	Data Center/Web Hosting/Transit
ASN	AS21859
Domain Name	zenlayer.com
Country	🇵🇭 Philippines
City	Manila, National Capital Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 128.1.57.69

Whois 128.1.57.69

IP Abuse Reports for 128.1.57.69:

This IP address has been reported a total of 14 times from 5 distinct sources. 128.1.57.69 was first reported on October 30th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 Ashley White	2025-02-16 21:22:00 (1 year ago)	Log4j vulnerability attempt	Brute-Force
🇲🇾 Rizzy	2024-11-15 05:58:15 (1 year ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇧🇷 ufn.edu.br	2024-11-12 05:46:32 (1 year ago)	[Tue Nov 12 03:46:30.804045 2024] [:error] [pid 13375] [client 128.1.57.69] ModSecurity: Access deni ... show more [Tue Nov 12 03:46:30.804045 2024] [:error] [pid 13375] [client 128.1.57.69] ModSecurity: Access denied with code 400 (phase 2). Match of "eq 0" against "REQBODY_ERROR" required. [file "/etc/modsecurity/modsecurity.conf"] [line "54"] [id "200001"] [msg "Failed to parse request body."] [data "Multipart parsing error: Multipart: Invalid Content-Disposition header (-12): form-data; name=\\x22pigphoto\\x22; filename=\\x22b43ov\\x22.php\\x22."] [severity "CRITICAL"] [hostname "ws12vmsma01.ufn.edu.br"] [uri "/pig/add-pig.php"] [unique_id "ZzLrtn8AAAEAADQ-kFsAAAAO"] ... show less	DDoS Attack Web App Attack
🇲🇾 PPTM	2024-11-12 03:59:00 (1 year ago)	"URL":"https://********************/v1/backend1","Method":"POST","Payload":{"CID":"x","action":"se ... show more "URL":"https://********************/v1/backend1","Method":"POST","Payload":{"CID":"x","action":"set_metric_gw_selections","account_name":"/../../../var/www/php/2oYu73OY5APrqNQDyTZO0LqcnZR.php","data":"<?php echo md5(\"CVE-2021-40870\");unlink(__FILE__);?>"} show less	Hacking Web App Attack
🇲🇾 Rizzy	2024-11-11 15:58:09 (1 year ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇧🇷 ufn.edu.br	2024-11-11 03:30:51 (1 year ago)	[Mon Nov 11 01:30:50.133887 2024] [:error] [pid 26079] [client 128.1.57.69] ModSecurity: Access deni ... show more [Mon Nov 11 01:30:50.133887 2024] [:error] [pid 26079] [client 128.1.57.69] ModSecurity: Access denied with code 400 (phase 2). Match of "eq 0" against "REQBODY_ERROR" required. [file "/etc/modsecurity/modsecurity.conf"] [line "54"] [id "200001"] [msg "Failed to parse request body."] [data "Multipart parsing error: Multipart: Final boundary missing."] [severity "CRITICAL"] [hostname "ws12vmsma01.ufn.edu.br"] [uri "/inc/jquery/uploadify/uploadify.php"] [unique_id "ZzF6an8AAAEAAGXf@4oAAAAC"] ... show less	DDoS Attack Web App Attack
🇲🇾 Rizzy	2024-11-09 18:30:16 (1 year ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇧🇷 ufn.edu.br	2024-11-08 19:05:41 (1 year ago)	[Fri Nov 08 17:05:40.051368 2024] [:error] [pid 7772] [client 128.1.57.69] ModSecurity: Access denie ... show more [Fri Nov 08 17:05:40.051368 2024] [:error] [pid 7772] [client 128.1.57.69] ModSecurity: Access denied with code 400 (phase 2). Match of "eq 0" against "REQBODY_ERROR" required. [file "/etc/modsecurity/modsecurity.conf"] [line "54"] [id "200001"] [msg "Failed to parse request body."] [data "Multipart parsing error: Multipart: Final boundary missing."] [severity "CRITICAL"] [hostname "ws12vmsma01.ufn.edu.br"] [uri "/OA_HTML/BneViewerXMLService"] [unique_id "Zy5hBH8AAAEAAB5chK0AAAAA"] ... show less	DDoS Attack Web App Attack
🇲🇾 Rizzy	2024-11-08 10:12:21 (1 year ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇧🇷 ufn.edu.br	2024-11-07 02:31:25 (1 year ago)	[Thu Nov 07 00:31:24.064289 2024] [:error] [pid 12983] [client 128.1.57.69] ModSecurity: Access deni ... show more [Thu Nov 07 00:31:24.064289 2024] [:error] [pid 12983] [client 128.1.57.69] ModSecurity: Access denied with code 400 (phase 2). Match of "eq 0" against "REQBODY_ERROR" required. [file "/etc/modsecurity/modsecurity.conf"] [line "54"] [id "200001"] [msg "Failed to parse request body."] [data "Multipart parsing error: Multipart: Final boundary missing."] [severity "CRITICAL"] [hostname "ws12vmsma01.ufn.edu.br"] [uri "/Config/SaveUploadedHotspotLogoFile"] [unique_id "ZywmfH8AAAEAADK3EXQAAAAD"] ... show less	DDoS Attack Web App Attack
🇧🇷 ufn.edu.br	2024-11-06 01:06:55 (1 year ago)	[Tue Nov 05 23:06:54.070437 2024] [:error] [pid 25651] [client 128.1.57.69] ModSecurity: Access deni ... show more [Tue Nov 05 23:06:54.070437 2024] [:error] [pid 25651] [client 128.1.57.69] ModSecurity: Access denied with code 400 (phase 2). Match of "eq 0" against "REQBODY_ERROR" required. [file "/etc/modsecurity/modsecurity.conf"] [line "54"] [id "200001"] [msg "Failed to parse request body."] [data "Multipart parsing error: Multipart: Final boundary missing."] [severity "CRITICAL"] [hostname "ws12vmsma01.ufn.edu.br"] [uri "/logupload"] [unique_id "ZyrBLn8AAAEAAGQzIOMAAAAM"] ... show less	DDoS Attack Web App Attack
🇧🇷 ufn.edu.br	2024-11-05 21:21:19 (1 year ago)	[Tue Nov 05 19:21:17.782879 2024] [access_compat:error] [pid 965] [client 128.1.57.69:59476] AH01797 ... show more [Tue Nov 05 19:21:17.782879 2024] [access_compat:error] [pid 965] [client 128.1.57.69:59476] AH01797: client denied by server configuration: /var/www/html/index.php [Tue Nov 05 19:21:18.218739 2024] [access_compat:error] [pid 25651] [client 128.1.57.69:43932] AH01797: client denied by server configuration: /var/www/html/_adminer.php [Tue Nov 05 19:21:18.405696 2024] [access_compat:error] [pid 17528] [client 128.1.57.69:43944] AH01797: client denied by server configuration: /var/www/html/adminer.php ... show less	Exploited Host Web App Attack
🇧🇷 ufn.edu.br	2024-11-03 17:12:22 (1 year ago)	[Sun Nov 03 15:12:22.126237 2024] [:error] [pid 17066] [client 128.1.57.69] ModSecurity: Access deni ... show more [Sun Nov 03 15:12:22.126237 2024] [:error] [pid 17066] [client 128.1.57.69] ModSecurity: Access denied with code 400 (phase 2). Match of "eq 0" against "REQBODY_ERROR" required. [file "/etc/modsecurity/modsecurity.conf"] [line "54"] [id "200001"] [msg "Failed to parse request body."] [data "XML parser error: XML: Failed parsing document."] [severity "CRITICAL"] [hostname "ws12vmsma01.ufn.edu.br"] [uri "/soap.cgi"] [unique_id "Zyeu9n8AAAEAAEKq54QAAAAH"] ... show less	DDoS Attack Web App Attack
🇧🇷 ALEX NUNES	2024-10-30 14:05:00 (1 year ago)	128.1.57.69 - - [30/Oct/2024:04:59:04 +0000] "GET / HTTP/1.1" 200 689 "() { ignored; }; echo Content ... show more 128.1.57.69 - - [30/Oct/2024:04:59:04 +0000] "GET / HTTP/1.1" 200 689 "() { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd" "Mozilla/5.0 (Kubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36" show less	DDoS Attack Port Scan Hacking Brute-Force Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.189.98.96

🇫🇮 193.66.151.86

🇵🇭 165.154.59.90

🇺🇸 152.32.207.229

🇺🇸 147.185.132.255

🇨🇳 61.184.57.220

🇺🇸 3.95.187.137

🇵🇰 210.87.64.31

🇺🇸 147.185.132.120

🇺🇸 66.132.186.235

🇺🇸 65.49.20.87

🇻🇳 14.191.184.92

🇺🇸 216.73.161.164

🇧🇪 198.235.24.158

🇫🇮 178.20.210.208

🇺🇸 172.202.9.120

🇺🇸 147.182.177.180

🇳🇱 88.210.63.69

🇷🇺 81.177.101.45

🇺🇸 72.253.251.7