AbuseIPDB » 147.124.212.66

147.124.212.66 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 2%: ?

ISP	Majestic Hosting Solutions, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396073
Domain Name	majestic.jp
Country	United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 147.124.212.66

Whois 147.124.212.66

IP Abuse Reports for 147.124.212.66:

This IP address has been reported a total of 9 times from 2 distinct sources. 147.124.212.66 was first reported on February 27th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
TPI-Abuse	2025-02-27 09:30:26 (2 weeks ago)	(mod_security) mod_security (id:220020) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:220020) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 04:30:23.686142 2025] [security2:error] [pid 12445:tid 12445] [client 147.124.212.66:51671] [client 147.124.212.66] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(^\|;)=(;\|$)" at REQUEST_HEADERS:Cookie. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "74"] [id "220020"] [rev "2"] [msg "COMODO WAF: DoS vulnerability in Apache 2.2.17 - 2.2.21 (CVE-2012-0021)\|\|glendaleheritage.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "glendaleheritage.org"] [uri "/"] [unique_id "Z8Awrzi4fTX7wlSFLkiQwAAAAAI"], referer: https://www.onlinepianist.com show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-02-27 06:21:00 (2 weeks ago)	(mod_security) mod_security (id:220020) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:220020) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 01:20:57.678403 2025] [security2:error] [pid 25515:tid 25515] [client 147.124.212.66:58181] [client 147.124.212.66] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(^\|;)=(;\|$)" at REQUEST_HEADERS:Cookie. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "74"] [id "220020"] [rev "2"] [msg "COMODO WAF: DoS vulnerability in Apache 2.2.17 - 2.2.21 (CVE-2012-0021)\|\|davidnevue.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davidnevue.com"] [uri "/"] [unique_id "Z8AESduqMxHk7SOebYH-iAAAAAA"], referer: https://www.conservatoryofpiano.com show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-02-27 05:45:21 (2 weeks ago)	(mod_security) mod_security (id:220020) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:220020) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 00:45:17.010992 2025] [security2:error] [pid 1740450:tid 1740450] [client 147.124.212.66:54221] [client 147.124.212.66] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(^\|;)=(;\|$)" at REQUEST_HEADERS:Cookie. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "77"] [id "220020"] [rev "2"] [msg "COMODO WAF: DoS vulnerability in Apache 2.2.17 - 2.2.21 (CVE-2012-0021)\|\|tomweston.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tomweston.net"] [uri "/"] [unique_id "Z7_77dtgCfz19uYNf_tRPwAAAAQ"], referer: https://newschoolofmusic.com show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-02-27 05:16:00 (2 weeks ago)	(mod_security) mod_security (id:220020) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:220020) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 00:15:56.130485 2025] [security2:error] [pid 7792:tid 7801] [client 147.124.212.66:59918] [client 147.124.212.66] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(^\|;)=(;\|$)" at REQUEST_HEADERS:Cookie. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "74"] [id "220020"] [rev "2"] [msg "COMODO WAF: DoS vulnerability in Apache 2.2.17 - 2.2.21 (CVE-2012-0021)\|\|financialanalyst.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "financialanalyst.org"] [uri "/"] [unique_id "Z7_1DI5Ju3T5r6vorzvCTwAAAIc"], referer: https://www.roswellpianolessons.com show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-02-20 13:05:38 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:210730) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 20 08:05:30.512774 2025] [security2:error] [pid 17647:tid 17647] [client 147.124.212.66:57518] [client 147.124.212.66] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|xs80s.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "xs80s.com"] [uri "/mailto:[email protected]"] [unique_id "Z7comqWmBPn1l_sdNAf1QAAAAAM"], referer: https://livebandschedules.com show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-02-16 11:42:58 (1 month ago)	(mod_security) mod_security (id:220020) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:220020) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 16 06:42:51.109210 2025] [security2:error] [pid 32202:tid 32202] [client 147.124.212.66:63179] [client 147.124.212.66] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(^\|;)=(;\|$)" at REQUEST_HEADERS:Cookie. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "74"] [id "220020"] [rev "2"] [msg "COMODO WAF: DoS vulnerability in Apache 2.2.17 - 2.2.21 (CVE-2012-0021)\|\|www.player-care.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.player-care.com"] [uri "/playercare/forms/suggestions.html"] [unique_id "Z7HPO9Z5w6_S2rk24Zj_VQAAAAE"], referer: https://www.citylit.ac.uk show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-02-16 08:48:53 (1 month ago)	(mod_security) mod_security (id:220020) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Por ... show more(mod_security) mod_security (id:220020) triggered by 147.124.212.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 16 03:48:50.639344 2025] [security2:error] [pid 10555:tid 10555] [client 147.124.212.66:50256] [client 147.124.212.66] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(^\|;)=(;\|$)" at REQUEST_HEADERS:Cookie. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "74"] [id "220020"] [rev "2"] [msg "COMODO WAF: DoS vulnerability in Apache 2.2.17 - 2.2.21 (CVE-2012-0021)\|\|act-research.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "act-research.com"] [uri "/"] [unique_id "Z7GmcuAJQK4xvhekSkRSvwAAAAE"], referer: http://006i.com show less	Brute-Force Bad Web Bot Web App Attack
SvrAdmin	2024-02-28 10:47:48 (1 year ago)	Date: 27 Feb 2024 21:02:33 -0800 Return-Path: [email protected] sub ... show moreDate: 27 Feb 2024 21:02:33 -0800 Return-Path: [email protected] subject: SPAM: Susan Yan wants to add you to their network Received: from dunyaenerji.org.tr (unknown [147.124.212.66]) show less	Fraud Orders Phishing Email Spam Spoofing
SvrAdmin	2024-02-27 18:02:39 (1 year ago)	Date: 27 Feb 2024 03:21:58 -0800 Return-Path: [email protected] sub ... show moreDate: 27 Feb 2024 03:21:58 -0800 Return-Path: [email protected] subject: SPAM: Susan Yan wants to add you to their network Received: from dunyaenerji.org.tr (unknown [147.124.212.66]) show less	Fraud Orders Phishing Email Spam Spoofing