JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 147.161.189.13

147.161.189.13 was found in our database!

This IP was reported 2 times. Confidence of Abuse is 0%: ?

ISP	Zscaler Stockholm
Usage Type	Commercial
ASN	AS62044
Domain Name	zscaler.com
Country	🇸🇪 Sweden
City	Stockholm, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 147.161.189.13

Whois 147.161.189.13

IP Abuse Reports for 147.161.189.13:

This IP address has been reported a total of 2 times from 1 distinct source. 147.161.189.13 was first reported on July 8th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2024-07-08 09:09:26 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 147.161.189.13 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 147.161.189.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 08 05:09:21.593058 2024] [security2:error] [pid 12140] [client 147.161.189.13:10040] [client 147.161.189.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 185.189.112.11 (0+1 hits since last alert)\|phoboschildren.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "phoboschildren.com"] [uri "/xmlrpc.php"] [unique_id "ZouswYnxATSdmjvOf3cnJwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-07-08 08:11:22 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 147.161.189.13 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 147.161.189.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 08 04:11:17.240954 2024] [security2:error] [pid 13748:tid 47554620299008] [client 147.161.189.13:11133] [client 147.161.189.13] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 213.152.161.249 (3+1 hits since last alert)\|gochemless.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "gochemless.com"] [uri "/xmlrpc.php"] [unique_id "ZoufJTVHLDy2ISdGWbvlHwAAAFE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 2 of 2 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.141.43.146

🇺🇸 185.191.171.7

🇿🇦 105.233.66.167

🇸🇬 103.250.11.80

🇺🇸 216.25.89.64

🇺🇸 107.152.44.215

🇺🇸 104.23.245.69

🇺🇸 104.22.24.194

🇩🇪 69.5.169.197

🇩🇪 69.5.169.137

🇳🇱 50.7.41.94

🇵🇱 46.205.244.93

🇺🇸 45.79.115.59

🇫🇷 37.60.231.31

🇬🇧 2a06:4880:8000::ac

🇧🇪 198.235.24.199

🇮🇩 182.8.97.80

🇳🇱 176.65.139.56

🇺🇸 162.216.149.52

🇺🇸 104.22.1.128