JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 167.71.45.204

167.71.45.204 was found in our database!

This IP was reported 140 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 167.71.45.204

Whois 167.71.45.204

IP Abuse Reports for 167.71.45.204:

This IP address has been reported a total of 140 times from 76 distinct sources. 167.71.45.204 was first reported on May 23rd 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Cyber Crusader	2026-04-08 23:28:19 (2 months ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇬🇧 sc user	2026-03-31 03:38:53 (2 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇬🇧 sc user	2026-03-28 06:47:04 (2 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇬🇧 sc user	2026-03-26 13:01:44 (2 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇺🇸 mnsf	2026-03-25 21:05:20 (2 months ago)	Too many Status 40X (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-03-25 08:33:13 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 167.71.45.204 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 167.71.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 04:33:06.486521 2026] [security2:error] [pid 30970:tid 30970] [client 167.71.45.204:59779] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|infinityartistsgroup.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "infinityartistsgroup.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "acOdwtLF1lvar9NKVVrBqwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-25 07:38:56 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 167.71.45.204 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 167.71.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 03:38:49.684053 2026] [security2:error] [pid 27693:tid 27693] [client 167.71.45.204:49625] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|idmadventures.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "idmadventures.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "acORCSbIhWucLGm8gKa1WgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-25 06:50:08 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 167.71.45.204 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 167.71.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 02:50:04.064247 2026] [security2:error] [pid 9003:tid 9003] [client 167.71.45.204:52746] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|contentaicreator.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "contentaicreator.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "acOFnOfsbU1_yNRzBjGduAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-25 02:52:18 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 167.71.45.204 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 167.71.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 24 22:52:10.211395 2026] [security2:error] [pid 12907:tid 12907] [client 167.71.45.204:59723] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|freehotdog.org\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "freehotdog.org"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "acNN2pprxhdPopq8QU-gzAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-03-25 00:06:18 (2 months ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2026-03-24 22:40:39 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 167.71.45.204 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 167.71.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 24 18:40:35.389685 2026] [security2:error] [pid 29070:tid 29070] [client 167.71.45.204:56920] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|blackballprojects.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "blackballprojects.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "acMS4xJQZHfe6qeAxS_IwQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Savoie	2026-03-24 20:59:00 (2 months ago)	167.71.45.204 *.* - [24/Mar/2026:21:59:17 +0100] "GET //vendor/phpunit/phpunit/phpunit.xsd HTTP/ ... show more 167.71.45.204 *.* - [24/Mar/2026:21:59:17 +0100] "GET //vendor/phpunit/phpunit/phpunit.xsd HTTP/1.1" 302 250 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" show less	Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-03-24 20:06:11 (2 months ago)	Too many Status 40X (11)	Brute-Force Web App Attack
🇬🇧 sc user	2026-03-24 19:45:26 (2 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇺🇸 TPI-Abuse	2026-03-24 16:31:59 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 167.71.45.204 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 167.71.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 24 12:29:26.826116 2026] [security2:error] [pid 14779:tid 14779] [client 167.71.45.204:63331] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kurtkaufman.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kurtkaufman.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "acK75k_rM7IJ1iaHQ52vgwAAACs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 140 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 207.175.15.109

🇺🇸 193.34.75.158

🇺🇸 193.34.75.68

🇺🇸 192.241.141.178

🇵🇱 194.180.48.31

🇺🇸 178.128.144.168

🇧🇷 177.96.26.13

🇩🇪 172.253.1.209

🇩🇪 155.117.127.214

🇺🇸 135.237.122.43

🇺🇸 134.209.120.216

🇵🇰 103.111.39.122

🇬🇧 87.236.176.103

🇺🇸 47.251.121.150

🇰🇷 14.55.144.22

🇵🇰 2400:adcc:1c2:6a00:1945:26e7:e68:83e1

🇺🇸 172.253.85.86

🇨🇳 114.92.176.206

🇨🇿 93.91.153.26

🇫🇷 85.69.240.210