AbuseIPDB » 168.194.163.120
168.194.163.120 was found in our database!
This IP was reported 6 times. Confidence of
Abuse
is 33% : ?
ISP
Ligga Telecomunicações S.A.
Usage Type
Fixed Line ISP
ASN
AS14868
Hostname(s)
120.163.194.168.rfc6598.dynamic.copelfibra.com.br
Domain Name
liggavc.com.br
Country
🇧🇷
Brazil
City
Curitiba, Parana
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 168.194.163.120 :
This IP address has been reported a total of
6
times from
5 distinct
sources.
168.194.163.120 was first reported on
June 29th 2026 , and the most recent report was
2 days ago .
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
🇺🇸
TPI-Abuse
2026-07-07 18:13:18
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 168.194.163.120 (120.163.194.168.rfc6598.dynami ...
show more
(mod_security) mod_security (id:225170) triggered by 168.194.163.120 (120.163.194.168.rfc6598.dynamic.copelfibra.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 14:13:12.659523 2026] [security2:error] [pid 8884:tid 8884] [client 168.194.163.120:13941] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||richmondrents.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "richmondrents.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ak1BuHZHzTHKokP3wzlU4AAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
🇩🇪
big-cloud.nl
2026-07-07 12:20:05
(3 days ago)
Try to access /xmlrpc.php
Web App Attack
🇫🇮
stinpriza
2026-07-06 22:21:06
(3 days ago)
Web App Attack
Web App Attack
🇬🇧
abivia
2026-07-06 20:18:15
(3 days ago)
Abivia WAF trigger: Rule staticSite: Request PHP file on a static site. uri: /xmlrpc.php
Hacking
Web App Attack
🇺🇸
TPI-Abuse
2026-07-06 14:41:06
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 168.194.163.120 (120.163.194.168.rfc6598.dynami ...
show more
(mod_security) mod_security (id:225170) triggered by 168.194.163.120 (120.163.194.168.rfc6598.dynamic.copelfibra.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 10:41:01.352517 2026] [security2:error] [pid 14057:tid 14057] [client 168.194.163.120:15134] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||aroilcontrolsystem.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "aroilcontrolsystem.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aku-fbrWujyQXhD6YaD6XgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
🇺🇸
kosada.com
2026-06-29 08:41:17
(1 week ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
Showing 1 to
6
of 6 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown 🚩
Recently Reported IPs: