JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.245.66.70

172.245.66.70 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 0%: ?

ISP	Lixux OU (VATID EE101773168)
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Hostname(s)	172-245-66-70-host.colocrossing.com
Domain Name	rue8.com
Country	🇺🇸 United States of America
City	Buffalo, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.245.66.70

Whois 172.245.66.70

IP Abuse Reports for 172.245.66.70:

This IP address has been reported a total of 6 times from 4 distinct sources. 172.245.66.70 was first reported on February 12th 2021, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-02-04 16:36:59 (1 year ago)	(mod_security) mod_security (id:210350) triggered by 172.245.66.70 (172-245-66-70-host.colocrossing. ... show more (mod_security) mod_security (id:210350) triggered by 172.245.66.70 (172-245-66-70-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 04 11:36:51.353226 2025] [security2:error] [pid 10828:tid 10855] [client 172.245.66.70:42619] [client 172.245.66.70] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|41bravo.com\|F\|4"] [data "keep-alive, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "41bravo.com"] [uri "/contact/"] [unique_id "Z6JCI48ypdfV9M-W75f9WwAAARg"], referer: https://41bravo.com/contact/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-02-04 08:34:19 (1 year ago)	(mod_security) mod_security (id:210350) triggered by 172.245.66.70 (172-245-66-70-host.colocrossing. ... show more (mod_security) mod_security (id:210350) triggered by 172.245.66.70 (172-245-66-70-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 04 03:34:12.485623 2025] [security2:error] [pid 5720:tid 5720] [client 172.245.66.70:35438] [client 172.245.66.70] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|nextlevelcharge.com\|F\|4"] [data "keep-alive, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "nextlevelcharge.com"] [uri "/contact-us/"] [unique_id "Z6HRBO4Yvf5OJvt_YU3q4QAAAAE"], referer: https://nextlevelcharge.com/contact-us/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-02-04 08:00:12 (1 year ago)	(mod_security) mod_security (id:210350) triggered by 172.245.66.70 (172-245-66-70-host.colocrossing. ... show more (mod_security) mod_security (id:210350) triggered by 172.245.66.70 (172-245-66-70-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 04 03:00:02.566032 2025] [security2:error] [pid 21317:tid 21317] [client 172.245.66.70:35693] [client 172.245.66.70] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|cfmgroup.us\|F\|4"] [data "keep-alive, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "cfmgroup.us"] [uri "/contact/"] [unique_id "Z6HJAkQEcbeVSKlmZSBzvAAAABA"], referer: https://cfmgroup.us/contact/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2023-03-02 16:53:18 (3 years ago)		Web App Attack
Anonymous	2021-02-19 12:38:42 (5 years ago)	Web Server Attack	Hacking
🇻🇳 thachpham	2021-02-12 16:21:13 (5 years ago)	(mod_security) mod_security (id:210740) triggered by 172.245.66.70 (US/United States/172-245-66-70-h ... show more (mod_security) mod_security (id:210740) triggered by 172.245.66.70 (US/United States/172-245-66-70-host.colocrossing.com): 5 in the last 3600 secs show less	Brute-Force

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇹 212.216.249.35

🇷🇴 193.46.255.86

🇧🇷 164.152.250.192

🇳🇱 91.92.40.31

🇺🇸 74.7.241.50

🇹🇭 118.193.57.121

🇮🇳 103.181.161.7

🇺🇸 66.132.172.128

🇧🇷 43.164.192.38

🇸🇬 43.134.35.72

🇩🇪 213.209.159.228

🇲🇦 196.89.50.0

🇺🇸 172.236.111.197

🇺🇸 135.237.126.231

🇳🇬 102.88.137.213

🇷🇴 80.94.92.165

🇺🇸 34.172.194.72

🇮🇷 2.185.51.225

🇧🇷 191.240.37.24

🇮🇳 182.95.103.74