JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 178.128.120.115

178.128.120.115 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 178.128.120.115

Whois 178.128.120.115

IP Abuse Reports for 178.128.120.115:

This IP address has been reported a total of 36 times from 12 distinct sources. 178.128.120.115 was first reported on October 6th 2023, and the most recent report was 2 years ago.

Old Reports: The most recent abuse report for this IP address is from 2 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2024-02-12 06:24:11 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 12 01:24:04.911143 2024] [security2:error] [pid 2199:tid 47496034260736] [client 178.128.120.115:62039] [client 178.128.120.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|birdhousefarms.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "birdhousefarms.com"] [uri "/site/default/settings.php.BAK"] [unique_id "Zcm5hDO4fEWFgRxOUe4M9QAAARI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-02-08 22:52:06 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 08 17:51:59.926574 2024] [security2:error] [pid 2741] [client 178.128.120.115:60647] [client 178.128.120.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|islandsuperbook.net\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "islandsuperbook.net"] [uri "/site/default/settings.php.BAK"] [unique_id "ZcVbD4riMJKG5mCyXxWAXAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-02-06 06:35:10 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 06 01:35:03.800066 2024] [security2:error] [pid 8532] [client 178.128.120.115:54823] [client 178.128.120.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|orozco-wallraff.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "orozco-wallraff.com"] [uri "/site/default/settings.php.BAK"] [unique_id "ZcHTF8QFNiE9OMBAifuRMwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-02-05 02:04:54 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 04 21:04:51.071597 2024] [security2:error] [pid 14635] [client 178.128.120.115:64905] [client 178.128.120.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|avalderlaw.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "avalderlaw.com"] [uri "/site/default/settings.php.BAK"] [unique_id "ZcBCQ9yvvVCiJ4ZcvshGPQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-02-04 09:02:28 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 04 04:02:24.724709 2024] [security2:error] [pid 16571] [client 178.128.120.115:61572] [client 178.128.120.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mericahauling.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mericahauling.com"] [uri "/site/default/settings.php.BAK"] [unique_id "Zb9SoOwF2Vxxpd5zgX24cQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-02-03 02:47:53 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 02 21:47:48.363482 2024] [security2:error] [pid 15067] [client 178.128.120.115:65079] [client 178.128.120.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|totenclaus.es\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "totenclaus.es"] [uri "/site/default/settings.php.BAK"] [unique_id "Zb2pVIN38YPLRZVtVEOXQAAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-02-02 21:41:26 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 02 16:41:21.067312 2024] [security2:error] [pid 17543] [client 178.128.120.115:53017] [client 178.128.120.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitaminpolis.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitaminpolis.com"] [uri "/site/default/settings.php.BAK"] [unique_id "Zb1hgVTPs2Mvw_ANilmrXAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-02-02 01:35:59 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 01 20:35:55.632352 2024] [security2:error] [pid 19765] [client 178.128.120.115:51148] [client 178.128.120.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kaffeescape.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kaffeescape.com"] [uri "/site/default/settings.php.BAK"] [unique_id "ZbxG-5-qNwGlOLxwjRt9jQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-02-01 23:40:17 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 01 18:40:12.857850 2024] [security2:error] [pid 20591] [client 178.128.120.115:61318] [client 178.128.120.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|winterspring.net\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "winterspring.net"] [uri "/site/default/settings.php.BAK"] [unique_id "Zbwr3LPLCSF3ipZjI2ThyAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 knijper	2024-02-01 13:01:05 (2 years ago)	50+ scripts not found	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-02-01 11:33:24 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 01 06:33:17.238834 2024] [security2:error] [pid 5671] [client 178.128.120.115:60465] [client 178.128.120.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|theyoungstrategist.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "theyoungstrategist.com"] [uri "/site/default/settings.php.BAK"] [unique_id "ZbuBfTszelbkqehqNFYmFgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Savvii	2024-02-01 01:19:21 (2 years ago)	20 attempts against mh-misbehave-ban on redirect	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-01-31 23:49:42 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 31 18:49:36.032010 2024] [security2:error] [pid 1479] [client 178.128.120.115:53667] [client 178.128.120.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|cathrynn.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cathrynn.com"] [uri "/site/default/settings.php.BAK"] [unique_id "ZbrckGUspg_en-KMJQHiEwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 penjaga BRIN	2024-01-31 20:00:59 (2 years ago)	apache-auth-111	Brute-Force
🇺🇸 TPI-Abuse	2024-01-31 16:42:17 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 178.128.120.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 31 11:42:11.699589 2024] [security2:error] [pid 15530] [client 178.128.120.115:51616] [client 178.128.120.115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.foxmm.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.foxmm.com"] [uri "/site/default/settings.php.BAK"] [unique_id "Zbp4Yyv3wl_LFkFZa_uWWQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.59.38.80

🇱🇻 81.30.98.49

🇻🇳 27.71.230.31

🇩🇪 165.154.138.34

🇺🇸 162.216.149.95

🇫🇮 147.185.133.182

🇫🇮 147.185.133.110

🇫🇮 147.185.133.108

🇹🇼 123.58.205.100

🇳🇱 91.92.40.176

🇳🇱 45.198.224.18

🇯🇵 43.165.180.54

🇺🇸 2607:f8b0:400e:c17::122

🇻🇳 203.113.174.15

🇧🇷 189.127.12.74

🇮🇷 176.65.240.242

🇩🇪 130.12.180.52

🇺🇸 107.149.159.96

🇪🇸 81.60.215.62

🇺🇸 2607:f8b0:4004:1009::121