AbuseIPDB » 184.174.28.71
184.174.28.71
This IP was reported 5 times. Confidence of
Abuse
is 4% : ?
ISP
Code200
Usage Type
Data Center/Web Hosting/Transit
ASN
AS21769
Domain Name
code200.global
Country
πΊπΈ
United States of America
City
Los Angeles, California
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 184.174.28.71 :
This IP address has been reported a total of
5
times from
3 distinct
sources.
184.174.28.71 was first reported on
August 6th 2025 , and the most recent report was
6 days ago
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
πΊπΈ
TPI-Abuse
2026-06-01 01:56:37
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 184.174.28.71 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 184.174.28.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 21:56:02.426540 2026] [security2:error] [pid 6156:tid 6292] [client 184.174.28.71:54009] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.net"] [uri "/htaccess_for_page_not_found_redirects.htaccess"] [unique_id "ahzmsqVGAwiqj-RNG0MZ0gAAAZg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2025-11-17 12:14:54
(6 months ago)
| Common web attack.
Hacking
SQL Injection
Web App Attack
2025-10-13 06:05:00
(7 months ago)
Unauthorized connection attempt
Brute-Force
πΊπΈ
TPI-Abuse
2025-10-01 15:21:07
(8 months ago)
(mod_security) mod_security (id:210730) triggered by 184.174.28.71 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 184.174.28.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 01 11:21:04.749188 2025] [security2:error] [pid 31612:tid 31751] [client 184.174.28.71:45045] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||kettlehill.kettlehill.com|F|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kettlehill.kettlehill.com"] [uri "/db_config.php.bak"] [unique_id "aN1G4PVYIT9TWn2lWzKCJQAAARg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-08-06 03:10:06
(10 months ago)
(mod_security) mod_security (id:210492) triggered by 184.174.28.71 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 184.174.28.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 05 23:09:57.862839 2025] [security2:error] [pid 13045:tid 13045] [client 184.174.28.71:38553] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htpasswd" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.nbcnewsradio.com"] [uri "/.htpasswd"] [unique_id "aJLHhW8k-TquPC3aJ7dKUAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
5
of 5 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: