JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.234.151.196

66.234.151.196 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 15%: ?

15%

ISP	M247 LTD Warsaw Infrastructure
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9009
Domain Name	m247.com
Country	🇵🇱 Poland
City	Ursynow, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.234.151.196

Whois 66.234.151.196

IP Abuse Reports for 66.234.151.196:

This IP address has been reported a total of 5 times from 2 distinct sources. 66.234.151.196 was first reported on June 15th 2026, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-21 12:34:38 (10 hours ago)	(mod_security) mod_security (id:240335) triggered by 66.234.151.196 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 66.234.151.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 08:34:31.419067 2026] [security2:error] [pid 14024:tid 14024] [client 66.234.151.196:59165] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 66.234.151.196 (+1 hits since last alert)\|ardath.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ardath.net"] [uri "/xmlrpc.php"] [unique_id "ajfaV18NELXwy0epmLch0wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 11:02:44 (12 hours ago)	(mod_security) mod_security (id:240335) triggered by 66.234.151.196 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 66.234.151.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 07:02:38.898748 2026] [security2:error] [pid 19060:tid 19060] [client 66.234.151.196:52374] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 66.234.151.196 (+1 hits since last alert)\|pcga.golf\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pcga.golf"] [uri "/xmlrpc.php"] [unique_id "ajfEzsLvV5vPWvJWlEMsxQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 03:18:19 (20 hours ago)	(mod_security) mod_security (id:240335) triggered by 66.234.151.196 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 66.234.151.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 23:18:13.537579 2026] [security2:error] [pid 26481:tid 26481] [client 66.234.151.196:54451] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 66.234.151.196 (+1 hits since last alert)\|hiidied.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "hiidied.com"] [uri "/xmlrpc.php"] [unique_id "ajdX9aPZ1WsOCAgoQQ1_xQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 15:03:40 (6 days ago)	(mod_security) mod_security (id:240335) triggered by 66.234.151.196 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 66.234.151.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 11:03:35.393251 2026] [security2:error] [pid 23585:tid 23585] [client 66.234.151.196:51238] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 66.234.151.196 (+1 hits since last alert)\|nearfieldchrist.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "nearfieldchrist.com"] [uri "/xmlrpc.php"] [unique_id "ajAUR_02hEIIs87Zxh1eggAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-15 14:31:10 (6 days ago)	Attac	Brute-Force

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 175.44.225.174

🇻🇳 152.32.250.188

🇨🇭 85.203.45.236

🇫🇷 62.210.142.174

🇺🇸 2606:65c0:40:362:8572:1418:c0ae:be83

🇨🇳 183.251.214.45

🇨🇳 175.6.141.237

🇺🇸 147.185.132.52

🇭🇰 103.243.26.174

🇭🇰 103.43.191.43

🇷🇺 93.77.187.140

🇬🇧 86.165.120.180

🇳🇱 45.148.10.157

🇳🇱 45.148.10.151

🇺🇸 20.106.197.7

🇺🇸 216.25.89.119

🇪🇬 197.120.171.171

🇮🇩 180.251.149.127

🇺🇸 162.216.150.208

🇩🇪 152.53.161.124