JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.78.26.57

66.78.26.57 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 49%: ?

49%

ISP	CODE200
Usage Type	Data Center/Web Hosting/Transit
ASN	AS21769
Hostname(s)	57-26-78-66.rdns.colocationamerica.com
Domain Name	code200.global
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.78.26.57

Whois 66.78.26.57

IP Abuse Reports for 66.78.26.57:

This IP address has been reported a total of 19 times from 7 distinct sources. 66.78.26.57 was first reported on June 23rd 2026, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-27 10:53:30 (6 hours ago)	(mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica ... show more (mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 06:53:23.539303 2026] [security2:error] [pid 11193:tid 11193] [client 66.78.26.57:38936] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sjtent.com"] [uri "/sftp-config.json"] [unique_id "aj-ro6IWFlgaLkNGwewd2gAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 06:26:33 (10 hours ago)	(mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica ... show more (mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 02:26:29.654998 2026] [security2:error] [pid 26078:tid 26078] [client 66.78.26.57:50350] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "grasslakepizzatime.com"] [uri "/sftp-config.json"] [unique_id "aj9tFYjE_BlMAouXC-cOMwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-26 22:41:41 (18 hours ago)	Try to access /.vscode/sftp.json	Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 15:29:59 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica ... show more (mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 11:29:54.625034 2026] [security2:error] [pid 2349:tid 2349] [client 66.78.26.57:25358] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "goseethenurse.com"] [uri "/sftp-config.json"] [unique_id "aj6a8nqIXKZBD1-KKRFTqAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 13:37:51 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica ... show more (mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 09:37:47.395655 2026] [security2:error] [pid 24252:tid 24252] [client 66.78.26.57:14406] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gopherblower.com"] [uri "/sftp-config.json"] [unique_id "aj6Aq-SbKj8Sv1T5aimoHAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 00:02:54 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica ... show more (mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 20:02:47.180665 2026] [security2:error] [pid 14777:tid 14777] [client 66.78.26.57:28550] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "goglobex.com"] [uri "/sftp-config.json"] [unique_id "aj3Bp3sI8FvE7VLA1tLXHwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 19:44:33 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica ... show more (mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 15:44:27.115409 2026] [security2:error] [pid 25474:tid 25474] [client 66.78.26.57:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "goalsnet.net"] [uri "/sftp-config.json"] [unique_id "aj2FG2R4As7y9d3WvX2ReQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 13:43:53 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica ... show more (mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 09:43:48.612104 2026] [security2:error] [pid 6669:tid 6669] [client 66.78.26.57:39506] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "toxicwater.com"] [uri "/sftp-config.json"] [unique_id "ajvfFOzknM5wX1MXkWrx1wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-24 11:49:24 (3 days ago)	[WedJun2413:49:20.6220882026][security2:error][pid354748:tid354830][client66.78.26.57:0]ModSecurity: ... show more [WedJun2413:49:20.6220882026][security2:error][pid354748:tid354830][client66.78.26.57:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"tourkomanis.ch\"][uri\"/sftp-config.json\"][unique_id\"ajvEQG7jBcs52Jl9ZHec0QAAAIY\"] show less	Port Scan Brute-Force Web App Attack
🇩🇪 iNetWorker	2026-06-24 11:41:26 (3 days ago)	trolling for resource vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 22:44:50 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica ... show more (mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 18:44:44.342330 2026] [security2:error] [pid 24410:tid 24410] [client 66.78.26.57:41820] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tonydelov.com"] [uri "/sftp-config.json"] [unique_id "ajsMXALY8IRSzES_Bc5B-QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 22:14:46 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica ... show more (mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 18:14:42.114464 2026] [security2:error] [pid 14607:tid 14615] [client 66.78.26.57:20038] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sonatro.io"] [uri "/sftp-config.json"] [unique_id "ajsFUp_C30oxgSpG4W34zAAAAIY"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-23 22:08:02 (3 days ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,ice02,wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 21:09:05 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica ... show more (mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 17:09:00.609938 2026] [security2:error] [pid 16941:tid 16941] [client 66.78.26.57:5638] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "backstore.com"] [uri "/sftp-config.json"] [unique_id "ajr17FyXJTxNd7rhHW8NTQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 20:37:34 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica ... show more (mod_security) mod_security (id:210492) triggered by 66.78.26.57 (57-26-78-66.rdns.colocationamerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 16:37:28.734667 2026] [security2:error] [pid 23680:tid 23680] [client 66.78.26.57:32376] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tomorrowsdust.net"] [uri "/sftp-config.json"] [unique_id "ajruiO4KuKFrYNrTQdOFYQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.152

🇺🇸 147.185.132.143

🇺🇸 104.244.124.135

🇺🇸 93.152.5.169

🇳🇱 91.92.40.39

🇧🇬 79.124.56.238

🇺🇸 2607:f8b0:4004:1002::12a

🇳🇱 195.178.110.228

🇦🇺 170.64.154.53

🇺🇸 147.185.132.164

🇨🇳 121.196.227.86

🇭🇰 103.81.170.118

🇺🇸 3.95.38.74

🇺🇸 173.252.95.58

🇰🇷 121.188.193.96

🇨🇳 58.56.112.194

🇨🇳 8.138.104.235

🇨🇳 218.58.73.238

🇩🇪 213.209.159.228

🇳🇱 204.76.203.219