JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.139.110.253

123.139.110.253 was found in our database!

This IP was reported 2 times. Confidence of Abuse is 2%: ?

ISP	China Unicom Shannxi province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Xi'an, Shaanxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.139.110.253

Whois 123.139.110.253

IP Abuse Reports for 123.139.110.253:

This IP address has been reported a total of 2 times from 1 distinct source. 123.139.110.253 was first reported on September 10th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-07 11:02:06 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 123.139.110.253 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 123.139.110.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 07:02:02.713175 2026] [security2:error] [pid 26972:tid 26972] [client 123.139.110.253:39519] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.firstlegend.info\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.firstlegend.info"] [uri "/3rivers/firstlegendimages2010/firstlegendsatelliteimagery2010.html"] [unique_id "aiVPqpdQ37VAbtWZdND5tgAAACM"], referer: http://www.firstlegend.info/3rivers/firstlegendimages2010/firstlegendsatelliteimagery2010.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-10 07:47:44 (9 months ago)	(mod_security) mod_security (id:210350) triggered by 123.139.110.253 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 123.139.110.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 10 03:47:38.389699 2025] [security2:error] [pid 21084:tid 21084] [client 123.139.110.253:1540] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.renju.net\|F\|4"] [data "close, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.renju.net"] [uri "/tournament/2512/game/105273"] [unique_id "aMEtGq3NfiRaxs2iU25O0AAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 2 of 2 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.206.182.205

🇺🇸 162.216.150.65

🇺🇸 162.216.149.173

🇺🇸 158.94.187.44

🇺🇸 147.185.132.16

🇺🇸 139.144.235.132

🇫🇷 91.196.152.212

🇫🇷 91.196.152.209

🇩🇪 45.135.194.113

🇸🇪 178.73.242.32

🇻🇳 171.231.196.32

🇰🇷 125.244.114.221

🇨🇳 112.66.13.135

🇮🇳 103.18.166.14

🇯🇵 47.245.54.87

🇳🇱 45.148.10.141

🇺🇸 43.166.240.231

🇫🇷 13.140.175.34

🇷🇴 2.57.121.112

🇺🇸 208.84.102.156