JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.109.45.40

124.109.45.40 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 42%: ?

42%

ISP	Nayatel (Pvt) Ltd
Usage Type	Fixed Line ISP
ASN	AS23674
Hostname(s)	mbl-109-45-40.dsl.net.pk
Domain Name	nayatel.com
Country	🇵🇰 Pakistan
City	Multan, Punjab

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.109.45.40

Whois 124.109.45.40

IP Abuse Reports for 124.109.45.40:

This IP address has been reported a total of 9 times from 6 distinct sources. 124.109.45.40 was first reported on June 25th 2026, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 bigwavedave	2026-06-26 18:32:44 (13 hours ago)	Wordpress Attack	Web App Attack
🇩🇪 LRob.fr	2026-06-26 14:15:24 (17 hours ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
Anonymous	2026-06-26 14:03:13 (18 hours ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-06-26 12:30:57 (19 hours ago)	(mod_security) mod_security (id:240335) triggered by 124.109.45.40 (mbl-109-45-40.dsl.net.pk): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 124.109.45.40 (mbl-109-45-40.dsl.net.pk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 08:30:52.434390 2026] [security2:error] [pid 9715:tid 9715] [client 124.109.45.40:51200] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 124.109.45.40 (+1 hits since last alert)\|angelaknightmusic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "angelaknightmusic.com"] [uri "/xmlrpc.php"] [unique_id "aj5w_FBnmj0br3pro4fSaAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-06-26 10:14:43 (21 hours ago)	(xmlrpc) Failed xmlrpc access from 124.109.45.40 (PK/Pakistan/mbl-109-45-40.dsl.net.pk): 5 in the la ... show more (xmlrpc) Failed xmlrpc access from 124.109.45.40 (PK/Pakistan/mbl-109-45-40.dsl.net.pk): 5 in the last 3600 secs (0-122) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-26 09:41:18 (22 hours ago)	(mod_security) mod_security (id:240335) triggered by 124.109.45.40 (mbl-109-45-40.dsl.net.pk): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 124.109.45.40 (mbl-109-45-40.dsl.net.pk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 05:41:10.956213 2026] [security2:error] [pid 14441:tid 14441] [client 124.109.45.40:63636] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 124.109.45.40 (+1 hits since last alert)\|calvaryadminservices.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "calvaryadminservices.com"] [uri "/xmlrpc.php"] [unique_id "aj5JNsG6uYhCHx7aZTiu0AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-26 07:56:48 (1 day ago)	124.109.45.40 - - [26/Jun/2026:09:56:24 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by W ... show more 124.109.45.40 - - [26/Jun/2026:09:56:24 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)" 124.109.45.40 - - [26/Jun/2026:09:56:28 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)" 124.109.45.40 - - [26/Jun/2026:09:56:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com" 124.109.45.40 - - [26/Jun/2026:09:56:38 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com" 124.109.45.40 - - [26/Jun/2026:09:56:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 10:27:33 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 124.109.45.40 (mbl-109-45-40.dsl.net.pk): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 124.109.45.40 (mbl-109-45-40.dsl.net.pk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 06:27:27.744332 2026] [security2:error] [pid 27922:tid 27922] [client 124.109.45.40:55622] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 124.109.45.40 (+1 hits since last alert)\|abcollie.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "abcollie.com"] [uri "/xmlrpc.php"] [unique_id "aj0Cj9XlVVRMd2kq18P9OgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-25 10:24:40 (1 day ago)	Attac	Brute-Force

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.89.138.40

🇺🇸 173.255.198.110

🇨🇳 222.89.169.98

🇸🇬 173.44.33.119

🇧🇬 89.106.110.215

🇺🇸 65.254.109.27

🇩🇪 52.59.254.185

🇳🇱 45.198.224.241

🇮🇳 15.206.183.70

🇰🇷 222.120.176.6

🇸🇮 194.152.16.145

🇺🇸 185.147.157.11

🇺🇸 162.159.106.126

🇩🇰 158.173.46.149

🇨🇳 111.9.62.51

🇺🇸 104.152.52.206

🇧🇩 103.95.98.49

🇵🇱 74.248.233.57

🇹🇷 62.244.204.216

🇺🇸 45.156.129.54