JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.253.224.10

124.253.224.10 was found in our database!

This IP was reported 45 times. Confidence of Abuse is 100%: ?

100%

ISP	Chandigarh
Usage Type	Fixed Line ISP
ASN	AS17917
Domain Name	infotelconnect.com
Country	🇮🇳 India
City	Jalandhar, Punjab

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.253.224.10

Whois 124.253.224.10

IP Abuse Reports for 124.253.224.10:

This IP address has been reported a total of 45 times from 36 distinct sources. 124.253.224.10 was first reported on October 31st 2025, and the most recent report was 56 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-27 14:46:08 (56 minutes ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-06-27 05:04:46 (10 hours ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇲🇽 octageeks.com	2026-06-27 04:07:32 (11 hours ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇫🇷 SpaceHost-Server	2026-06-26 22:26:31 (17 hours ago)		Brute-Force Web App Attack
🇫🇷 tecnicorioja	2026-06-26 22:00:31 (17 hours ago)	wp-login attack [26/Jun/2026:07:26:40	Brute-Force Web App Attack
Anonymous	2026-06-26 10:30:06 (1 day ago)	\| CMS scanner: 3 domains targeted (CMS (WordPress or Joomla) login attempt.)	Web App Attack Hacking SQL Injection
🇨🇦 polycoda	2026-06-26 10:19:45 (1 day ago)	📄 Probes for wp-login.php and other inexistent URLs	Hacking Web App Attack
🇩🇪 Hazzard	2026-06-26 09:58:25 (1 day ago)	(wordpress) Failed wordpress login from 124.253.224.10 (IN/India/Punjab/Jalandhar/-/[redacted]): (C ... show more (wordpress) Failed wordpress login from 124.253.224.10 (IN/India/Punjab/Jalandhar/-/[redacted]): (CF_ENABLE) show less	Brute-Force
🇫🇷 tilellit.pro	2026-06-26 09:48:58 (1 day ago)	Fail2Ban banned 124.253.224.10 for security violations in jail wp-armour. Log: 2026/06/26 09:48:58 [ ... show more Fail2Ban banned 124.253.224.10 for security violations in jail wp-armour. Log: 2026/06/26 09:48:58 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 124.253.224.10 \| Target: wplogin" , client: 124.253.224.10, server: [REDACTED], request: "POST /wp-login.php HTTP/2.0", upstream: [REDACTED], host: [REDACTED], referrer: "https://espsformacion.com/wp-login.php" ... show less	Web Spam
🇺🇸 Jason Howell	2026-06-26 09:33:56 (1 day ago)	124.253.224.10 - - [26/Jun/2026:03:56:57 -0500] "GET /wp-login.php HTTP/1.1" 200 5494 "-" "Mozilla/5 ... show more 124.253.224.10 - - [26/Jun/2026:03:56:57 -0500] "GET /wp-login.php HTTP/1.1" 200 5494 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 124.253.224.10 - - [26/Jun/2026:03:56:59 -0500] "GET /wp-login.php HTTP/1.1" 200 5494 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 124.253.224.10 - - [26/Jun/2026:03:56:59 -0500] "POST /wp-login.php HTTP/1.1" 200 1904 "https://www.11thstreetprecinct.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 124.253.224.10 - - [26/Jun/2026:04:33:53 -0500] "GET /wp-login.php HTTP/1.1" 200 5494 "-" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 124.253.224.10 - - [26/Jun/2026:04:33:55 -0500] "POST /wp-login.php HTTP/1.1" 200 1910 "https://11thstreetprecinct.com/wp-login.php" "Mozilla/5.0 (X1 ... show less	Web App Attack
🇫🇮 YF	2026-06-26 09:00:26 (1 day ago)	wp-login.php Brute force	Brute-Force Web App Attack
🇪🇸 masterguru	2026-06-26 08:54:00 (1 day ago)	(wplogin) Failed WordPress login from 124.253.224.10 (IN/India/-): 5 in the last 3600 secs (0-122)	Hacking
Anonymous	2026-06-26 08:19:13 (1 day ago)	[Fri Jun 26 08:34:26.981552 2026] [authz_core:error] [pid 1486:tid 1619] [client 124.253.224.10:3855 ... show more [Fri Jun 26 08:34:26.981552 2026] [authz_core:error] [pid 1486:tid 1619] [client 124.253.224.10:38556] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php [Fri Jun 26 08:34:27.747786 2026] [authz_core:error] [pid 1486:tid 1597] [client 124.253.224.10:38556] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php, referer: https://cimt-precision.de/wp-login.php [Fri Jun 26 10:19:12.233777 2026] [authz_core:error] [pid 1486:tid 1597] [client 124.253.224.10:19962] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php [Fri Jun 26 10:19:12.967958 2026] [authz_core:error] [pid 1486:tid 1622] [client 124.253.224.10:19962] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php, referer: https://cimt-precision.de/wp-login.php ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 08:09:37 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 124.253.224.10 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 124.253.224.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 04:09:30.930233 2026] [security2:error] [pid 8132:tid 8132] [client 124.253.224.10:14822] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|jdeloa.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jdeloa.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aj4zuvzN4tPm4AFVYS9AmwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-26 07:47:06 (1 day ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 124.253.224.10 (IN/India/-): 1 in the last 36 ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 124.253.224.10 (IN/India/-): 1 in the last 3600 secs (0-196) show less	Hacking

Showing 1 to 15 of 45 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.218

🇮🇳 125.16.27.190

🇷🇴 80.94.92.55

🇺🇸 74.87.117.150

🇳🇱 45.148.10.121

🇺🇸 44.94.199.39

🇺🇸 44.66.149.35

🇺🇸 3.101.22.243

🇨🇳 119.45.119.171

🇨🇳 115.190.165.93

🇪🇸 90.162.116.66

🇩🇪 85.215.122.59

🇩🇪 51.75.64.35

🇧🇷 179.95.205.181

🇺🇸 150.107.36.236

🇺🇸 147.185.132.166

🇳🇱 91.92.40.237

🇮🇳 49.206.201.253

🇨🇳 218.0.56.78

🇺🇸 216.218.206.113