JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.123.130.10

161.123.130.10 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 0%: ?

ISP	Wirels Connect (PTY) Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS203020
Domain Name	telafrica.net
Country	🇺🇸 United States of America
City	Romulus, Michigan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.123.130.10

Whois 161.123.130.10

IP Abuse Reports for 161.123.130.10:

This IP address has been reported a total of 12 times from 6 distinct sources. 161.123.130.10 was first reported on January 11th 2023, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-16 16:07:07 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 161.123.130.10 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 161.123.130.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 11:07:00.863300 2026] [security2:error] [pid 5212:tid 5212] [client 161.123.130.10:43551] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.nbcnewsradio.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.nbcnewsradio.com"] [uri "/\\\\windows/win.ini"] [unique_id "aWpiJFuiLBGsiNOtcQkDIAAAACo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 19:11:46 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 161.123.130.10 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 161.123.130.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 14:11:26.875490 2025] [security2:error] [pid 22842:tid 23000] [client 161.123.130.10:52615] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.net"] [uri "/.git/config"] [unique_id "aVLSXlKoonkfA7MmLZcctgAAAQc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-12 07:57:32 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 161.123.130.10 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 161.123.130.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 12 02:57:27.040329 2025] [security2:error] [pid 7462:tid 7462] [client 161.123.130.10:41865] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.nbcnewsradio.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.nbcnewsradio.com"] [uri "/errors/errors.log"] [unique_id "aRQ958ZoEkP1jY3Wne2N_AAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-06 01:28:28 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 161.123.130.10 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 161.123.130.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 05 21:28:22.990389 2025] [security2:error] [pid 30054:tid 30054] [client 161.123.130.10:38895] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.nbcnewsradio.com"] [uri "/example.htaccess"] [unique_id "aJKvtq9kon8N-41qQJXBIgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-27 01:04:27 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 161.123.130.10 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 161.123.130.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 21:04:24.193187 2025] [security2:error] [pid 404369:tid 404484] [client 161.123.130.10:60179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "staging.kettlehill.com"] [uri "/wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php"] [unique_id "aIV7GI1ApCwrT9-Kn8Wy4gAAAI8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 PulseServers	2025-05-29 21:27:42 (1 year ago)	Probing a honeypot for vulnerabilities. Ignored robots.txt - US10 Honeypot ...	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-05-29 21:13:58 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 161.123.130.10 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 161.123.130.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 17:13:54.867600 2025] [security2:error] [pid 3527532:tid 3527532] [client 161.123.130.10:53891] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whm.farmers123.com"] [uri "/.env.example"] [unique_id "aDjOEvBwSPSp2Cvs1ytMMAAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-01-24 18:40:14 (1 year ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 ChamberofCommerce.com	2023-11-06 03:59:21 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-30 23:52:15 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇦🇺 oncord	2023-09-01 01:19:58 (2 years ago)	Form spam	Web Spam
🇨🇳 ThreatBook.io	2023-01-11 22:14:45 (3 years ago)	2023-01-11 20:06:22 /wp-json/wp/v2/users 2023-01-11 20:06:24 /wp-json/wp/v2/users	Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 87.106.204.59

🇺🇸 65.49.20.88

🇭🇰 203.198.173.137

🇮🇹 195.231.120.206

🇩🇪 194.5.193.159

🇬🇧 193.163.125.150

🇮🇶 169.224.97.147

🇭🇰 154.92.40.108

🇧🇪 82.41.104.95

🇳🇱 82.40.1.192

🇩🇪 82.24.196.247

🇷🇴 82.24.168.71

🇨🇦 46.203.141.84

🇳🇱 45.148.10.151

🇺🇸 43.135.135.17

🇨🇳 222.83.158.89

🇳🇱 185.226.197.34

🇺🇸 181.214.165.29

🇺🇸 156.146.39.177

🇹🇼 104.199.176.250