JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.123.130.82

161.123.130.82 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 0%: ?

ISP	Wirels Connect (PTY) Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS203020
Domain Name	telafrica.net
Country	🇺🇸 United States of America
City	Romulus, Michigan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.123.130.82

Whois 161.123.130.82

IP Abuse Reports for 161.123.130.82:

This IP address has been reported a total of 8 times from 3 distinct sources. 161.123.130.82 was first reported on October 30th 2023, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-17 00:22:13 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 161.123.130.82 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 161.123.130.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 19:20:48.048362 2026] [security2:error] [pid 7524:tid 7524] [client 161.123.130.82:37653] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.nbcnewsradio.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.nbcnewsradio.com"] [uri "/data.sql"] [unique_id "aWrV4OnwGm98UAoQdqIN4QAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 20:53:50 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 161.123.130.82 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 161.123.130.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 15:53:47.184609 2025] [security2:error] [pid 22839:tid 22967] [client 161.123.130.82:52271] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kettlehill.net\|F\|2"] [data ".kettlehill.net.db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kettlehill.net"] [uri "/www.kettlehill.net.db"] [unique_id "aVLqW6hQT-NrkrxX7z32KgAAAEc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-04 01:32:19 (6 months ago)	(mod_security) mod_security (id:221260) triggered by 161.123.130.82 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:221260) triggered by 161.123.130.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 03 20:32:07.620036 2025] [security2:error] [pid 26699:tid 26699] [client 161.123.130.82:36063] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(?:\\\\'\\\\w+?=)?\\\\(\\\\)\\\\s{" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "77"] [id "221260"] [rev "3"] [msg "COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)\|\|cpcalendars.farmers123.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.farmers123.com"] [uri "/cgi-bin/stats"] [unique_id "aTDkl-DVG0QVCEEOOEDj8wAAAA8"], referer: () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-13 09:33:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 161.123.130.82 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 161.123.130.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 04:33:46.667811 2025] [security2:error] [pid 22736:tid 22736] [client 161.123.130.82:43219] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.nbcnewsradio.com"] [uri "/lib../.git/config"] [unique_id "aRWl-ldEXkkpFJVxXZjtXAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-10 18:40:04 (8 months ago)	\| SQL injection attempt.	Hacking SQL Injection Web App Attack
🇺🇸 ChamberofCommerce.com	2023-11-06 01:04:28 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-11-02 01:12:16 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-30 20:48:25 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 178.16.55.50

🇸🇬 101.47.156.21

🇺🇸 216.25.89.92

🇩🇪 194.187.176.220

🇨🇳 175.11.240.200

🇨🇳 123.145.9.129

🇨🇳 115.190.215.101

🇷🇺 31.173.247.254

🇫🇮 2a00:1450:4010:c0a::123

🇲🇽 189.194.140.170

🇮🇳 182.95.223.90

🇺🇸 162.217.162.15

🇪🇬 156.205.239.97

🇰🇪 102.209.236.14

🇳🇬 102.90.81.2

🇬🇧 35.203.210.40

🇰🇷 14.55.144.22

🇨🇳 223.167.206.218

🇺🇸 138.0.240.250

🇺🇸 12.119.218.166