JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 207.244.124.70

207.244.124.70 was found in our database!

This IP was reported 45 times. Confidence of Abuse is 0%: ?

ISP	Leaseweb USA, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS30633
Domain Name	leaseweb.com
Country	🇺🇸 United States of America
City	Washington, District of Columbia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 207.244.124.70

Whois 207.244.124.70

IP Abuse Reports for 207.244.124.70:

This IP address has been reported a total of 45 times from 31 distinct sources. 207.244.124.70 was first reported on April 11th 2021, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2024-10-28 13:25:44 (1 year ago)		Bad Web Bot
Anonymous	2024-10-24 02:16:55 (1 year ago)	Backdrop CMS module - forbidden user agent	Bad Web Bot Web App Attack
🇹🇷 selahattinalan	2024-10-24 00:12:48 (1 year ago)	207.244.124.70 - - [24/Oct/2024:03:12:47 +0300] "GET / HTTP/1.1" 302 4208 "-" "python-requests/2.32. ... show more 207.244.124.70 - - [24/Oct/2024:03:12:47 +0300] "GET / HTTP/1.1" 302 4208 "-" "python-requests/2.32.3" show less	Brute-Force
🇳🇱 Linuxmalwarehuntingnl	2024-07-03 08:53:33 (1 year ago)	Unauthorized connection attempt	Brute-Force
🇩🇪 ps-center	2024-01-18 23:27:19 (2 years ago)	SS5: Web Attack GET /site/wp-includes/wlwmanifest.xml GET /cms/wp-includes/wlwmanifest.xml GET /sito ... show more SS5: Web Attack GET /site/wp-includes/wlwmanifest.xml GET /cms/wp-includes/wlwmanifest.xml GET /sito/wp-includes/wlwmanifest.xml show less	Web Spam Hacking Bad Web Bot Web App Attack
🇬🇧 Apache	2024-01-18 22:54:14 (2 years ago)	(mod_security) mod_security (id:210410) triggered by 207.244.124.70 (US/United States/-): 5 in the l ... show more (mod_security) mod_security (id:210410) triggered by 207.244.124.70 (US/United States/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-01-12 20:35:07 (2 years ago)	(mod_security) mod_security (id:225170) triggered by 207.244.124.70 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 207.244.124.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 12 15:34:57.089225 2024] [security2:error] [pid 4393] [client 207.244.124.70:9463] [client 207.244.124.70] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.davidharrisgriffith.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.davidharrisgriffith.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZaGicSkix5kiGAtwmR2IFwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-01-08 21:40:04 (2 years ago)	(mod_security) mod_security (id:240335) triggered by 207.244.124.70 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 207.244.124.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 08 16:39:57.228773 2024] [security2:error] [pid 565] [client 207.244.124.70:7856] [client 207.244.124.70] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 207.244.124.70 (+1 hits since last alert)\|www.momfoo.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.momfoo.com"] [uri "/xmlrpc.php"] [unique_id "ZZxrrZV6G3BLve7poz9J7AAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-01-08 19:12:09 (2 years ago)	(mod_security) mod_security (id:225170) triggered by 207.244.124.70 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 207.244.124.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 08 14:12:06.271047 2024] [security2:error] [pid 11437] [client 207.244.124.70:13932] [client 207.244.124.70] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mountainrentalhome.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mountainrentalhome.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZZxJBv8g-WUeHTaDDoGsZwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-01-06 21:40:32 (2 years ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1, GET /?author=1 HTTP/1.1, GET /wp- ... show more Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1, GET /?author=1 HTTP/1.1, GET /wp-json/wp/v2/users/ HTTP/1.1, GET /wp-json/oembed/1.0/embed?url=http://meetengreet-leiden.nl , GET / HTTP/1.1 show less	Hacking Web App Attack
🇺🇸 Dolphi	2024-01-06 20:40:02 (2 years ago)	POST //xmlrpc.php	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-01-06 19:44:17 (2 years ago)	(mod_security) mod_security (id:225170) triggered by 207.244.124.70 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 207.244.124.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 06 14:44:11.806009 2024] [security2:error] [pid 12237] [client 207.244.124.70:5698] [client 207.244.124.70] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|lanegraves.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lanegraves.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZZmti0og3_-DDvqIlnCsfAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2023-12-07 09:15:27 (2 years ago)	XMLRPC Hack Attempts	Hacking Brute-Force
🇨🇭 Inaxas AG	2023-04-23 00:25:29 (3 years ago)	Inaxas Security for Asterisk banned IP after port scan/brute force register on Port 5060. Ilegitim ... show more Inaxas Security for Asterisk banned IP after port scan/brute force register on Port 5060. Ilegitimate register attempt: 2 times between: 11/04/2023 - 13:39 and 11/04/2023 - 13:46. Unauthorized dial attempt: 1 times between: 11/04/2023 - 13:41 and 11/04/2023 - 13:41. show less	Fraud VoIP Port Scan Brute-Force
🇨🇭 Inaxas AG	2023-04-20 00:36:19 (3 years ago)	Inaxas Security for Asterisk banned IP after port scan/brute force register on Port 5060. Ilegitim ... show more Inaxas Security for Asterisk banned IP after port scan/brute force register on Port 5060. Ilegitimate register attempt: 2 times between: 11/04/2023 - 13:39 and 11/04/2023 - 13:46. Unauthorized dial attempt: 1 times between: 11/04/2023 - 13:41 and 11/04/2023 - 13:41. show less	Fraud VoIP Port Scan Brute-Force

Showing 1 to 15 of 45 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.255

🇮🇩 180.252.161.29

🇮🇳 106.219.197.5

🇫🇷 91.231.89.141

🇺🇸 91.230.168.90

🇺🇸 20.84.145.84

🇩🇪 18.196.29.117

🇨🇳 223.240.120.14

🇺🇸 198.20.67.198

🇨🇳 180.117.62.137

🇫🇷 176.151.135.26

🇺🇸 173.198.33.50

🇺🇸 147.185.132.30

🇨🇳 123.245.84.148

🇮🇳 115.241.1.85

🇵🇭 112.207.210.51

🇨🇭 107.189.4.209

🇺🇸 91.230.168.94

🇺🇸 52.180.144.185

🇬🇧 35.203.210.134