JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 223.123.42.183

223.123.42.183 was found in our database!

This IP was reported 88 times. Confidence of Abuse is 47%: ?

47%

ISP	CMPak Limited
Usage Type	Fixed Line ISP
ASN	AS138423
Domain Name	zong.com.pk
Country	🇵🇰 Pakistan
City	Islamabad, Islamabad

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 223.123.42.183

Whois 223.123.42.183

IP Abuse Reports for 223.123.42.183:

This IP address has been reported a total of 88 times from 49 distinct sources. 223.123.42.183 was first reported on September 26th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 bigorre.org	2026-06-24 15:33:59 (4 days ago)	Unidentified crawling: not a self-announced bot in user-agent	Bad Web Bot
🇺🇸 integrantservices.com	2026-06-24 08:53:13 (4 days ago)	(wordpress) Failed wordpress login from 223.123.42.183 (PK/Pakistan/-)	Brute-Force
🇩🇪 dbmwebdesign	2026-06-24 05:55:21 (5 days ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 13:38:17 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 223.123.42.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 223.123.42.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 09:38:10.181732 2026] [security2:error] [pid 10854:tid 10854] [client 223.123.42.183:7982] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 223.123.42.183 (+1 hits since last alert)\|vzan.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "vzan.org"] [uri "/xmlrpc.php"] [unique_id "ajaXwgsl5dnw4EsJ8YPHjgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 abdubhai	2026-06-19 07:38:35 (1 week ago)	223.123.42.183 - - [19/Jun/2026: ...	Brute-Force
🇺🇸 TPI-Abuse	2026-06-13 05:54:10 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 223.123.42.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 223.123.42.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 01:54:05.849462 2026] [security2:error] [pid 24326:tid 24326] [client 223.123.42.183:30651] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 223.123.42.183 (+1 hits since last alert)\|beirutbazar.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "beirutbazar.com"] [uri "/xmlrpc.php"] [unique_id "aizwfZmrwBb98DvfC_EILgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 hermawan	2026-06-11 17:22:40 (2 weeks ago)	1781198551.911690 223.123.42.183 103.166.156.58 64240_2-4-8-1-3_1412_1 2026-06-12 00:22:31 WIB ...	Email Spam Hacking
🇩🇪 ger-stg-sifi1	2026-06-05 12:51:20 (3 weeks ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 09:12:20 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 223.123.42.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 223.123.42.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 05:12:12.790161 2026] [security2:error] [pid 5370:tid 5370] [client 223.123.42.183:16822] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 223.123.42.183 (+1 hits since last alert)\|loriarsenault.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "loriarsenault.com"] [uri "/xmlrpc.php"] [unique_id "aiFBbMgW1gVx2wj3L07C5wAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 05:42:43 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 223.123.42.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 223.123.42.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 01:42:35.100001 2026] [security2:error] [pid 27318:tid 27318] [client 223.123.42.183:31168] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 223.123.42.183 (+1 hits since last alert)\|karenbernsteinlaw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "karenbernsteinlaw.com"] [uri "/xmlrpc.php"] [unique_id "ah--y-DvbDSPZggYUQYaywAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-05-30 15:07:37 (4 weeks ago)	(xmlrpc) Apache: Failed xmlrpc access from 223.123.42.183 (PK/Pakistan/-): 10 in the last 3600 secs ... show more (xmlrpc) Apache: Failed xmlrpc access from 223.123.42.183 (PK/Pakistan/-): 10 in the last 3600 secs (0-201) show less	Hacking
Anonymous	2026-05-20 04:08:25 (1 month ago)	Attac	Brute-Force
🇺🇸 WellSpring	2026-05-20 03:27:47 (1 month ago)	xmlrpc exploit on teachercovenant.org/xmlrpc.php — WellSpr.ing/NetSentinel civic-AI security layer	Brute-Force Web App Attack
Anonymous	2026-04-30 10:42:20 (1 month ago)	(wordpress) Failed wordpress login from 223.123.42.183 (PK/Pakistan/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-04-30 10:13:31 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 223.123.42.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 223.123.42.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 06:13:24.924388 2026] [security2:error] [pid 17797:tid 17797] [client 223.123.42.183:9007] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 223.123.42.183 (+1 hits since last alert)\|pluralmatrix.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pluralmatrix.net"] [uri "/xmlrpc.php"] [unique_id "afMrRInFkAe0Ixu6H7DjGwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 88 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 188.240.59.59

🇨🇳 111.207.12.99

🇩🇪 69.5.169.153

🇺🇸 205.210.31.37

🇺🇸 195.184.76.220

🇺🇦 185.76.70.150

🇮🇩 163.7.11.155

🇸🇬 162.158.88.72

🇨🇳 121.40.47.114

🇩🇪 69.5.169.223

🇺🇸 66.132.195.95

🇮🇳 223.237.134.99

🇭🇰 199.45.154.143

🇿🇼 197.221.251.122

🇺🇸 174.35.25.181

🇩🇪 167.94.146.51

🇫🇷 167.86.80.37

🇩🇪 165.245.253.202

🇩🇪 165.245.215.66

🇮🇳 103.86.180.10