JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 23.106.56.52

23.106.56.52 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 0%: ?

ISP	Leaseweb UK Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS205544
Hostname(s)	at-host-uk.hosted-by.leaseweb.com
Domain Name	leaseweb.com
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	London, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 23.106.56.52

Whois 23.106.56.52

IP Abuse Reports for 23.106.56.52:

This IP address has been reported a total of 16 times from 16 distinct sources. 23.106.56.52 was first reported on April 27th 2021, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 GunsawianHosting	2026-03-12 17:08:57 (2 months ago)	Open Proxy	Open Proxy
🇮🇩 sockominfo	2025-12-13 03:07:10 (5 months ago)	[WAZUH] SUPPRESSED: IP 23.106.56.52 blocked - 8 times fired in 6 hour	Hacking Web App Attack
Anonymous	2025-09-09 16:02:31 (8 months ago)	Web attack	Bad Web Bot Web App Attack
Anonymous	2024-10-27 18:15:49 (1 year ago)	Malicious activity detected	Hacking Web App Attack
🇮🇳 TC Saini	2024-08-08 14:01:37 (1 year ago)	Indicators of compromise (IoCs) reported by the GOVT of India	Blog Spam Exploited Host IoT Targeted
🇦🇺 oncord	2024-07-09 12:51:25 (1 year ago)	Form spam	Web Spam
Anonymous	2024-02-09 09:17:00 (2 years ago)	HTTP 503 XSS Attempt	Hacking
🇺🇸 TPI-Abuse	2023-12-04 06:09:08 (2 years ago)	(mod_security) mod_security (id:214540) triggered by 23.106.56.52 (at-host-uk.hosted-by.leaseweb.com ... show more (mod_security) mod_security (id:214540) triggered by 23.106.56.52 (at-host-uk.hosted-by.leaseweb.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 04 01:09:03.310170 2023] [security2:error] [pid 6337] [client 23.106.56.52:8425] [client 23.106.56.52] ModSecurity: Access denied with code 403 (phase 4). Match of "rx \\\\ssrc=\\\\x22https:\\\\/\\\\/www\\\\.googletagmanager\\\\.com\\\\/ns\\\\.html\\\\?id=GTM\|\\\\ssrc=\\\\x22https:\\\\/\\\\/w\\\\.soundcloud\\\\.com\\\\/player\\\\/\\\\?url=" against "TX:0" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/19_Outgoing_FilterInFrame.conf"] [line "14"] [id "214540"] [rev "5"] [msg "COMODO WAF: Possibly malicious iframe tag in output\|\|nvision360.com\|F\|3"] [data "Matched Data: <iframe style='display:none found within TX:0: <iframe style='display:none"] [severity "ERROR"] [tag "CWAF"] [tag "FilterInFrame"] [hostname "nvision360.com"] [uri "/index.php"] [unique_id "ZW1s-kKyojD94OdJhFfXnwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Snowdome	2023-10-09 07:00:07 (2 years ago)	23.106.56.52 [GB:205544.0] with UserAgent: Mozilla/5.0 (Linux; Android 4.4.2; Nexus 4 Build/KOT49H) ... show more 23.106.56.52 [GB:205544.0] with UserAgent: Mozilla/5.0 (Linux; Android 4.4.2; Nexus 4 Build/KOT49H) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.114 Mobile Safari/537.36 targeting domain: snowplow.io, was challenged by WAF:FRA, DetectionCategory: XSS - Javascript Querystring show less	Web App Attack
🇳🇱 revoxhere	2023-08-20 06:35:46 (2 years ago)	Online app hacking.	Hacking Web App Attack
Anonymous	2023-06-18 01:22:24 (2 years ago)		Web Spam Email Spam Blog Spam Bad Web Bot Web App Attack
🇬🇧 CrystalMaker	2023-03-15 11:24:39 (3 years ago)	Vulnerability scan - GET /7D8B79A2-8974-4D7B-A76A-F4F29624C06BWGXRLE0pcv09HzKCO0k0sxVUVcGCPOF_y-B6UY ... show more Vulnerability scan - GET /7D8B79A2-8974-4D7B-A76A-F4F29624C06BWGXRLE0pcv09HzKCO0k0sxVUVcGCPOF_y-B6UYZtJvdJ23h7j9U4w7ZRkgckivxKXr-38euHUn1tRaO9Uy4vVQ/websocket?url=https%3A%2F%2Fwww.crystalmaker.com%2Fcrystaldiffract%2Findex.html&nocache=1678879479027; GET /7D8B79A2-8974-4D7B-A76A-F4F29624C06BWGXRLE0pcv09HzKCO0k0sxVUVcGCPOF_y-B6UYZtJvdJ23h7j9U4w7ZRkgckivxKXr-38euHUn1tRaO9Uy4vVQ/websocket?url=https%3A%2F%2Fwww.crystalmaker.com%2Fcrystaldiffract%2Findex.html&nocache=1678879495027; GET /7D8B79A2-8974-4D7B-A76A-F4F29624C06BWGXRLE0pcv09HzKCO0k0sxVUVcGCPOF_y-B6UYZtJvdJ23h7j9U4w7ZRkgckivxKXr-38euHUn1tRaO9Uy4vVQ/websocket?url=https%3A%2F%2Fwww.crystalmaker.com%2Fcrystaldiffract%2Findex.html&nocache=1678879511027 show less	Hacking
🇦🇷 ATD.ar	2023-01-14 17:13:12 (3 years ago)	IP del tipo hacking reportada en firehol_abusers_1d	Hacking
🇨🇦 nextoo.de	2022-04-24 23:34:41 (4 years ago)	Chat Spam	Web Spam
🇺🇸 digitama.co.id	2021-08-10 03:52:38 (4 years ago)	Bad Web Bot stopped by firewall	Bad Web Bot

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇨 193.30.14.163

🇰🇷 118.37.214.187

🇵🇭 103.104.17.102

🇮🇳 49.205.105.67

🇬🇧 35.203.210.181

🇺🇸 20.65.152.136

🇺🇸 2604:a940:300:5b6:0:29::

🇮🇳 2401:4900:1c0f:7f9e:8877:6d05:abed:f7e3

🇺🇸 216.25.89.114

🇺🇸 216.25.89.68

🇩🇪 213.209.159.56

🇧🇪 198.235.24.129

🇫🇷 185.177.72.22

🇩🇪 176.65.132.129

🇩🇪 128.140.33.245

🇲🇴 125.31.2.160

🇨🇳 112.102.222.9

🇳🇱 85.11.167.7

🇷🇴 80.94.92.182

🇸🇬 47.84.12.7