JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 23.229.110.124

23.229.110.124 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 0%: ?

ISP	Server Mania Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS55286
Domain Name	servermania.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 23.229.110.124

Whois 23.229.110.124

IP Abuse Reports for 23.229.110.124:

This IP address has been reported a total of 12 times from 4 distinct sources. 23.229.110.124 was first reported on October 30th 2023, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-18 01:57:04 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 23.229.110.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 23.229.110.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 17 20:57:00.648351 2026] [security2:error] [pid 30070:tid 30070] [client 23.229.110.124:59091] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.nbcnewsradio.com"] [uri "/sftp-config.json"] [unique_id "aWw97BAikTdCwZLg7S-HFQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 19:05:33 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 23.229.110.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 23.229.110.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 14:05:18.217220 2025] [security2:error] [pid 22839:tid 22980] [client 23.229.110.124:51731] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kettlehill.com\|F\|2"] [data ".example.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kettlehill.com"] [uri "/.example.com"] [unique_id "aVLQ7qhQT-NrkrxX7z3JQQAAAFQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-13 09:04:20 (6 months ago)	(mod_security) mod_security (id:212750) triggered by 23.229.110.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:212750) triggered by 23.229.110.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 04:04:09.068439 2025] [security2:error] [pid 10510:tid 10510] [client 23.229.110.124:59931] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\bon(?:abort\|blur\|change\|click\|dblclick\|dragdrop\|error\|focus\|keydown\|keypress\|keyup\|load\|mouse(?:down\|move\|out\|over\|up)\|move\|readystatechange\|reset\|resize\|select\|submit\|unload)\\\\b[^a-zA-Z0-9_]{0,}?=" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "69"] [id "212750"] [rev "3"] [msg "COMODO WAF: XSS Attack Detected\|\|ftp.nbcnewsradio.com\|F\|2"] [data "Matched Data: onload= found within REQUEST_URI: /?key='>\\x22<svg/onload=confirm('xss')>"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "ftp.nbcnewsradio.com"] [uri "/"] [unique_id "aRWfCYRGErYpaP-u1U_k3AAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-05-21 23:16:53 (2 years ago)	(mod_security) mod_security (id:212620) triggered by 23.229.110.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:212620) triggered by 23.229.110.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 21 19:16:42.591643 2024] [security2:error] [pid 16874:tid 47525666555648] [client 23.229.110.124:38695] [client 23.229.110.124] ModSecurity: Access denied with code 403 (phase 2). Pattern match "<script\\\\b" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "65"] [id "212620"] [rev "4"] [msg "COMODO WAF: Cross-site Scripting (XSS) Attack\|\|kettlehill.net\|F\|2"] [data "Matched Data: <script found within REQUEST_URI: /natemail.php?recipient=</script><script>alert(document.domain)</script>"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "kettlehill.net"] [uri "/NateMail.php"] [unique_id "Zk0rWjUlwAU9Ny4dLf_fkwAAARA"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2024-05-08 07:00:43 (2 years ago)	Unauthorized login attempts []	Brute-Force
🇪🇸 10dencehispahard SL	2024-05-08 06:45:44 (2 years ago)	Web Attack	DDoS Attack Brute-Force Web App Attack
Anonymous	2024-03-27 08:45:06 (2 years ago)	\| XSS (Cross Site Scripting) attempt.	Hacking SQL Injection Web App Attack
🇪🇸 10dencehispahard SL	2024-03-27 07:00:25 (2 years ago)	Unauthorized login attempts [ BI-16635]	Brute-Force
🇪🇸 10dencehispahard SL	2024-03-27 06:44:00 (2 years ago)	WP scan	Web App Attack
🇺🇸 ChamberofCommerce.com	2023-11-06 06:11:33 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-11-02 03:12:31 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:227 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-30 22:13:32 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 202.46.62.101

🇳🇱 176.65.139.155

🇯🇵 118.194.228.101

🇷🇴 80.94.92.166

🇧🇷 45.233.218.160

🇧🇪 45.83.20.230

🇨🇴 45.65.232.122

🇧🇷 206.42.8.243

🇺🇸 173.255.223.62

🇺🇸 161.35.15.98

🇸🇾 78.155.65.196

🇫🇷 51.178.116.142

🇳🇱 45.148.10.183

🇷🇴 2.57.121.112

🇮🇹 217.26.179.110

🇵🇱 194.180.48.31

🇳🇱 185.102.218.105

🇮🇶 185.24.61.4

🇰🇷 125.176.202.122

🇸🇬 101.47.158.56