JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 24.152.58.122

24.152.58.122 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 0%: ?

ISP	UHF COMUNICACIONES SAS
Usage Type	Fixed Line ISP
ASN	AS267823
Hostname(s)	edgeISP-24-152-58-122.ateneatelecomunicaciones.xyz
Domain Name	uhfcomunicaciones.com
Country	🇨🇴 Colombia
City	Bucaramanga, Santander Department

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 24.152.58.122

Whois 24.152.58.122

IP Abuse Reports for 24.152.58.122:

This IP address has been reported a total of 14 times from 7 distinct sources. 24.152.58.122 was first reported on August 16th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Packets-Decreaser.NET	2024-09-03 15:27:31 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 octageeks.com	2024-09-01 04:08:40 (1 year ago)	Wordpress malicious attack:[octausername]	Web App Attack
🇺🇸 octageeks.com	2024-08-31 04:08:40 (1 year ago)	Wordpress malicious attack:[octausername]	Web App Attack
Anonymous	2024-08-29 15:14:31 (1 year ago)	apache-wordpress-login	Brute-Force Web App Attack
Anonymous	2024-08-29 15:08:33 (1 year ago)	Brute Force Login Attempts	Hacking Brute-Force
🇺🇸 octageeks.com	2024-08-29 04:08:41 (1 year ago)	Wordpress malicious attack:[octausername]	Web App Attack
🇺🇸 TPI-Abuse	2024-08-27 17:53:40 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 24.152.58.122 (58.ns122.vivercom.co): 1 in the ... show more (mod_security) mod_security (id:240335) triggered by 24.152.58.122 (58.ns122.vivercom.co): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 27 13:53:35.505133 2024] [security2:error] [pid 9347:tid 9347] [client 24.152.58.122:35530] [client 24.152.58.122] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 24.152.58.122 (+1 hits since last alert)\|www.wild-goose.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.wild-goose.net"] [uri "/xmlrpc.php"] [unique_id "Zs4Sn1n9XkqhHKwGjPhYKAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇹 Malta	2024-08-27 16:38:21 (1 year ago)	24.152.58.122 - - [27/Aug/2024:18:38:21 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; ... show more 24.152.58.122 - - [27/Aug/2024:18:38:21 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack
🇺🇸 octageeks.com	2024-08-27 04:08:51 (1 year ago)	Wordpress malicious attack:[octausername]	Web App Attack
🇺🇸 TPI-Abuse	2024-08-26 17:01:33 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 24.152.58.122 (58.ns122.vivercom.co): 1 in the ... show more (mod_security) mod_security (id:240335) triggered by 24.152.58.122 (58.ns122.vivercom.co): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 26 13:01:28.986595 2024] [security2:error] [pid 16814:tid 16814] [client 24.152.58.122:54773] [client 24.152.58.122] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 24.152.58.122 (+1 hits since last alert)\|www.viajesconmigo.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.viajesconmigo.com"] [uri "/xmlrpc.php"] [unique_id "Zsy06NjPgjoJh17szvt9pAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇹 Malta	2024-08-25 08:14:15 (1 year ago)	24.152.58.122 - - [25/Aug/2024:10:14:15 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; ... show more 24.152.58.122 - - [25/Aug/2024:10:14:15 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-08-24 23:02:58 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 24.152.58.122 (58.ns122.vivercom.co): 1 in the ... show more (mod_security) mod_security (id:240335) triggered by 24.152.58.122 (58.ns122.vivercom.co): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 24 19:02:54.883090 2024] [security2:error] [pid 15046:tid 15046] [client 24.152.58.122:57858] [client 24.152.58.122] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 141.98.102.179 (1+1 hits since last alert)\|www.puckerbackbikini.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.puckerbackbikini.com"] [uri "/xmlrpc.php"] [unique_id "ZspmnirRsiSoQlluf7whFgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 ITcloud	2024-08-23 15:58:43 (1 year ago)	2024/08/23 18:54:27 [error] 1091187#1091187: 8319412 limiting requests, excess: 10.740 by zone "for ... show more 2024/08/23 18:54:27 [error] 1091187#1091187: 8319412 limiting requests, excess: 10.740 by zone "forum.crmp.online", client: 24.152.58.122, server: forum.crmp.online, request: "GET / HTTP/2.0", host: "forum.crmp.online" 2024/08/23 18:54:27 [error] 1091187#1091187: *8319412 limiting requests, excess: 10.740 by zone "forum.crmp.online", client: 24.152.58.122, server: forum.crmp.online, request: "GET / HTTP/2.0", host: "forum.crmp.online" ... show less	DDoS Attack
🇩🇪 Packets-Decreaser.NET	2024-08-16 15:25:35 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 51.77.74.222

🇧🇷 45.205.1.246

🇩🇪 146.70.117.70

🇨🇳 123.160.221.152

🇮🇳 118.185.158.177

🇸🇬 103.189.234.96

🇩🇪 87.106.171.85

🇺🇸 18.189.74.1

🇺🇸 148.153.188.254

🇮🇳 122.185.146.166

🇩🇪 78.111.67.242

🇳🇱 45.148.10.240

🇳🇱 45.148.10.121

🇦🇪 5.193.77.83

🇷🇴 2.57.122.238

🇬🇧 185.216.145.177

🇨🇳 118.123.1.36

🇻🇳 103.228.36.70

🇩🇪 94.130.64.171

🇸🇪 82.209.148.60