JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 58.121.106.254

58.121.106.254 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 0%: ?

ISP	SK Broadband Co Ltd
Usage Type	Fixed Line ISP
ASN	AS9318
Domain Name	skbroadband.com
Country	🇰🇷 Korea (the Republic of)
City	Seoul, Seoul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 58.121.106.254

Whois 58.121.106.254

IP Abuse Reports for 58.121.106.254:

This IP address has been reported a total of 3 times from 2 distinct sources. 58.121.106.254 was first reported on September 21st 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2024-09-22 00:45:45 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-09-21 19:44:54 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 58.121.106.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 58.121.106.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 21 15:44:49.215784 2024] [security2:error] [pid 11044:tid 11044] [client 58.121.106.254:61413] [client 58.121.106.254] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 58.121.106.254 (+1 hits since last alert)\|www.doreenkimura.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.doreenkimura.com"] [uri "/xmlrpc.php"] [unique_id "Zu8iMZDCqoskGenHU3vMjgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-09-21 16:43:22 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 58.121.106.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 58.121.106.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 21 12:43:15.232470 2024] [security2:error] [pid 24086:tid 24086] [client 58.121.106.254:59542] [client 58.121.106.254] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 58.121.106.254 (+1 hits since last alert)\|bluemarineboats.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "bluemarineboats.com"] [uri "/xmlrpc.php"] [unique_id "Zu73o-OCyX9UArKYnlTw5wAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 123.58.210.86

🇵🇭 119.93.171.138

🇨🇳 112.97.201.131

🇺🇸 107.167.34.125

🇮🇳 106.222.231.0

🇮🇳 103.212.145.73

🇬🇧 81.19.219.209

🇧🇷 191.241.76.128

🇨🇴 181.56.210.115

🇳🇬 152.32.141.9

🇭🇰 114.111.54.189

🇺🇸 107.172.50.134

🇮🇳 103.39.245.69

🇺🇸 97.210.91.56

🇷🇴 92.118.39.62

🇳🇱 45.148.10.157

🇬🇧 45.137.126.106

🇨🇳 43.139.103.63

🇦🇺 35.189.21.197

🇮🇳 34.100.227.2