JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.213.42.110

102.213.42.110 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 72%: ?

72%

ISP	FBB_BYO-GPON&ADSL FIREWALLS
Usage Type	Fixed Line ISP
ASN	AS37204
Domain Name	telone.co.zw
Country	🇿🇼 Zimbabwe
City	Bulawayo, Bulawayo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.213.42.110

Whois 102.213.42.110

IP Abuse Reports for 102.213.42.110:

This IP address has been reported a total of 40 times from 25 distinct sources. 102.213.42.110 was first reported on August 25th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-12 06:24:52 (2 weeks ago)	[server.tmg.gr] httpd-xmlrpc-post: sites=epemyjournal.com; logs=/var/log/httpd/domains/epemyjournal. ... show more [server.tmg.gr] httpd-xmlrpc-post: sites=epemyjournal.com; logs=/var/log/httpd/domains/epemyjournal.com.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-12 01:04:30 (2 weeks ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇧🇪 cmbplf	2026-06-11 22:12:36 (2 weeks ago)	4.525 requests from abuseipdb.com blacklisted IP (1mo1w3d)	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-11 19:18:28 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 102.213.42.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 102.213.42.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 15:18:17.299794 2026] [security2:error] [pid 14422:tid 14422] [client 102.213.42.110:35006] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.213.42.110 (+1 hits since last alert)\|avvmarchetticollini.it\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "avvmarchetticollini.it"] [uri "/xmlrpc.php"] [unique_id "aisJ-WGCc7HRHjwdYqDe5wAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-11 18:44:05 (2 weeks ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-11 14:08:48 (2 weeks ago)	Blocked by CSF 13 firewall - Rule: XMLRPC -	Web App Attack
🇩🇪 konseptit	2026-06-11 12:15:39 (2 weeks ago)	(wordpress) Failed wordpress login from 102.213.42.110 (ZW/Zimbabwe/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-11 11:15:21 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 102.213.42.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 102.213.42.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 07:15:16.051934 2026] [security2:error] [pid 4370:tid 4370] [client 102.213.42.110:12703] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.213.42.110 (+1 hits since last alert)\|futuresgrowhere.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "futuresgrowhere.com"] [uri "/xmlrpc.php"] [unique_id "aiqYxIblWW4fOD8AwXmW1wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-11 11:14:27 (2 weeks ago)	(wordpress) Failed wordpress login from 102.213.42.110 (ZW/Zimbabwe/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-11 05:28:02 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 102.213.42.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 102.213.42.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 01:27:54.931838 2026] [security2:error] [pid 5405:tid 5405] [client 102.213.42.110:12035] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.213.42.110 (+1 hits since last alert)\|esad.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "esad.com"] [uri "/xmlrpc.php"] [unique_id "aipHWqmefHCCL-EdPEZU6wAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dbmwebdesign	2026-06-11 04:55:10 (2 weeks ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
Anonymous	2026-06-11 01:39:17 (2 weeks ago)	Fail2ban filtered ...	Web App Attack
🇫🇷 dynamix	2026-06-11 01:08:43 (2 weeks ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇳🇱 debestelapp	2026-06-11 00:20:09 (2 weeks ago)		Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 23:39:14 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 102.213.42.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 102.213.42.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 19:39:06.705921 2026] [security2:error] [pid 30392:tid 30392] [client 102.213.42.110:38102] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.213.42.110 (+1 hits since last alert)\|guarinofurnituredesigns.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "guarinofurnituredesigns.com"] [uri "/xmlrpc.php"] [unique_id "ain1mut7j3Zl5II1m7XS1gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 194.113.235.89

🇷🇺 213.180.203.116

🇮🇩 202.58.79.112

🇺🇬 196.0.119.218

🇵🇱 172.253.1.154

🇮🇳 157.48.79.229

🇸🇬 139.59.231.23

🇰🇷 115.68.185.126

🇮🇩 103.65.237.40

🇮🇳 103.30.81.222

🇫🇷 91.231.89.6

🇧🇬 79.124.56.246

🇫🇷 51.83.71.110

🇧🇷 45.229.91.34

🇮🇹 185.197.8.130

🇺🇸 151.240.91.134

🇸🇪 122.8.45.108

🇸🇪 122.8.45.52

🇧🇩 103.231.162.244

🇵🇹 94.133.170.149