JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.91.72.193

103.91.72.193 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 80%: ?

80%

ISP	Decibel Networks Private Limited
Usage Type	Fixed Line ISP
ASN	AS136294
Hostname(s)	axntech-dynamic-193.72.91.103.axntechnologies.in
Domain Name	axntechnologies.in
Country	🇮🇳 India
City	Gharaunda, Haryana

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.91.72.193

Whois 103.91.72.193

IP Abuse Reports for 103.91.72.193:

This IP address has been reported a total of 26 times from 18 distinct sources. 103.91.72.193 was first reported on May 16th 2026, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ger-stg-sifi1	2026-06-18 10:19:41 (17 hours ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 cwytech	2026-06-18 10:17:51 (17 hours ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/wp-us-login-only-high.	Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-18 06:28:15 (20 hours ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇫🇷 bazter.pro	2026-06-18 04:56:39 (22 hours ago)	Fail2Ban: plesk-bot-aggressive - 15 failures	Port Scan Bad Web Bot Web App Attack
🇫🇮 bittiguru.fi	2026-06-17 11:08:09 (1 day ago)	103.91.72.193 - [17/Jun/2026:14:07:58 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Jetpack by Wor ... show more 103.91.72.193 - [17/Jun/2026:14:07:58 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.3)" "-" 103.91.72.193 - [17/Jun/2026:14:08:08 +0300] "POST /xmlrpc.php HTTP/1.1" 404 33171 "-" "WordPress.com; https://wordpress.com" "-" ... show less	Hacking Brute-Force Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-17 07:28:50 (1 day ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
Anonymous	2026-06-16 09:44:36 (2 days ago)	WordPress Brute Force	Brute-Force
🇩🇪 dbmwebdesign	2026-06-16 04:15:27 (2 days ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 integrantservices.com	2026-06-15 10:35:55 (3 days ago)	(wordpress) Failed wordpress login from 103.91.72.193 (IN/India/axntech-dynamic-193.72.91.103.axntec ... show more (wordpress) Failed wordpress login from 103.91.72.193 (IN/India/axntech-dynamic-193.72.91.103.axntechnologies.in) show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-15 06:10:57 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 103.91.72.193 (axntech-dynamic-193.72.91.103.ax ... show more (mod_security) mod_security (id:240335) triggered by 103.91.72.193 (axntech-dynamic-193.72.91.103.axntechnologies.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 02:10:50.729152 2026] [security2:error] [pid 9231:tid 9231] [client 103.91.72.193:6371] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.91.72.193 (+1 hits since last alert)\|cycontechnology.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "cycontechnology.com"] [uri "/xmlrpc.php"] [unique_id "ai-Xan25Bt-VXF9lM16u_gAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 integrantservices.com	2026-06-13 11:36:14 (5 days ago)	(wordpress) Failed wordpress login from 103.91.72.193 (IN/India/axntech-dynamic-193.72.91.103.axntec ... show more (wordpress) Failed wordpress login from 103.91.72.193 (IN/India/axntech-dynamic-193.72.91.103.axntechnologies.in) show less	Brute-Force
🇱🇻 garmtech.com	2026-06-13 05:19:34 (5 days ago)	IM360 WAF: Rate limit exceeded for XMLRPC DoS	Web App Attack
Anonymous	2026-05-28 06:41:49 (3 weeks ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇬🇧 PeravixGroup	2026-05-27 10:07:36 (3 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-05-27 09:58:44 (3 weeks ago)	Attac	Brute-Force

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇨🇴 181.50.255.52

🇺🇸 162.216.149.119

🇰🇷 158.180.79.132

🇱🇰 124.43.5.103

🇭🇰 123.58.213.128

🇧🇩 103.204.42.2

🇺🇸 76.132.238.43

🇳🇱 45.148.10.152

🇺🇸 199.127.60.187

🇬🇧 89.37.172.148

🇫🇷 87.230.27.200

🇧🇬 78.128.114.66

🇳🇱 45.148.10.120

🇺🇸 216.73.217.175

🇳🇱 176.65.139.88

🇺🇸 162.216.149.51

🇩🇪 155.117.127.5

🇮🇩 103.143.12.205

🇺🇸 66.132.172.99