JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 115.244.196.90

115.244.196.90 was found in our database!

This IP was reported 57 times. Confidence of Abuse is 0%: ?

ISP	Reliance Jio Infocomm Limited
Usage Type	Fixed Line ISP
ASN	AS55836
Domain Name	jio.com
Country	🇮🇳 India
City	Jalgaon, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 115.244.196.90

Whois 115.244.196.90

IP Abuse Reports for 115.244.196.90:

This IP address has been reported a total of 57 times from 22 distinct sources. 115.244.196.90 was first reported on June 26th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Packets-Decreaser.NET	2024-08-17 22:05:51 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇲🇹 Malta	2024-08-12 00:34:26 (1 year ago)	115.244.196.90 - - [12/Aug/2024:02:34:25 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; ... show more 115.244.196.90 - - [12/Aug/2024:02:34:25 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack
🇺🇸 RLDD	2024-07-12 03:52:42 (1 year ago)	WP login attempts -dyn	Brute-Force
🇺🇸 Richard Stover	2024-07-11 03:25:04 (1 year ago)	User tried to login as "admin."	Web App Attack
Anonymous	2024-07-07 17:43:08 (1 year ago)	Excessive HTTP/HTTPS connections.	Bad Web Bot
🇺🇸 TPI-Abuse	2024-07-05 11:48:28 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 05 07:48:21.161965 2024] [security2:error] [pid 7224] [client 115.244.196.90:60317] [client 115.244.196.90] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 115.244.196.90 (+1 hits since last alert)\|www.thingstodonude.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.thingstodonude.com"] [uri "/xmlrpc.php"] [unique_id "ZofdhSDDELlFWVy3iiqlAwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Kenshin869	2024-07-05 00:37:55 (1 year ago)	Wordpress unauthorized access attempt	Brute-Force
🇺🇸 TPI-Abuse	2024-07-04 22:28:01 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 18:27:55.153014 2024] [security2:error] [pid 2912] [client 115.244.196.90:50745] [client 115.244.196.90] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 115.244.196.90 (+1 hits since last alert)\|goseethenurse.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "goseethenurse.com"] [uri "/xmlrpc.php"] [unique_id "Zoch6xus9JBdTuQsso-4TwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 dtorrer	2024-07-04 16:17:08 (1 year ago)	Brute-force general attack.	Brute-Force
🇺🇸 TPI-Abuse	2024-07-04 09:10:46 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 05:10:41.217306 2024] [security2:error] [pid 25113] [client 115.244.196.90:44652] [client 115.244.196.90] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 115.244.196.90 (+1 hits since last alert)\|www.paulsingdahlsen.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.paulsingdahlsen.com"] [uri "/xmlrpc.php"] [unique_id "ZoZnER41iXgQZ41ezQg8jQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-07-04 07:51:27 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 03:51:22.836246 2024] [security2:error] [pid 20690] [client 115.244.196.90:36226] [client 115.244.196.90] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 115.244.196.90 (+1 hits since last alert)\|braintechsoftwaresolutions.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "braintechsoftwaresolutions.com"] [uri "/xmlrpc.php"] [unique_id "ZoZUeuye4mXse3mdgxhk1gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-07-04 05:58:26 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 01:58:19.970107 2024] [security2:error] [pid 30432] [client 115.244.196.90:57605] [client 115.244.196.90] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 115.244.196.90 (+1 hits since last alert)\|www.avvmarchetticollini.it\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.avvmarchetticollini.it"] [uri "/xmlrpc.php"] [unique_id "ZoY5-_krPe6cFpolUWSk_AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 cloudbuster	2024-07-04 05:12:45 (1 year ago)	Detected: wordpress bruteforce / scan	Brute-Force
🇺🇸 TPI-Abuse	2024-07-04 04:54:29 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 00:54:20.917415 2024] [security2:error] [pid 25041] [client 115.244.196.90:56117] [client 115.244.196.90] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 115.244.196.90 (+1 hits since last alert)\|amp712.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "amp712.com"] [uri "/xmlrpc.php"] [unique_id "ZoYq_OL0cycdPPfAs2KvnAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-07-03 22:38:14 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 115.244.196.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 03 18:38:05.871459 2024] [security2:error] [pid 20669] [client 115.244.196.90:57290] [client 115.244.196.90] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 115.244.196.90 (+1 hits since last alert)\|www.daisydoesoap.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.daisydoesoap.com"] [uri "/xmlrpc.php"] [unique_id "ZoXSzQ3C2uQ6JgLXkScmuAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 57 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a880:400:d1:0:4:8c0c:3001

🇰🇷 211.178.247.182

🇺🇸 198.74.58.148

🇰🇿 185.103.168.69

🇺🇸 172.68.12.154

🇲🇾 47.254.239.26

🇺🇸 47.85.8.171

🇳🇱 45.142.193.169

🇨🇳 36.189.207.209

🇧🇷 35.199.118.24

🇧🇪 34.38.48.129

🇮🇳 34.14.165.18

🇺🇸 8.228.102.15

🇫🇷 173.199.70.101

🇺🇸 168.158.233.66

🇳🇱 45.148.10.147

🇺🇸 35.237.195.3

🇧🇪 35.195.168.156

🇯🇵 34.180.107.182

🇪🇸 34.175.78.123