JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 117.134.193.209

117.134.193.209 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 87%: ?

87%

ISP	CMPak Limited
Usage Type	Mobile ISP
ASN	AS138423
Domain Name	zong.com.pk
Country	🇵🇰 Pakistan
City	Islamabad, Islamabad

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 117.134.193.209

Whois 117.134.193.209

IP Abuse Reports for 117.134.193.209:

This IP address has been reported a total of 43 times from 17 distinct sources. 117.134.193.209 was first reported on May 22nd 2026, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-21 13:20:35 (7 hours ago)	(mod_security) mod_security (id:240335) triggered by 117.134.193.209 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 117.134.193.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 09:20:31.362163 2026] [security2:error] [pid 907:tid 907] [client 117.134.193.209:59034] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.134.193.209 (+1 hits since last alert)\|wsffjatc.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "wsffjatc.org"] [uri "/xmlrpc.php"] [unique_id "ajflHwGArFJkv0qAoUNWXQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 10:46:48 (9 hours ago)	(mod_security) mod_security (id:240335) triggered by 117.134.193.209 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 117.134.193.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 06:46:43.328381 2026] [security2:error] [pid 27808:tid 27808] [client 117.134.193.209:61804] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.134.193.209 (+1 hits since last alert)\|churchbehindthewalls.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "churchbehindthewalls.com"] [uri "/xmlrpc.php"] [unique_id "ajfBE-XnFCI9Ir8xgzadCQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 08:49:23 (11 hours ago)	(mod_security) mod_security (id:240335) triggered by 117.134.193.209 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 117.134.193.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 04:49:18.431621 2026] [security2:error] [pid 30259:tid 30259] [client 117.134.193.209:49902] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.134.193.209 (+1 hits since last alert)\|automatebi.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "automatebi.com"] [uri "/xmlrpc.php"] [unique_id "ajeljpD_yj12NVZSjZlh-QAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-21 03:17:02 (17 hours ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 13:43:51 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 117.134.193.209 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 117.134.193.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 09:43:47.759145 2026] [security2:error] [pid 24759:tid 24759] [client 117.134.193.209:64629] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.134.193.209 (+1 hits since last alert)\|yuichiro.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "yuichiro.us"] [uri "/xmlrpc.php"] [unique_id "ajaZE11zTNNUn37wODNykgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 Rizzy	2026-06-20 09:04:45 (1 day ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 integrantservices.com	2026-06-20 08:34:02 (1 day ago)	(wordpress) Failed wordpress login from 117.134.193.209 (PK/Pakistan/-)	Brute-Force
Anonymous	2026-06-19 05:53:17 (2 days ago)	[redacted] 117.134.193.209 - - [19/Jun/2026:07:52:23 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" ... show more [redacted] 117.134.193.209 - - [19/Jun/2026:07:52:23 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack by WordPress.com" [redacted] 117.134.193.209 - - [19/Jun/2026:07:52:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack by WordPress.com" [redacted] 117.134.193.209 - - [19/Jun/2026:07:52:34 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack/13.0; WordPress/6.2; http://site89769975.com" [redacted] 117.134.193.209 - - [19/Jun/2026:07:52:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack by WordPress.com" [redacted] 117.134.193.209 - - [19/Jun/2026:07:52:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack by WordPress.com" [redacted] 117.134.193.209 - - [19/Jun/2026:07:52:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack by WordPress.com" [redacted] 117.134.193.209 - - [19/Jun/2026:07:52:55 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" [redacted] 117.134.193.209 - - [19/Jun/2026:07:53:05 + ... show less	Hacking Web App Attack
Anonymous	2026-06-19 04:22:32 (2 days ago)		Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 03:22:03 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 117.134.193.209 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 117.134.193.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 23:21:58.591120 2026] [security2:error] [pid 26961:tid 26961] [client 117.134.193.209:54826] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.134.193.209 (+1 hits since last alert)\|wokedreamer.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "wokedreamer.com"] [uri "/xmlrpc.php"] [unique_id "ajS11mTwt_nX-jH40g5kGAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-19 03:21:06 (2 days ago)	(wordpress) Failed wordpress login from 117.134.193.209 (PK/Pakistan/-)	Brute-Force
Anonymous	2026-06-18 12:53:10 (3 days ago)	Attac	Brute-Force
🇩🇪 rh24	2026-06-18 09:48:20 (3 days ago)	(wordpress) Failed wordpress login from 117.134.193.209 (PK/Pakistan/-): (CF_ENABLE)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-18 09:08:31 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 117.134.193.209 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 117.134.193.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 05:08:28.403009 2026] [security2:error] [pid 24926:tid 24926] [client 117.134.193.209:54982] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.134.193.209 (+1 hits since last alert)\|drwolberg.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "drwolberg.com"] [uri "/xmlrpc.php"] [unique_id "ajO1jM_3qBh46VMY8XeQyAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 bigwavedave	2026-06-18 09:06:59 (3 days ago)	Wordpress Attack	Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 20.169.50.188

🇰🇿 212.154.234.9

🇧🇷 200.196.50.91

🇫🇮 147.185.133.212

🇵🇱 87.251.64.155

🇮🇳 80.225.238.77

🇫🇷 51.159.111.44

🇹🇼 34.81.246.44

🇺🇸 20.245.71.147

🇺🇸 20.169.49.44

🇺🇸 20.169.49.41

🇺🇸 20.65.193.207

🇭🇰 199.45.154.178

🇵🇪 190.223.60.209

🇺🇸 162.255.159.26

🇨🇳 123.232.132.205

🇳🇱 91.92.40.68

🇨🇳 61.136.246.87

🇸🇳 41.214.10.178

🇺🇸 20.169.49.231