JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 117.193.228.90

117.193.228.90 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 26%: ?

26%

ISP	Broadband Multiplay Project, O/o DGM BB, NOC BSNL Bangalore
Usage Type	Fixed Line ISP
ASN	AS9829
Domain Name	bsnl.in
Country	🇮🇳 India
City	Tiruchirappalli, Tamil Nadu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 117.193.228.90

Whois 117.193.228.90

IP Abuse Reports for 117.193.228.90:

This IP address has been reported a total of 10 times from 6 distinct sources. 117.193.228.90 was first reported on July 30th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-07 15:40:21 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 117.193.228.90 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 117.193.228.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 11:40:10.077739 2026] [security2:error] [pid 11989:tid 11989] [client 117.193.228.90:51883] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.193.228.90 (+1 hits since last alert)\|roguetechscene.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "roguetechscene.com"] [uri "/xmlrpc.php"] [unique_id "aiWQ2oS1p5g8SBGdqUaC8AAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 15:08:55 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 117.193.228.90 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 117.193.228.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 11:08:45.098972 2026] [security2:error] [pid 15319:tid 15319] [client 117.193.228.90:54994] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.193.228.90 (+1 hits since last alert)\|idmadventures.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "idmadventures.com"] [uri "/xmlrpc.php"] [unique_id "aiWJfaA2LgkJ7-TVmedawwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-07 12:33:11 (2 weeks ago)	Attac	Brute-Force
🇩🇪 Marc	2026-06-07 09:58:33 (2 weeks ago)	117.193.228.90 - - [07/Jun/2026:11:58:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3419 "-" "Jetpack by ... show more 117.193.228.90 - - [07/Jun/2026:11:58:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3419 "-" "Jetpack by WordPress.com" 117.193.228.90 - - [07/Jun/2026:11:58:21 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3466 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.1)" 117.193.228.90 - - [07/Jun/2026:11:58:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3467 "-" "Jetpack by WordPress.com" show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 09:31:08 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 117.193.228.90 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 117.193.228.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 05:30:57.418602 2026] [security2:error] [pid 19162:tid 19162] [client 117.193.228.90:54386] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.193.228.90 (+1 hits since last alert)\|wsffjatc.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "wsffjatc.org"] [uri "/xmlrpc.php"] [unique_id "aiU6UR276vVenDvbTALgWgAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-07 06:23:37 (2 weeks ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 04:53:41 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 117.193.228.90 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 117.193.228.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 00:53:32.150067 2026] [security2:error] [pid 13395:tid 13395] [client 117.193.228.90:49315] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.193.228.90 (+1 hits since last alert)\|eftekharschool.ir\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "eftekharschool.ir"] [uri "/xmlrpc.php"] [unique_id "aiT5TCdhXgDOBlKCmB6NTAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-07 04:51:34 (2 weeks ago)	[redacted] 117.193.228.90 - - [07/Jun/2026:06:50:50 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" " ... show more [redacted] 117.193.228.90 - - [07/Jun/2026:06:50:50 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.0; WordPress/6.4; http://site95103494.com" [redacted] 117.193.228.90 - - [07/Jun/2026:06:51:00 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 117.193.228.90 - - [07/Jun/2026:06:51:11 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.5; WordPress/6.3; http://site28352153.com" [redacted] 117.193.228.90 - - [07/Jun/2026:06:51:22 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 117.193.228.90 - - [07/Jun/2026:06:51:32 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 04:23:53 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 117.193.228.90 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 117.193.228.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 00:23:39.767371 2026] [security2:error] [pid 17498:tid 17498] [client 117.193.228.90:55053] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.193.228.90 (+1 hits since last alert)\|xyncom.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "xyncom.com"] [uri "/xmlrpc.php"] [unique_id "aiTyS4tkAuw7OqfNK4SxyQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-07-30 12:33:32 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇴 193.32.162.60

🇺🇸 109.105.209.14

🇨🇳 106.63.26.157

🇧🇩 103.131.144.53

🇵🇰 103.18.14.249

🇺🇸 50.87.144.169

🇦🇹 68.210.120.110

🇺🇸 64.62.197.25

🇨🇳 14.103.123.6

🇸🇪 2620:171:f6:f0::237

🇨🇳 221.228.203.3

🇺🇸 216.73.216.221

🇺🇸 216.25.89.146

🇷🇴 193.32.162.82

🇺🇸 147.78.183.172

🇳🇱 109.236.86.20

🇻🇳 103.9.77.247

🇳🇱 91.92.40.6

🇧🇬 79.124.56.238

🇺🇸 74.124.153.154