JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 117.198.202.25

117.198.202.25 was found in our database!

This IP was reported 2 times. Confidence of Abuse is 3%: ?

ISP	Broadband Multiplay Project, O/o DGM BB, NOC BSNL Bangalore
Usage Type	Fixed Line ISP
ASN	AS9829
Domain Name	bsnl.in
Country	🇮🇳 India
City	Pune, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 117.198.202.25

Whois 117.198.202.25

IP Abuse Reports for 117.198.202.25:

This IP address has been reported a total of 2 times from 1 distinct source. 117.198.202.25 was first reported on June 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-09 16:15:30 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 117.198.202.25 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 117.198.202.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 12:15:23.978663 2026] [security2:error] [pid 3141:tid 3141] [client 117.198.202.25:61051] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.198.202.25 (+1 hits since last alert)\|hotpay.co\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "hotpay.co"] [uri "/xmlrpc.php"] [unique_id "aig8G-GXzqgpjtxGH49bCAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 18:18:16 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 117.198.202.25 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 117.198.202.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 14:18:11.886443 2026] [security2:error] [pid 579:tid 579] [client 117.198.202.25:54954] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.198.202.25 (+1 hits since last alert)\|littlecreekrvranch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "littlecreekrvranch.com"] [uri "/xmlrpc.php"] [unique_id "aicHY20-9yNXEu6gAq6fHQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 2 of 2 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 64.89.162.168

🇰🇷 222.239.251.12

🇩🇪 209.50.186.117

🇰🇷 125.137.115.145

🇨🇳 101.68.7.112

🇪🇸 79.116.236.138

🇮🇩 36.83.143.113

🇨🇳 27.187.244.165

🇺🇸 205.210.31.94

🇺🇸 195.184.76.152

🇳🇱 176.65.139.181

🇻🇳 171.243.62.6

🇺🇸 162.216.150.216

🇺🇸 104.248.50.150

🇳🇱 89.248.167.131

🇺🇸 74.139.229.100

🇺🇸 74.125.181.144

🇩🇪 69.5.169.199

🇺🇸 66.132.195.17

🇺🇸 31.59.40.94