JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 117.232.38.252

117.232.38.252 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 15%: ?

15%

ISP	NIB (National Internet Backbone)
Usage Type	Fixed Line ISP
ASN	AS9829
Domain Name	bsnl.co.in
Country	🇮🇳 India
City	Mysuru, Karnataka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 117.232.38.252

Whois 117.232.38.252

IP Abuse Reports for 117.232.38.252:

This IP address has been reported a total of 3 times from 2 distinct sources. 117.232.38.252 was first reported on June 12th 2026, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-12 10:55:51 (23 hours ago)	(mod_security) mod_security (id:240335) triggered by 117.232.38.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 117.232.38.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 06:55:44.745539 2026] [security2:error] [pid 15477:tid 15485] [client 117.232.38.252:54083] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.232.38.252 (+1 hits since last alert)\|michaelrandon.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "michaelrandon.com"] [uri "/xmlrpc.php"] [unique_id "aivlsO8AnJO66-l_WMB3xAAAAQI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 10:23:15 (23 hours ago)	(mod_security) mod_security (id:240335) triggered by 117.232.38.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 117.232.38.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 06:23:11.991589 2026] [security2:error] [pid 32716:tid 32716] [client 117.232.38.252:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 117.232.38.252 (+1 hits since last alert)\|pixacast.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pixacast.com"] [uri "/xmlrpc.php"] [unique_id "aiveD8KzG8BztZFfx4OAEwAAAGQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-12 09:20:35 (1 day ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 122.144.131.25

🇹🇼 104.199.176.250

🇳🇱 85.11.167.7

🇰🇷 14.55.144.22

🇬🇧 5.226.140.50

🇷🇴 2.57.121.112

🇺🇸 170.203.28.48

🇺🇸 147.185.132.190

🇯🇵 122.222.1.177

🇬🇧 45.82.76.107

🇩🇪 43.228.157.8

🇨🇦 35.203.43.227

🇮🇷 5.237.108.189

🇧🇷 205.210.31.232

🇧🇷 181.218.9.86

🇵🇾 181.124.177.69

🇲🇾 180.74.225.210

🇻🇳 125.212.158.13

🇨🇳 117.40.114.21

🇿🇲 102.23.122.235