JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 117.253.138.42

117.253.138.42 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 0%: ?

ISP	Wimax Project, BSNL New Delhi
Usage Type	Mobile ISP
ASN	AS9829
Domain Name	bsnl.in
Country	🇮🇳 India
City	Jaipur, Rajasthan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 117.253.138.42

Whois 117.253.138.42

IP Abuse Reports for 117.253.138.42:

This IP address has been reported a total of 37 times from 19 distinct sources. 117.253.138.42 was first reported on October 3rd 2024, and the most recent report was 8 months ago.

Old Reports: The most recent abuse report for this IP address is from 8 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 VHosting	2025-10-10 19:46:37 (8 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇩🇪 Packets-Decreaser.NET	2025-09-26 22:05:17 (9 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-09-03 12:58:46 (9 months ago)	Spamming registration page	Web Spam
🇳🇱 Futunk	2025-08-27 07:02:20 (10 months ago)	Form spam (honeypot): POST /contact	Web Spam
🇫🇷 Hydra-Shield.fr	2025-08-01 23:23:26 (10 months ago)	Automated DDoS behavior detected targeting production services. Multiple anomalous connections and p ... show more Automated DDoS behavior detected targeting production services. Multiple anomalous connections and packet floods recorded. show less	Brute-Force SSH
Anonymous	2025-07-19 19:18:26 (11 months ago)	Ports: *; Direction: 0; Trigger: LF_DISTSMTP	Brute-Force SSH
🇲🇾 syokadmin	2025-07-16 05:14:26 (11 months ago)	117.253.138.42 (IN/India/-), 11 distributed SMTP Logins on account [[email protected]] in the last ... show more 117.253.138.42 (IN/India/-), 11 distributed SMTP Logins on account [[email protected]] in the last 300 secs show less	Brute-Force
🇮🇪 eyesilyurt	2025-07-13 07:19:44 (11 months ago)	c- login authenticator failed Incorrect authentication data	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-06-10 21:33:50 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 117.253.138.42 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 117.253.138.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 10 17:33:44.522461 2025] [security2:error] [pid 2856728:tid 2856728] [client 117.253.138.42:44892] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|assheton.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "assheton.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aEikuPI_E8J9VxmomE00aAAAAAQ"], referer: https://assheton.com/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-03 21:13:40 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 117.253.138.42 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 117.253.138.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 03 17:13:37.619781 2025] [security2:error] [pid 3619279:tid 3619279] [client 117.253.138.42:37775] [client 117.253.138.42] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|jolankagroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jolankagroup.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aBaHAdkQBnSXFgkIIaMPhAAAABA"], referer: https://jolankagroup.com/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 unhfree.net	2025-05-03 10:29:01 (1 year ago)	May 3 10:21:13 canopus postfix/smtpd[2354427]: 04E39DC0CAB: reject: RCPT from unknown[117.253.138.4 ... show more May 3 10:21:13 canopus postfix/smtpd[2354427]: 04E39DC0CAB: reject: RCPT from unknown[117.253.138.42]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> May 3 10:21:13 canopus postfix/smtpd[2354427]: 04E39DC0CAB: reject: RCPT from unknown[117.253.138.42]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> May 3 10:21:14 canopus postfix/smtpd[2354427]: 04E39DC0CAB: reject: RCPT from unknown[117.253.138.42]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> May 3 12:29:00 canopus postfix/smtpd[2360998]: E10E2DC0C1B: reject: RCPT ... show less	Brute-Force Exploited Host
Anonymous	2025-04-28 08:19:56 (1 year ago)	Ports: 143,993; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
🇨🇿 unhfree.net	2025-04-26 06:26:23 (1 year ago)	Apr 26 08:26:15 canopus postfix/smtpd[1597059]: 6355ADC0D8D: reject: RCPT from unknown[117.253.138.4 ... show more Apr 26 08:26:15 canopus postfix/smtpd[1597059]: 6355ADC0D8D: reject: RCPT from unknown[117.253.138.42]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Apr 26 08:26:15 canopus postfix/smtpd[1597059]: 6355ADC0D8D: reject: RCPT from unknown[117.253.138.42]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Apr 26 08:26:15 canopus postfix/smtpd[1597059]: 6355ADC0D8D: reject: RCPT from unknown[117.253.138.42]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Apr 26 08:26:23 canopus postfix/smtpd[1597059]: NOQUEUE: rejec ... show less	Brute-Force Exploited Host
🇨🇿 unhfree.net	2025-04-18 15:40:34 (1 year ago)	Apr 18 14:28:27 canopus postfix/smtpd[800396]: NOQUEUE: reject: RCPT from unknown[117.253.138.42]: 5 ... show more Apr 18 14:28:27 canopus postfix/smtpd[800396]: NOQUEUE: reject: RCPT from unknown[117.253.138.42]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Apr 18 14:28:27 canopus postfix/smtpd[800396]: NOQUEUE: reject: RCPT from unknown[117.253.138.42]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Apr 18 14:28:27 canopus postfix/smtpd[800396]: NOQUEUE: reject: RCPT from unknown[117.253.138.42]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Apr 18 14:28:27 canopus postfix/smtpd[800396]: NOQUEUE: reject: RCPT from unknown[117.253.138.42]: 554 5.7.1 <waelk ... show less	Brute-Force Exploited Host
🇨🇿 unhfree.net	2025-04-10 16:17:35 (1 year ago)	Apr 10 14:33:18 canopus postfix/smtpd[4170871]: NOQUEUE: reject: RCPT from unknown[117.253.138.42]: ... show more Apr 10 14:33:18 canopus postfix/smtpd[4170871]: NOQUEUE: reject: RCPT from unknown[117.253.138.42]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Apr 10 14:33:18 canopus postfix/smtpd[4170871]: NOQUEUE: reject: RCPT from unknown[117.253.138.42]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Apr 10 14:33:18 canopus postfix/smtpd[4170871]: NOQUEUE: reject: RCPT from unknown[117.253.138.42]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Apr 10 14:33:18 canopus postfix/smtpd[4170871]: NOQUEUE: reject: RCPT from unknown[117.2 ... show less	Brute-Force Exploited Host

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 66.132.195.27

🇺🇸 65.49.1.189

🇧🇪 34.156.128.217

🇮🇳 20.244.18.126

🇺🇸 20.64.104.132

🇰🇷 14.32.231.200

🇬🇧 2a06:4880:2000::40

🇬🇧 2a06:4880:2000::37

🇩🇪 202.71.141.170

🇳🇱 195.178.110.30

🇩🇪 194.31.223.71

🇻🇳 104.218.166.62

🇺🇸 67.207.93.64

🇺🇸 65.49.1.82

🇳🇱 45.148.10.157

🇰🇪 41.89.96.242

🇫🇷 185.177.72.11

🇺🇸 172.59.138.198

🇮🇳 165.101.250.39

🇫🇷 146.70.194.228