JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 119.82.89.109

119.82.89.109 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 78%: ?

78%

ISP	Shyam Spectra Pvt Ltd
Usage Type	Fixed Line ISP
ASN	AS10029
Hostname(s)	119.82.89.109.reverse.spectranet.in
Domain Name	spectra.co
Country	🇮🇳 India
City	Greater Noida, Uttar Pradesh

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 119.82.89.109

Whois 119.82.89.109

IP Abuse Reports for 119.82.89.109:

This IP address has been reported a total of 19 times from 15 distinct sources. 119.82.89.109 was first reported on June 6th 2026, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 AWW-Admin	2026-06-29 11:45:48 (22 hours ago)	(wordpress) Failed wordpress login from 119.82.89.109 (IN/India/119.82.89.109.reverse.spectranet.in)	Brute-Force
🇳🇱 ConsulHosting	2026-06-27 12:07:41 (2 days ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇫🇷 masterguru	2026-06-27 11:32:04 (2 days ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇺🇸 TPI-Abuse	2026-06-27 09:07:37 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 119.82.89.109 (119.82.89.109.reverse.spectranet ... show more (mod_security) mod_security (id:240335) triggered by 119.82.89.109 (119.82.89.109.reverse.spectranet.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 05:07:32.300948 2026] [security2:error] [pid 14611:tid 14611] [client 119.82.89.109:60287] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 119.82.89.109 (+1 hits since last alert)\|fgrotary.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "fgrotary.org"] [uri "/xmlrpc.php"] [unique_id "aj-S1IDGEaYYEM76akgytQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 alferez	2026-06-27 06:16:18 (3 days ago)	xmlrpc.php attack DOS	Hacking Exploited Host Web App Attack
🇩🇪 dbmwebdesign	2026-06-26 12:45:29 (3 days ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇨🇭 Mario Bretscher	2026-06-26 12:42:58 (3 days ago)	Jun 26 14:42:46 beat-band.ch Cerber(beat-band.ch)[169062]: Authentication failure for admin from 119 ... show more Jun 26 14:42:46 beat-band.ch Cerber(beat-band.ch)[169062]: Authentication failure for admin from 119.82.89.109 Jun 26 14:42:57 beat-band.ch Cerber(beat-band.ch)[168907]: Authentication failure for admin from 119.82.89.109 ... show less	Web Spam
🇺🇸 TPI-Abuse	2026-06-26 06:10:04 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 119.82.89.109 (119.82.89.109.reverse.spectranet ... show more (mod_security) mod_security (id:240335) triggered by 119.82.89.109 (119.82.89.109.reverse.spectranet.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 02:09:53.363626 2026] [security2:error] [pid 13652:tid 13652] [client 119.82.89.109:61026] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 119.82.89.109 (+1 hits since last alert)\|creationorevolution.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "creationorevolution.net"] [uri "/xmlrpc.php"] [unique_id "aj4XsfR3UW3SpkQaaK3EsAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-26 05:34:19 (4 days ago)	Blocked by CSF 13 firewall - Rule: XMLRPC IN/India/119.82.89.109.reverse.spectranet.in	Web App Attack
Anonymous	2026-06-25 12:15:05 (4 days ago)		Bad Web Bot Web App Attack
Anonymous	2026-06-25 11:20:02 (4 days ago)	[redacted] 119.82.89.109 - - [25/Jun/2026:13:19:20 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "J ... show more [redacted] 119.82.89.109 - - [25/Jun/2026:13:19:20 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.0; WordPress/6.3; http://site15732896.com" [redacted] 119.82.89.109 - - [25/Jun/2026:13:19:30 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 119.82.89.109 - - [25/Jun/2026:13:19:40 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 119.82.89.109 - - [25/Jun/2026:13:19:51 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 119.82.89.109 - - [25/Jun/2026:13:20:01 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.1; WordPress/6.1; http://site20204424.com" ... show less	Hacking Web App Attack
Anonymous	2026-06-25 09:44:04 (5 days ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇫🇷 dynamix	2026-06-25 07:15:37 (5 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 07:10:33 (6 days ago)	(mod_security) mod_security (id:240335) triggered by 119.82.89.109 (119.82.89.109.reverse.spectranet ... show more (mod_security) mod_security (id:240335) triggered by 119.82.89.109 (119.82.89.109.reverse.spectranet.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 03:10:27.024835 2026] [security2:error] [pid 10996:tid 10996] [client 119.82.89.109:60056] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 119.82.89.109 (+1 hits since last alert)\|mahjongcouture.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "mahjongcouture.com"] [uri "/xmlrpc.php"] [unique_id "ajuC4-Oyll4ptAtirMtpXAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-24 07:07:14 (6 days ago)	Blocked by CSF 13 firewall - Rule: XMLRPC IN/India/119.82.89.109.reverse.spectranet.in	Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.30

🇬🇧 193.163.125.177

🇺🇸 192.178.119.158

🇩🇪 185.220.101.191

🇦🇷 181.23.60.97

🇱🇾 102.68.131.186

🇧🇪 198.235.24.230

🇺🇸 195.184.76.20

🇩🇪 159.100.6.125

🇯🇵 153.246.252.201

🇮🇹 147.45.51.177

🇷🇺 77.88.47.8

🇺🇸 66.132.186.239

🇫🇷 62.210.113.113

🇨🇳 14.103.115.213

🇺🇸 216.73.160.51

🇷🇺 213.170.75.150

🇳🇱 204.76.203.214

🇧🇷 187.62.87.235

🇺🇸 143.42.1.34