JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.188.113.159

193.188.113.159 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 34%: ?

34%

ISP	Bahrain Telecommunications Company
Usage Type	Fixed Line ISP
ASN	AS5416
Hostname(s)	dynamic.ip.193.188.113.159.batelco.com.bh
Domain Name	batelco.com
Country	🇧🇭 Bahrain
City	Manama, Manama

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.188.113.159

Whois 193.188.113.159

IP Abuse Reports for 193.188.113.159:

This IP address has been reported a total of 15 times from 13 distinct sources. 193.188.113.159 was first reported on July 27th 2025, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 kosada.com	2026-06-29 12:01:05 (23 hours ago)	Web bot: denial-of-service flood	DDoS Attack Bad Web Bot
🇫🇷 claude CALVET	2026-06-28 19:53:45 (1 day ago)	gew-Joomla User : try to access forms...	Hacking
Anonymous	2026-06-09 03:00:23 (3 weeks ago)	Botnet activity. Attribution: Angara Technologies Group / mikhail-smirnov-79830322 \| Attack Signatur ... show more Botnet activity. Attribution: Angara Technologies Group / mikhail-smirnov-79830322 \| Attack Signature Blocked: /wishlist/index/add/product/10942/form_key/zcCFRTv208GuLTgo/ \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like G... show less	Hacking Bad Web Bot Web App Attack
🇩🇪 Vegascosmetics	2026-06-07 18:27:40 (3 weeks ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
🇩🇪 SMARTNET	2026-05-27 06:03:53 (1 month ago)	Aisuru(Mirai variant) DDoS \| Incident ID: f9eee327-63b9-4c70-8845-0c5f5dde9bdb	DDoS Attack
Anonymous	2026-05-22 15:56:22 (1 month ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-05-22 11:40:33 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 193.188.113.159 (dynamic.ip.193.188.113.159.bat ... show more (mod_security) mod_security (id:240335) triggered by 193.188.113.159 (dynamic.ip.193.188.113.159.batelco.com.bh): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 07:40:26.903962 2026] [security2:error] [pid 7584:tid 7584] [client 193.188.113.159:53324] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 193.188.113.159 (+1 hits since last alert)\|genevaatlantic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "genevaatlantic.com"] [uri "/xmlrpc.php"] [unique_id "ahBAqtBbM51BvqUXbMXqxgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Lunix	2026-05-22 11:38:12 (1 month ago)		Brute-Force Web App Attack
🇺🇸 kosada.com	2026-02-26 16:35:51 (4 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇮🇩 hermawan	2026-01-01 13:29:47 (5 months ago)	[Thu Jan 01 20:29:46.697851 2026] [security2:error] [pid 166095:tid 139929622636224] [client 193.188 ... show more [Thu Jan 01 20:29:46.697851 2026] [security2:error] [pid 166095:tid 139929622636224] [client 193.188.113.159:50699] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "image/heif" at REQUEST_HEADERS:Accept. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "425"] [id "440009"] [msg " Image Heif"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: text/html found within REQUEST_HEADERS:Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/heif,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 request_line = GET /index.php/profil/meteorologi/list-all-categories/3999-galeri-kegiatan/galeri-kegiatan-tahun-2019/09-galeri-kegiatan-bulan-september-tahun-2019/555557567-galeri-kegiatan-bmkg-stasiun-klimato..."] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-all-categories/3999-galeri-kegiatan/gale ... show less	Hacking Web App Attack
🇩🇪 SMARTNET	2025-11-26 02:37:10 (7 months ago)	Aisuru(Mirai variant) DDoS	DDoS Attack
🇺🇸 SiliSoftware	2025-10-25 07:40:24 (8 months ago)	/phpBB3/templates/subSilver/images/lang_english/icon_email.gif	Web App Attack
Anonymous	2025-10-03 11:02:20 (8 months ago)	Ports: 143,993; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
Anonymous	2025-09-19 11:39:45 (9 months ago)	DDoS botnet 510.000+ IPs; URL with bing/trustpilot/githubhelp and %C2%A4 or \xc2\xa4. NEW 09/2025: a ... show more DDoS botnet 510.000+ IPs; URL with bing/trustpilot/githubhelp and %C2%A4 or \xc2\xa4. NEW 09/2025: amplification attacks via third-parties e.g. HTTP_USER_AGENT facebookexternalhit/meta-externalagent/meta-externalfetcher or IPs from googleusercontent.com with fake HTTP_REFERER foxnews.com/newsweek.com/upwork.com/activision.com/... Port 443. show less	DDoS Attack Bad Web Bot Web App Attack
🇪🇸 Global Cyber Police	2025-07-27 14:56:23 (11 months ago)	Malicious bot activity detected: Hitting honeypot page (200 OK with 258/259 bytes sent).	Port Scan Brute-Force Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.94.145.22

🇨🇳 111.26.6.111

🇷🇺 104.28.245.231

🇷🇺 81.200.28.216

🇺🇸 71.41.130.50

🇭🇰 199.45.154.132

🇺🇬 196.0.242.54

🇱🇻 185.214.96.145

🇧🇷 131.100.242.102

🇨🇳 124.67.120.106

🇮🇳 106.219.88.230

🇺🇸 104.196.54.198

🇸🇬 84.75.148.237

🇲🇦 81.192.46.45

🇺🇸 65.49.1.204

🇧🇪 34.14.70.97

🇬🇧 31.14.254.114

🇻🇳 14.191.93.198

🇺🇾 190.133.79.97

🇺🇸 153.66.28.132