JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 197.39.41.135

197.39.41.135 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 47%: ?

47%

ISP	TE Data
Usage Type	Fixed Line ISP
ASN	AS8452
Domain Name	tedata.net
Country	🇪🇬 Egypt
City	Giza, Giza

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 197.39.41.135

Whois 197.39.41.135

IP Abuse Reports for 197.39.41.135:

This IP address has been reported a total of 9 times from 8 distinct sources. 197.39.41.135 was first reported on July 2nd 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-25 23:59:15 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 197.39.41.135 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 197.39.41.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 19:59:08.701383 2026] [security2:error] [pid 28139:tid 28139] [client 197.39.41.135:65327] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 197.39.41.135 (+1 hits since last alert)\|major33.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "major33.com"] [uri "/xmlrpc.php"] [unique_id "aj3AzLQTB0A4zQHTSsYvIgAAADg"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-25 23:37:23 (2 days ago)	4.083 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot
🇺🇸 integrantservices.com	2026-06-25 23:26:07 (2 days ago)	(wordpress) Failed wordpress login from 197.39.41.135 (EG/Egypt/-)	Brute-Force
Anonymous	2026-06-25 22:24:43 (2 days ago)	197.39.41.135 - - [26/Jun/2026:00:24:21 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by W ... show more 197.39.41.135 - - [26/Jun/2026:00:24:21 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by WordPress.com" 197.39.41.135 - - [26/Jun/2026:00:24:24 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com" 197.39.41.135 - - [26/Jun/2026:00:24:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "WordPress.com; https://wordpress.com" 197.39.41.135 - - [26/Jun/2026:00:24:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com" 197.39.41.135 - - [26/Jun/2026:00:24:41 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "WordPress.com; https://wordpress.com" ... show less	Brute-Force Web App Attack
🇫🇷 applemooz	2026-06-25 17:34:29 (3 days ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 16:50:05 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 197.39.41.135 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 197.39.41.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 12:49:57.697704 2026] [security2:error] [pid 4143:tid 4143] [client 197.39.41.135:64549] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 197.39.41.135 (+1 hits since last alert)\|adlc18.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "adlc18.org"] [uri "/xmlrpc.php"] [unique_id "aj1cNbCS85BY0oeoHtL51AAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 alferez	2026-06-25 14:36:18 (3 days ago)	xmlrpc.php attack DOS	Hacking Exploited Host Web App Attack
🇱🇻 garmtech.com	2026-06-25 14:28:47 (3 days ago)	IM360 WAF: Rate limit exceeded for XMLRPC DoS	Web App Attack
Anonymous	2024-07-02 19:54:05 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.232

🇨🇦 143.110.217.244

🇧🇩 113.11.34.221

🇮🇳 103.161.93.53

🇧🇷 45.229.120.3

🇪🇪 45.8.124.49

🇺🇸 165.22.34.189

🇫🇷 163.172.143.147

🇮🇩 163.7.11.155

🇺🇸 147.185.132.99

🇳🇱 88.210.63.69

🇫🇮 80.223.192.112

🇲🇾 49.124.159.187

🇲🇾 49.124.152.163

🇧🇷 205.210.31.178

🇫🇷 144.91.106.106

🇨🇳 113.73.38.92

🇳🇱 64.34.87.189

🇳🇱 45.156.87.10

🇨🇳 39.154.15.20