JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.142.114.225

202.142.114.225 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 30%: ?

30%

ISP	INDINET SERVICE PRIVATE LIMITED
Usage Type	Fixed Line ISP
ASN	AS132115
Domain Name	indinet.co.in
Country	🇮🇳 India
City	Howrah, West Bengal

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.142.114.225

Whois 202.142.114.225

IP Abuse Reports for 202.142.114.225:

This IP address has been reported a total of 11 times from 7 distinct sources. 202.142.114.225 was first reported on December 1st 2021, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-08 11:26:11 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 202.142.114.225 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 202.142.114.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 07:26:03.403310 2026] [security2:error] [pid 7946:tid 7946] [client 202.142.114.225:41776] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 202.142.114.225 (+1 hits since last alert)\|schlegelcreative.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "schlegelcreative.com"] [uri "/xmlrpc.php"] [unique_id "aiamy7yk5x-nstIWi8idNgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-08 11:24:57 (2 weeks ago)	[redacted] 202.142.114.225 - - [08/Jun/2026:13:24:14 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" ... show more [redacted] 202.142.114.225 - - [08/Jun/2026:13:24:14 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.4)" [redacted] 202.142.114.225 - - [08/Jun/2026:13:24:24 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com" [redacted] 202.142.114.225 - - [08/Jun/2026:13:24:35 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.2)" [redacted] 202.142.114.225 - - [08/Jun/2026:13:24:45 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com" [redacted] 202.142.114.225 - - [08/Jun/2026:13:24:56 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.2)" ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 07:15:05 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 202.142.114.225 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 202.142.114.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 03:14:56.557567 2026] [security2:error] [pid 1141:tid 1141] [client 202.142.114.225:3970] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 202.142.114.225 (+1 hits since last alert)\|lspfest.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "lspfest.com"] [uri "/xmlrpc.php"] [unique_id "aiZr8K_UAYmbshY1H2PPKQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-08 07:13:43 (2 weeks ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-07 15:30:15 (2 weeks ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
Anonymous	2026-06-07 14:41:10 (2 weeks ago)	[redacted] 202.142.114.225 - - [07/Jun/2026:16:40:25 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" ... show more [redacted] 202.142.114.225 - - [07/Jun/2026:16:40:25 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.5; WordPress/6.4; http://site72594332.com" [redacted] 202.142.114.225 - - [07/Jun/2026:16:40:34 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 202.142.114.225 - - [07/Jun/2026:16:40:45 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/13.0; WordPress/6.1; http://site66581597.com" [redacted] 202.142.114.225 - - [07/Jun/2026:16:40:55 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 202.142.114.225 - - [07/Jun/2026:16:41:06 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.5; WordPress/6.3; http://site64175383.com" ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 10:49:05 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 202.142.114.225 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 202.142.114.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 06:48:58.832100 2026] [security2:error] [pid 11401:tid 11401] [client 202.142.114.225:52121] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 202.142.114.225 (+1 hits since last alert)\|rodandreelpiercam.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "rodandreelpiercam.com"] [uri "/xmlrpc.php"] [unique_id "aiVMmv7UxkL4YKQNb83JOgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 integrantservices.com	2026-06-07 10:13:01 (2 weeks ago)	(wordpress) Failed wordpress login from 202.142.114.225 (IN/India/-)	Brute-Force
🇦🇺 screwlooseit.com.au	2026-06-07 08:38:22 (2 weeks ago)	Blocked by CSF 13 firewall - Rule: XMLRPC IN/India/-	Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 07:57:53 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 202.142.114.225 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 202.142.114.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 03:57:49.637163 2026] [security2:error] [pid 15581:tid 15581] [client 202.142.114.225:33518] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 202.142.114.225 (+1 hits since last alert)\|drwolberg.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "drwolberg.com"] [uri "/xmlrpc.php"] [unique_id "aiUkfUToWLPzGgtJtT_5cAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 IP Analyzer	2021-12-01 05:00:52 (4 years ago)	Unauthorized connection attempt from IP address 202.142.114.225 on Port 445(SMB)	Port Scan

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 111.92.155.28

🇬🇧 35.203.211.44

🇨🇦 140.238.153.39

🇨🇳 112.94.253.107

🇬🇧 35.203.210.192

🇺🇸 35.192.68.237

🇿🇦 197.94.22.123

🇳🇱 192.144.88.148

🇸🇬 172.68.164.122

🇨🇿 83.208.70.70

🇱🇻 81.30.98.62

🇳🇱 160.119.71.136

🇺🇸 135.119.112.69

🇰🇷 118.36.234.156

🇷🇴 92.118.39.77

🇫🇷 91.231.89.69

🇧🇬 79.124.59.78

🇺🇸 64.62.156.109

🇲🇾 183.171.49.181

🇦🇷 170.155.12.21