JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 203.130.22.228

203.130.22.228 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 76%: ?

76%

ISP	SUPERNET Limited
Usage Type	Fixed Line ISP
ASN	AS24435
Hostname(s)	super22-line-228.super.net.pk
Domain Name	super.net.pk
Country	🇵🇰 Pakistan
City	Lahore, Punjab

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 203.130.22.228

Whois 203.130.22.228

IP Abuse Reports for 203.130.22.228:

This IP address has been reported a total of 22 times from 16 distinct sources. 203.130.22.228 was first reported on April 15th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Holger	2026-06-13 12:34:28 (2 days ago)	WordPress WebAttack	Brute-Force Web App Attack
🇩🇪 Holger	2026-06-11 09:27:47 (4 days ago)	WordPress WebAttack	Brute-Force Web App Attack
Anonymous	2026-06-10 17:42:18 (5 days ago)	(wordpress) Failed wordpress login from 203.130.22.228 (PK/Pakistan/super22-line-228.super.net.pk)	Brute-Force
🇳🇱 BlueWire Hosting	2026-06-10 00:04:13 (6 days ago)	Probing websites for vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 17:22:39 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 203.130.22.228 (super22-line-228.super.net.pk): ... show more (mod_security) mod_security (id:225170) triggered by 203.130.22.228 (super22-line-228.super.net.pk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 13:22:31.735211 2026] [security2:error] [pid 13012:tid 13012] [client 203.130.22.228:54267] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mccompu.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mccompu.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aihL16i3MsvSEc8yFdvS2AAAAJI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 WellSpring	2026-06-09 06:37:58 (6 days ago)	xmlrpc exploit on 510.today/xmlrpc.php — WellSpr.ing/NetSentinel civic-AI security layer	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 03:09:47 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 203.130.22.228 (super22-line-228.super.net.pk): ... show more (mod_security) mod_security (id:225170) triggered by 203.130.22.228 (super22-line-228.super.net.pk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 23:09:43.973965 2026] [security2:error] [pid 7304:tid 7662] [client 203.130.22.228:60847] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|tsdlivesearch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "tsdlivesearch.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aieD9048yf7KyJw7-rSKdgAAAFM"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-06-08 21:05:07 (1 week ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 203.130.22.228 (PK/Pakistan/super22 ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 203.130.22.228 (PK/Pakistan/super22-line-228.super.net.pk): 1 in the last 3600 secs show less	Web App Attack
🇳🇱 wlt-blocker	2026-06-08 19:58:15 (1 week ago)	Unauthorized access to webpage admin	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 14:53:34 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 203.130.22.228 (super22-line-228.super.net.pk): ... show more (mod_security) mod_security (id:225170) triggered by 203.130.22.228 (super22-line-228.super.net.pk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 10:53:26.942395 2026] [security2:error] [pid 24340:tid 24340] [client 203.130.22.228:55406] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|intothebigempty.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "intothebigempty.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aibXZs_80YdVBvVHSwvj9wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 [email protected]	2026-06-08 14:46:34 (1 week ago)	[Mon Jun 08 16:46:33.145639 2026] [proxy_fcgi:error] [pid 1658381:tid 1658433] [client 203.130.22.22 ... show more [Mon Jun 08 16:46:33.145639 2026] [proxy_fcgi:error] [pid 1658381:tid 1658433] [client 203.130.22.228:65149] AH01071: Got error "Primary script unknown" show less	Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-08 03:40:22 (1 week ago)	Try to access /xmlrpc.php	Web App Attack
🇧🇾 lns.bz	2026-06-08 02:45:11 (1 week ago)	Banned for trying to access xmlrpc [BY]	Web App Attack
🇮🇩 zam	2026-06-07 21:34:36 (1 week ago)	203.130.22.228 - - [07/Jun/2026:21:34:32 +0000] "POST /xmlrpc.php HTTP/1.1" 302 271	Web App Attack
🇩🇪 IVski	2026-06-07 12:17:02 (1 week ago)	IVski WAF \| WordPress scanner detected - probing wp-content, xmlrpc or wp-login	Port Scan Brute-Force Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 35.203.210.52

🇨🇳 220.197.85.67

🇧🇷 177.55.205.157

🇸🇬 165.154.205.128

🇺🇸 162.216.149.208

🇨🇳 113.206.176.109

🇩🇪 47.254.156.79

🇩🇪 47.245.132.255

🇳🇱 45.156.128.130

🇺🇸 24.155.199.198

🇺🇸 20.221.71.226

🇻🇳 14.191.205.135

🇧🇪 198.235.24.246

🇧🇪 198.235.24.230

🇨🇳 171.37.191.220

🇰🇷 125.140.129.212

🇨🇳 120.32.92.205

🇮🇪 109.76.185.187

🇫🇷 91.231.89.52

🇺🇸 91.230.168.140