JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 39.32.202.144

39.32.202.144 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 22%: ?

22%

ISP	Pakistan Telecommuication company limited
Usage Type	Fixed Line ISP
ASN	AS17557
Domain Name	ptcl.net.pk
Country	🇵🇰 Pakistan
City	Upper Dir, Khyber Pakhtunkhwa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 39.32.202.144

Whois 39.32.202.144

IP Abuse Reports for 39.32.202.144:

This IP address has been reported a total of 6 times from 3 distinct sources. 39.32.202.144 was first reported on June 22nd 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-23 06:41:10 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 39.32.202.144 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 39.32.202.144 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 02:41:05.305238 2026] [security2:error] [pid 17382:tid 17382] [client 39.32.202.144:52735] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 39.32.202.144 (+1 hits since last alert)\|directcch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "directcch.com"] [uri "/xmlrpc.php"] [unique_id "ajoqgfFOcOF9gExzrBORPwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-23 04:32:21 (4 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 03:06:41 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 39.32.202.144 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 39.32.202.144 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 23:06:35.937486 2026] [security2:error] [pid 16415:tid 16415] [client 39.32.202.144:56655] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 39.32.202.144 (+1 hits since last alert)\|marcosbarraza.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "marcosbarraza.net"] [uri "/xmlrpc.php"] [unique_id "ajn4O-q22ljbrOngdt100gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 integrantservices.com	2026-06-22 07:12:56 (5 days ago)	(wordpress) Failed wordpress login from 39.32.202.144 (PK/Pakistan/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-22 07:04:36 (5 days ago)	(mod_security) mod_security (id:240335) triggered by 39.32.202.144 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 39.32.202.144 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 03:04:31.521835 2026] [security2:error] [pid 20374:tid 20374] [client 39.32.202.144:59248] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 39.32.202.144 (+1 hits since last alert)\|palumbodesigns.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "palumbodesigns.com"] [uri "/xmlrpc.php"] [unique_id "ajjef_8j4EW1Wxu1KYaewQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 04:46:20 (5 days ago)	(mod_security) mod_security (id:240335) triggered by 39.32.202.144 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 39.32.202.144 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 00:46:15.329908 2026] [security2:error] [pid 11578:tid 11578] [client 39.32.202.144:54914] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 39.32.202.144 (+1 hits since last alert)\|beirutbazar.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "beirutbazar.com"] [uri "/xmlrpc.php"] [unique_id "aji-F3v7HK6HcdWBBkdHEwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 211.22.131.70

🇺🇸 207.90.244.18

🇷🇴 193.46.255.86

🇧🇷 189.63.5.220

🇸🇪 171.25.158.82

🇳🇱 91.92.40.52

🇳🇱 91.92.40.5

🇫🇷 90.26.83.97

🇮🇳 80.225.238.77

🇳🇱 34.178.21.247

🇺🇸 20.163.34.83

🇮🇩 8.215.88.36

🇷🇺 5.143.11.25

🇬🇧 2a06:4883:7000::80

🇳🇱 213.152.185.117

🇳🇬 152.32.141.2

🇹🇼 128.14.229.150

🇨🇳 120.48.32.130

🇳🇱 91.92.40.231

🇳🇱 80.82.77.33