JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 39.34.149.167

39.34.149.167 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 24%: ?

24%

ISP	Pakistan Telecommuication company limited
Usage Type	Fixed Line ISP
ASN	AS136525
Domain Name	ptcl.net.pk
Country	🇵🇰 Pakistan
City	Karachi, Sindh

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 39.34.149.167

Whois 39.34.149.167

IP Abuse Reports for 39.34.149.167:

This IP address has been reported a total of 4 times from 3 distinct sources. 39.34.149.167 was first reported on June 12th 2026, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 cmbplf	2026-06-13 03:28:19 (22 hours ago)	3.162 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-13 02:35:14 (23 hours ago)	(mod_security) mod_security (id:240335) triggered by 39.34.149.167 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 39.34.149.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 22:35:10.565304 2026] [security2:error] [pid 8429:tid 8429] [client 39.34.149.167:27302] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 39.34.149.167 (+1 hits since last alert)\|advantagept.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "advantagept.org"] [uri "/xmlrpc.php"] [unique_id "aizB3lC4TqNsCD4nQSpGywAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 18:19:18 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 39.34.149.167 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 39.34.149.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 14:19:13.199015 2026] [security2:error] [pid 29130:tid 29130] [client 39.34.149.167:26454] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 39.34.149.167 (+1 hits since last alert)\|thereisaplaceonearth.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "thereisaplaceonearth.com"] [uri "/xmlrpc.php"] [unique_id "aixNoc-xiTQKD4-2tWee2gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 pltcldvlpr	2026-06-12 01:58:48 (2 days ago)	Bogus Useragent: 39.34.149.167 - - [12/Jun/2026:03:58:48 +0200] "GET /protocol?id=st_4_57&offset=250 ... show more Bogus Useragent: 39.34.149.167 - - [12/Jun/2026:03:58:48 +0200] "GET /protocol?id=st_4_57&offset=250&seq=173 HTTP/1.1" 444 0 "-" "Opera/9.96.(Windows NT 6.2; ml-IN) Presto/2.9.179 Version/12.00" asn=17557 org="Pakistan Telecommuication company limited" country=PK ... show less	Bad Web Bot

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.23.95.14

🇮🇳 183.82.108.109

🇦🇪 176.205.254.176

🇳🇱 176.65.139.140

🇫🇷 173.212.234.26

🇺🇸 163.116.139.156

🇨🇦 148.170.129.144

🇵🇱 83.168.95.29

🇧🇬 78.128.114.22

🇺🇸 65.49.1.93

🇿🇦 41.181.156.205

🇮🇳 35.200.181.158

🇺🇸 34.230.221.101

🇨🇦 24.79.93.188

🇩🇪 217.119.129.100

🇧🇪 198.235.24.208

🇺🇸 163.116.139.155

🇺🇸 162.216.150.122

🇱🇹 141.98.11.194

🇨🇳 123.232.130.232