JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 39.38.112.80

39.38.112.80 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 76%: ?

76%

ISP	Pakistan Telecommuication company limited
Usage Type	Fixed Line ISP
ASN	AS17557
Domain Name	ptcl.net.pk
Country	🇵🇰 Pakistan
City	Karachi, Sindh

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 39.38.112.80

Whois 39.38.112.80

IP Abuse Reports for 39.38.112.80:

This IP address has been reported a total of 43 times from 22 distinct sources. 39.38.112.80 was first reported on June 3rd 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-08 18:38:44 (2 weeks ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
Anonymous	2026-06-08 17:06:40 (2 weeks ago)	Attac	Brute-Force
🇫🇷 dynamix	2026-06-08 16:32:13 (2 weeks ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2026-06-08 15:51:05 (2 weeks ago)	39.38.112.80 - - [08/Jun/2026:17:50:41 +0200] "POST /xmlrpc.php HTTP/1.1" 200 430 "-" "Jetpack by Wo ... show more 39.38.112.80 - - [08/Jun/2026:17:50:41 +0200] "POST /xmlrpc.php HTTP/1.1" 200 430 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.3)" 39.38.112.80 - - [08/Jun/2026:17:50:52 +0200] "POST /xmlrpc.php HTTP/1.1" 200 430 "-" "WordPress.com; https://wordpress.com" 39.38.112.80 - - [08/Jun/2026:17:51:02 +0200] "POST /xmlrpc.php HTTP/1.1" 200 430 "-" "Jetpack by WordPress.com" show less	Hacking Web App Attack
🇫🇷 SpaceHost-Server	2026-06-08 15:35:39 (2 weeks ago)	39.38.112.80 - - [08/Jun/2026:17:35:18 +0200] "POST /xmlrpc.php HTTP/1.1" 200 430 "-" "Jetpack by Wo ... show more 39.38.112.80 - - [08/Jun/2026:17:35:18 +0200] "POST /xmlrpc.php HTTP/1.1" 200 430 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.2)" 39.38.112.80 - - [08/Jun/2026:17:35:28 +0200] "POST /xmlrpc.php HTTP/1.1" 200 430 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.3)" 39.38.112.80 - - [08/Jun/2026:17:35:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 430 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.1)" show less	Hacking Web App Attack
🇫🇷 SpaceHost-Server	2026-06-08 14:22:48 (2 weeks ago)	39.38.112.80 - - [08/Jun/2026:16:22:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 430 "-" "Jetpack by Wo ... show more 39.38.112.80 - - [08/Jun/2026:16:22:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 430 "-" "Jetpack by WordPress.com" 39.38.112.80 - - [08/Jun/2026:16:22:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 430 "-" "Jetpack by WordPress.com" 39.38.112.80 - - [08/Jun/2026:16:22:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 430 "-" "Jetpack/12.0; WordPress/6.3; http://site77134076.com" show less	Hacking Web App Attack
Anonymous	2026-06-08 14:18:01 (2 weeks ago)	Fail2ban filtered ...	Web App Attack
Anonymous	2026-06-08 14:00:03 (2 weeks ago)	Web App Attack, Hacking	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 21:33:46 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 39.38.112.80 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 39.38.112.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 17:33:38.777228 2026] [security2:error] [pid 8399:tid 8399] [client 39.38.112.80:50085] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 39.38.112.80 (+1 hits since last alert)\|forerunnersjazz.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "forerunnersjazz.org"] [uri "/xmlrpc.php"] [unique_id "aiSSMgTkgNtLV_8nFbMRRgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dbmwebdesign	2026-06-06 21:05:15 (2 weeks ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇩🇪 Séfora Srl	2026-06-06 21:03:07 (2 weeks ago)	Failed attempt detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇫🇮 bittiguru.fi	2026-06-06 20:45:08 (2 weeks ago)	39.38.112.80 - [06/Jun/2026:23:44:57 +0300] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "Jetpack by Word ... show more 39.38.112.80 - [06/Jun/2026:23:44:57 +0300] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.3)" "-" 39.38.112.80 - [06/Jun/2026:23:45:07 +0300] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "Jetpack/12.1; WordPress/6.1; http://site59343351.com" "-" ... show less	Hacking Brute-Force Web App Attack
🇫🇮 bittiguru.fi	2026-06-06 20:29:53 (2 weeks ago)	39.38.112.80 - [06/Jun/2026:23:29:43 +0300] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "WordPress.com; ... show more 39.38.112.80 - [06/Jun/2026:23:29:43 +0300] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "WordPress.com; https://wordpress.com" "-" 39.38.112.80 - [06/Jun/2026:23:29:53 +0300] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "Jetpack by WordPress.com" "-" ... show less	Hacking Brute-Force Web App Attack
Anonymous	2026-06-06 19:49:16 (2 weeks ago)	Blocked by ModSec and CSF	Port Scan
🇳🇱 Site.eu	2026-06-06 18:34:54 (2 weeks ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.110

🇳🇱 45.142.193.161

🇺🇸 205.210.31.46

🇩🇪 151.243.11.248

🇨🇦 143.198.46.101

🇸🇬 104.28.163.33

🇻🇳 103.60.242.169

🇸🇬 47.128.61.186

🇳🇱 45.148.10.206

🇬🇧 35.203.210.221

🇺🇸 192.178.119.210

🇺🇸 161.35.109.59

🇩🇪 158.101.161.27

🇻🇳 121.200.217.28

🇰🇭 103.90.150.198

🇸🇬 68.183.178.130

🇱🇺 64.89.161.56

🇺🇸 50.46.141.125

🇫🇷 45.91.22.64

🇭🇰 42.200.78.166