JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 59.93.249.54

59.93.249.54 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 25%: ?

25%

ISP	NIB (National Internet Backbone)
Usage Type	Fixed Line ISP
ASN	AS9829
Hostname(s)	static.kolkata.bb.59.93.249.54/24.bsnl.in
Domain Name	bsnl.co.in
Country	🇮🇳 India
City	Vellore, Tamil Nadu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 59.93.249.54

Whois 59.93.249.54

IP Abuse Reports for 59.93.249.54:

This IP address has been reported a total of 10 times from 5 distinct sources. 59.93.249.54 was first reported on February 13th 2025, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-19 13:44:02 (7 hours ago)	(mod_security) mod_security (id:240335) triggered by 59.93.249.54 (static.kolkata.bb.59.93.249.54/24 ... show more (mod_security) mod_security (id:240335) triggered by 59.93.249.54 (static.kolkata.bb.59.93.249.54/24.bsnl.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 09:43:57.131167 2026] [security2:error] [pid 30916:tid 30916] [client 59.93.249.54:58803] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 59.93.249.54 (+1 hits since last alert)\|roguetechscene.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "roguetechscene.com"] [uri "/xmlrpc.php"] [unique_id "ajVHnZJ7qHnDo0kPEuQJAgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-19 13:10:14 (8 hours ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇺🇸 TPI-Abuse	2026-06-19 12:45:45 (8 hours ago)	(mod_security) mod_security (id:240335) triggered by 59.93.249.54 (static.kolkata.bb.59.93.249.54/24 ... show more (mod_security) mod_security (id:240335) triggered by 59.93.249.54 (static.kolkata.bb.59.93.249.54/24.bsnl.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 08:45:42.542272 2026] [security2:error] [pid 4910:tid 4910] [client 59.93.249.54:64229] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 59.93.249.54 (+1 hits since last alert)\|crep-psych.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "crep-psych.org"] [uri "/xmlrpc.php"] [unique_id "ajU59ruSfG8Jcg6E91a36gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 11:12:05 (10 hours ago)	(mod_security) mod_security (id:240335) triggered by 59.93.249.54 (static.kolkata.bb.59.93.249.54/24 ... show more (mod_security) mod_security (id:240335) triggered by 59.93.249.54 (static.kolkata.bb.59.93.249.54/24.bsnl.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 07:12:01.422553 2026] [security2:error] [pid 19472:tid 19472] [client 59.93.249.54:52147] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 59.93.249.54 (+1 hits since last alert)\|salernospizza.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "salernospizza.com"] [uri "/xmlrpc.php"] [unique_id "ajUkASvNf7RygCNrMXDz5QAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 10:09:21 (11 hours ago)	(mod_security) mod_security (id:240335) triggered by 59.93.249.54 (static.kolkata.bb.59.93.249.54/24 ... show more (mod_security) mod_security (id:240335) triggered by 59.93.249.54 (static.kolkata.bb.59.93.249.54/24.bsnl.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 06:09:14.959561 2026] [security2:error] [pid 17975:tid 18086] [client 59.93.249.54:58564] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 59.93.249.54 (+1 hits since last alert)\|tradersofficepark.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "tradersofficepark.com"] [uri "/xmlrpc.php"] [unique_id "ajUVSoVzsG5YhCCyFTCRvgAAAU8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 09:33:12 (12 hours ago)	(mod_security) mod_security (id:240335) triggered by 59.93.249.54 (static.kolkata.bb.59.93.249.54/24 ... show more (mod_security) mod_security (id:240335) triggered by 59.93.249.54 (static.kolkata.bb.59.93.249.54/24.bsnl.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 05:33:09.421379 2026] [security2:error] [pid 15621:tid 15621] [client 59.93.249.54:51323] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 59.93.249.54 (+1 hits since last alert)\|waterjetsolutions.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "waterjetsolutions.com"] [uri "/xmlrpc.php"] [unique_id "ajUM1YwHZplIpJKlRZrAAQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 08:57:09 (12 hours ago)	(mod_security) mod_security (id:240335) triggered by 59.93.249.54 (static.kolkata.bb.59.93.249.54/24 ... show more (mod_security) mod_security (id:240335) triggered by 59.93.249.54 (static.kolkata.bb.59.93.249.54/24.bsnl.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 04:57:02.270708 2026] [security2:error] [pid 14320:tid 14320] [client 59.93.249.54:58705] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 59.93.249.54 (+1 hits since last alert)\|advantagept.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "advantagept.org"] [uri "/xmlrpc.php"] [unique_id "ajUEXl4X5dtJp7WlON8dDAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-06-19 08:17:29 (13 hours ago)	IM360 WAF: Rate limit exceeded for XMLRPC DoS	Web App Attack
Anonymous	2025-02-13 17:05:18 (1 year ago)	Try to connect to Port_Scan_445_tcp	Port Scan
🇳🇱 Study Bitcoin 🤗	2025-02-13 09:22:40 (1 year ago)	Port probe to tcp/445 (smb) [srv125]	Port Scan Hacking

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 125.20.245.182

🇨🇿 92.62.233.214

🇺🇸 52.203.68.145

🇳🇱 45.148.10.141

🇺🇸 44.53.125.17

🇸🇬 43.173.177.220

🇬🇧 35.203.210.170

🇭🇰 2404:6800:4005:c00::120

🇩🇪 213.209.159.238

🇫🇮 147.185.133.86

🇮🇩 103.148.100.146

🇳🇬 102.88.21.136

🇵🇱 87.251.64.158

🇨🇳 27.19.72.50

🇺🇸 20.169.106.209

🇷🇴 2.57.121.112

🇧🇷 2804:14d:9e85:885a:5094:2b08:abea:4048

🇺🇸 205.210.31.97

🇹🇼 111.242.24.28

🇺🇸 66.132.195.35