JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.232.140.208

91.232.140.208 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 37%: ?

37%

ISP	Rudna-Net Mariola Piatkowska
Usage Type	Fixed Line ISP
ASN	AS198214
Hostname(s)	91.232.140.208.ip.rudna-net.pl
Domain Name	rudna-net.pl
Country	🇵🇱 Poland
City	Sosnowiec, Silesia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.232.140.208

Whois 91.232.140.208

IP Abuse Reports for 91.232.140.208:

This IP address has been reported a total of 8 times from 5 distinct sources. 91.232.140.208 was first reported on June 24th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 screwlooseit.com.au	2026-06-28 14:39:39 (1 hour ago)	Blocked by CSF 13 firewall - Rule: XMLRPC PL/Poland/91.232.140.208.ip.rudna-net.pl	Web App Attack
🇫🇷 masterguru	2026-06-28 13:50:56 (2 hours ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
Anonymous	2026-06-28 10:46:41 (5 hours ago)	(wordpress) Failed wordpress login from 91.232.140.208 (PL/Poland/91.232.140.208.ip.rudna-net.pl)	Brute-Force
🇫🇮 YF	2026-06-27 16:01:04 (1 day ago)	xmlrpc.php Potential DDoS or brute force	DDoS Attack Brute-Force
🇪🇸 masterguru	2026-06-27 15:23:45 (1 day ago)	(xmlrpc) Failed xmlrpc access from 91.232.140.208 (PL/Poland/91.232.140.208.ip.rudna-net.pl): 5 in t ... show more (xmlrpc) Failed xmlrpc access from 91.232.140.208 (PL/Poland/91.232.140.208.ip.rudna-net.pl): 5 in the last 3600 secs (0-122) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-27 10:25:17 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 91.232.140.208 (91.232.140.208.ip.rudna-net.pl) ... show more (mod_security) mod_security (id:240335) triggered by 91.232.140.208 (91.232.140.208.ip.rudna-net.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 06:25:13.509699 2026] [security2:error] [pid 13429:tid 13429] [client 91.232.140.208:57084] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 91.232.140.208 (+1 hits since last alert)\|tenmenband.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "tenmenband.com"] [uri "/xmlrpc.php"] [unique_id "aj-lCQTWh-ZF_Obi6Z9rlgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 19:27:07 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 91.232.140.208 (91.232.140.208.ip.rudna-net.pl) ... show more (mod_security) mod_security (id:240335) triggered by 91.232.140.208 (91.232.140.208.ip.rudna-net.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 15:26:59.762324 2026] [security2:error] [pid 22852:tid 22852] [client 91.232.140.208:59511] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 91.232.140.208 (+1 hits since last alert)\|christaylorjazzpianist.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "christaylorjazzpianist.com"] [uri "/xmlrpc.php"] [unique_id "aj2BA8YrJp766s5jbd_eRwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 22:11:23 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 91.232.140.208 (91.232.140.208.ip.rudna-net.pl) ... show more (mod_security) mod_security (id:240335) triggered by 91.232.140.208 (91.232.140.208.ip.rudna-net.pl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 18:11:16.224626 2026] [security2:error] [pid 7252:tid 7252] [client 91.232.140.208:54528] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 91.232.140.208 (+1 hits since last alert)\|n4fh.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "n4fh.com"] [uri "/xmlrpc.php"] [unique_id "ajxWBGmHwqvdNMaeNtELWAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.189.98.96

🇫🇮 193.66.151.86

🇵🇭 165.154.59.90

🇺🇸 152.32.207.229

🇺🇸 147.185.132.255

🇨🇳 61.184.57.220

🇺🇸 3.95.187.137

🇵🇰 210.87.64.31

🇺🇸 147.185.132.120

🇺🇸 66.132.186.235

🇺🇸 65.49.20.87

🇻🇳 14.191.184.92

🇺🇸 216.73.161.164

🇧🇪 198.235.24.158

🇫🇮 178.20.210.208

🇺🇸 172.202.9.120

🇺🇸 147.182.177.180

🇳🇱 88.210.63.69

🇷🇺 81.177.101.45

🇺🇸 72.253.251.7