AbuseIPDB » 104.245.240.17
104.245.240.17
This IP was reported 7 times. Confidence of
Abuse
is 1% : ?
ISP
VitalKey
Usage Type
Fixed Line ISP
ASN
AS213954
Domain Name
vitalkey.io
Country
๐ซ๐ฎ
Finland
City
Helsinki, Uusimaa
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 104.245.240.17 :
This IP address has been reported a total of
7
times from
5 distinct
sources.
104.245.240.17 was first reported on
August 9th 2025 , and the most recent report was
3 weeks ago
Old Reports:
The most recent abuse report for this IP address is from
3 weeks ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ฑ๐ป
garmtech.com
2026-05-15 23:31:51
(3 weeks ago)
Attempted access to sensitive endpoint (/wp-login.php) detected. Automated scan or unauthorized prob ...
show more
Attempted access to sensitive endpoint (/wp-login.php) detected. Automated scan or unauthorized probing.
show less
Web App Attack
๐ซ๐ท
tilellit.pro
2026-02-13 16:42:24
(3 months ago)
Fail2Ban banned 104.245.240.17 for security violations in jail wp-armour. Log: 2026/02/13 16:42:23 [ ...
show more
Fail2Ban banned 104.245.240.17 for security violations in jail wp-armour. Log: 2026/02/13 16:42:23 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.245.240.17 | Target: wplogin" , client: 104.245.240.17, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐ซ๐ท
tilellit.pro
2026-02-12 04:41:14
(3 months ago)
Fail2Ban banned 104.245.240.17 for security violations in jail wp-armour. Log: 2026/02/12 04:41:14 [ ...
show more
Fail2Ban banned 104.245.240.17 for security violations in jail wp-armour. Log: 2026/02/12 04:41:14 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.245.240.17 | Target: wplogin" , client: 104.245.240.17, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐บ๐ธ
masterguru
2025-08-12 20:08:40
(9 months ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-169)
Hacking
๐บ๐ธ
TPI-Abuse
2025-08-11 12:26:59
(9 months ago)
(mod_security) mod_security (id:240335) triggered by 104.245.240.17 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 104.245.240.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 11 08:26:52.013455 2025] [security2:error] [pid 3043:tid 3043] [client 104.245.240.17:54488] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 104.245.240.17 (+1 hits since last alert)|deutschpunkt.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "deutschpunkt.com"] [uri "/xmlrpc.php"] [unique_id "aJnhjEJJRg877b3l-ptwawAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
LRob.fr
2025-08-09 05:30:19
(9 months ago)
Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail
Bad Web Bot
Web App Attack
๐บ๐ธ
masterguru
2025-08-09 03:00:13
(9 months ago)
(xmlrpc) Apache: Failed xmlrpc access from 104.245.240.17 (NL/The Netherlands/-): 10 in the last 360 ...
show more
(xmlrpc) Apache: Failed xmlrpc access from 104.245.240.17 (NL/The Netherlands/-): 10 in the last 3600 secs (0-169)
show less
Hacking
Showing 1 to
7
of 7 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: