JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 141.101.97.2

141.101.97.2 was found in our database!

This IP was reported 90 times. Confidence of Abuse is 0%: ?

ISP	CloudFlare CDN network
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Important Note: 141.101.97.2 is an IP address from within our whitelist belonging to the subnet 141.101.64.0/18, which we identify as: "Cloudflare Reverse Proxy".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 141.101.97.2

Whois 141.101.97.2

IP Abuse Reports for 141.101.97.2:

This IP address has been reported a total of 90 times from 18 distinct sources. 141.101.97.2 was first reported on April 7th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-11 04:09:24 (1 week ago)	Wordpress malicious attack:[octawp]	Web App Attack
Anonymous	2026-04-03 18:24:29 (2 months ago)	2026-04-03T20:24:26.911979+02:00 nimbus sshd[9741]: Invalid user ftpuser from 141.101.97.2 port 1190 ... show more 2026-04-03T20:24:26.911979+02:00 nimbus sshd[9741]: Invalid user ftpuser from 141.101.97.2 port 11900 2026-04-03T20:24:27.165348+02:00 nimbus sshd[9741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.101.97.2 2026-04-03T20:24:28.624841+02:00 nimbus sshd[9741]: Failed password for invalid user ftpuser from 141.101.97.2 port 11900 ssh2 ... show less	Brute-Force SSH
Anonymous	2026-04-03 14:11:46 (2 months ago)	2026-04-03T16:11:42.524360+02:00 nimbus sshd[6351]: Invalid user testing from 141.101.97.2 port 2116 ... show more 2026-04-03T16:11:42.524360+02:00 nimbus sshd[6351]: Invalid user testing from 141.101.97.2 port 21162 2026-04-03T16:11:43.092009+02:00 nimbus sshd[6351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.101.97.2 2026-04-03T16:11:45.467483+02:00 nimbus sshd[6351]: Failed password for invalid user testing from 141.101.97.2 port 21162 ssh2 ... show less	Brute-Force SSH
🇫🇷 Campus France	2026-03-20 05:33:55 (3 months ago)	[Fri Mar 20 06:33:54.066608 2026] [php:error] [pid 2884201] [client 141.101.97.2:10527] script '/var ... show more [Fri Mar 20 06:33:54.066608 2026] [php:error] [pid 2884201] [client 141.101.97.2:10527] script '/var/www/html/inputs.php' not found or unable to stat [Fri Mar 20 06:33:55.529051 2026] [php:error] [pid 2884201] [client 141.101.97.2:10527] script '/var/www/html/file.php' not found or unable to stat [Fri Mar 20 06:33:55.529051 2026] [php:error] [pid 2884201] [client 141.101.97.2:10527] script '/var/www/html/file.php' not found or unable to stat [Fri Mar 20 06:33:55.577109 2026] [php:error] [pid 2884201] [client 141.101.97.2:10527] script '/var/www/html/byp.php' not found or unable to stat ... show less	Brute-Force Web App Attack
🇫🇷 Campus France	2026-03-19 04:24:43 (3 months ago)	[Thu Mar 19 05:24:41.964082 2026] [php:error] [pid 2052297] [client 141.101.97.2:13444] script '/var ... show more [Thu Mar 19 05:24:41.964082 2026] [php:error] [pid 2052297] [client 141.101.97.2:13444] script '/var/www/html/time.php' not found or unable to stat [Thu Mar 19 05:24:42.038028 2026] [php:error] [pid 2052297] [client 141.101.97.2:13444] script '/var/www/html/token.php' not found or unable to stat [Thu Mar 19 05:24:42.156963 2026] [php:error] [pid 2052297] [client 141.101.97.2:13444] script '/var/www/html/tz.php' not found or unable to stat [Thu Mar 19 05:24:42.201554 2026] [php:error] [pid 2052297] [client 141.101.97.2:13444] script '/var/www/html/u.php' not found or unable to stat [Thu Mar 19 05:24:42.363158 2026] [php:error] [pid 2052297] [client 141.101.97.2:13444] script '/var/www/html/up.php' not found or unable to stat ... show less	Brute-Force Web App Attack
🇩🇪 ReporTR	2026-03-16 14:18:17 (3 months ago)	Fail2Ban plesk-modsecurity: 3 attempts from 141.101.97.2 (Country: <country>, <rdns>)	Hacking Web App Attack
🇫🇷 Dechavanne	2026-03-08 18:00:31 (3 months ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇯🇵 S.O.B.A. Dev.	2026-02-14 05:33:52 (4 months ago)	Persistent port scanning or vulnerability scanning	Port Scan
🇩🇪 Séfora Srl	2026-02-09 14:00:25 (4 months ago)	Failed attempt detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇫🇷 Campus France	2026-02-09 11:20:15 (4 months ago)	[Sun Feb 08 22:42:08.627861 2026] [php:error] [pid 2116705] [client 141.101.97.2:9310] script '/var/ ... show more [Sun Feb 08 22:42:08.627861 2026] [php:error] [pid 2116705] [client 141.101.97.2:9310] script '/var/www/html/class-t.api.php' not found or unable to stat [Mon Feb 09 12:20:02.944438 2026] [php:error] [pid 2580540] [client 141.101.97.2:10294] script '/var/www/html/22name.php' not found or unable to stat [Mon Feb 09 12:20:13.518676 2026] [php:error] [pid 2569821] [client 141.101.97.2:12421] script '/var/www/html/ms.php' not found or unable to stat [Mon Feb 09 12:20:14.441706 2026] [php:error] [pid 2569821] [client 141.101.97.2:12421] script '/var/www/html/bgymj.php' not found or unable to stat [Mon Feb 09 12:20:15.358837 2026] [php:error] [pid 2569821] [client 141.101.97.2:12421] script '/var/www/html/lib.php' not found or unable to stat ... show less	Brute-Force Web App Attack
🇫🇷 Campus France	2026-02-03 13:40:27 (4 months ago)	[Tue Feb 03 14:40:16.897780 2026] [php:error] [pid 2191799] [client 141.101.97.2:10470] script '/var ... show more [Tue Feb 03 14:40:16.897780 2026] [php:error] [pid 2191799] [client 141.101.97.2:10470] script '/var/www/html/wsd.php' not found or unable to stat [Tue Feb 03 14:40:17.173021 2026] [php:error] [pid 2191799] [client 141.101.97.2:10470] script '/var/www/html/Wp-good.php' not found or unable to stat [Tue Feb 03 14:40:23.795271 2026] [php:error] [pid 2191524] [client 141.101.97.2:10760] script '/var/www/html/x.php' not found or unable to stat [Tue Feb 03 14:40:26.598692 2026] [php:error] [pid 2191524] [client 141.101.97.2:10760] script '/var/www/html/shell.php' not found or unable to stat [Tue Feb 03 14:40:26.774933 2026] [php:error] [pid 2191524] [client 141.101.97.2:10760] script '/var/www/html/sxo.php' not found or unable to stat ... show less	Brute-Force Web App Attack
🇫🇷 Campus France	2025-12-13 03:16:25 (6 months ago)	[Sat Dec 13 04:15:59.863285 2025] [php:error] [pid 3800760] [client 141.101.97.2:10755] script '/var ... show more [Sat Dec 13 04:15:59.863285 2025] [php:error] [pid 3800760] [client 141.101.97.2:10755] script '/var/www/html/byp.php' not found or unable to stat [Sat Dec 13 04:16:03.546419 2025] [php:error] [pid 3800760] [client 141.101.97.2:10755] script '/var/www/html/ioxi-o.php' not found or unable to stat [Sat Dec 13 04:16:05.375292 2025] [php:error] [pid 3800760] [client 141.101.97.2:10755] script '/var/www/html/ab.php' not found or unable to stat [Sat Dec 13 04:16:19.576640 2025] [php:error] [pid 3800137] [client 141.101.97.2:14257] script '/var/www/html/wp-content.php' not found or unable to stat [Sat Dec 13 04:16:24.429686 2025] [php:error] [pid 3800137] [client 141.101.97.2:14257] script '/var/www/html/jp.php' not found or unable to stat ... show less	Brute-Force Web App Attack
🇺🇸 thefoofighter	2025-10-06 00:44:56 (8 months ago)	[Mon Oct 06 00:44:56.034135 2025] [:error] [pid 2532188] [client 141.101.97.2:38660] [client 141.101 ... show more [Mon Oct 06 00:44:56.034135 2025] [:error] [pid 2532188] [client 141.101.97.2:38660] [client 141.101.97.2] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "93"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.2"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "www.cathalmcnally.com"] [uri "/.git/config"] [unique_id "aOMRCP2P1VmP7qSDuBkLlQAAABk"] [Mon Oct 06 00:44:56.198596 2025] [:error] [pid 2532188] [client 141.101.97.2:38660] [client 141.101.97.2] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "93"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_C ... show less	Bad Web Bot Web App Attack
🇫🇷 dynamix	2025-07-06 17:31:03 (11 months ago)	Multiple WAF Violations	Web App Attack
🇳🇱 mawan	2025-07-03 05:42:14 (11 months ago)	Suspected of having performed illicit activity on AMS server.	Web App Attack

Showing 1 to 15 of 90 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.197.85.17

🇳🇱 176.65.148.242

🇮🇳 172.83.83.194

🇩🇪 104.248.21.74

🇨🇳 101.42.41.164

🇨🇦 85.217.149.7

🇺🇸 64.62.197.178

🇬🇧 35.203.210.211

🇺🇸 35.130.111.146

🇻🇳 14.231.235.119

🇺🇸 13.220.111.43

🇧🇷 192.141.106.136

🇺🇸 173.61.229.160

🇲🇦 160.179.9.99

🇨🇦 147.182.156.161

🇿🇦 102.33.36.254

🇫🇷 85.217.140.6

🇱🇻 81.30.98.158

🇺🇸 65.25.203.255

🇳🇱 50.7.230.5