JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 145.239.10.14

145.239.10.14 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 1%: ?

ISP	OVH Dedicated Servers RBX
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Domain Name	ovh.net
Country	🇫🇷 France
City	Lille, Hauts-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 145.239.10.14

Whois 145.239.10.14

IP Abuse Reports for 145.239.10.14:

This IP address has been reported a total of 14 times from 11 distinct sources. 145.239.10.14 was first reported on November 18th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nyt	2026-05-14 19:01:23 (3 weeks ago)	Request flood (301/60s), Request flood (302/60s)	Bad Web Bot Web App Attack
🇦🇺 oncord	2025-01-17 14:05:28 (1 year ago)	Form spam	Web Spam
🇮🇹 Progetto1	2025-01-16 13:04:01 (1 year ago)	Mail - Multiple failed login attempts	Brute-Force Exploited Host
🇦🇺 oncord	2025-01-16 10:15:56 (1 year ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-01-16 02:58:54 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 145.239.10.14 (ns3083845.ip-145-239-10.eu): 1 i ... show more (mod_security) mod_security (id:210730) triggered by 145.239.10.14 (ns3083845.ip-145-239-10.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 15 21:58:49.006161 2025] [security2:error] [pid 4255:tid 4255] [client 145.239.10.14:33947] [client 145.239.10.14] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|gamepart.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "gamepart.com"] [uri "/home/tancedi1/gamepart.com"] [unique_id "Z4h16OudA4c32yNKyEueegAAAA8"], referer: http://gamepart.com/home/tancedi1/gamepart.com show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 syokadmin	2025-01-10 14:58:11 (1 year ago)	(smtpauth) Failed SMTP AUTH login from 145.239.10.14 (FR/France/ns3083845.ip-145-239-10.eu): 2 in th ... show more (smtpauth) Failed SMTP AUTH login from 145.239.10.14 (FR/France/ns3083845.ip-145-239-10.eu): 2 in the last 3600 secs show less	Brute-Force
🇬🇧 Aetherweb Ark	2025-01-06 14:31:45 (1 year ago)	145.239.10.14 (FR/France/ns3083845.ip-145-239-10.eu), N distributed imapd attacks on account in the ... show more 145.239.10.14 (FR/France/ns3083845.ip-145-239-10.eu), N distributed imapd attacks on account in the last X secs show less	Hacking
🇬🇧 gtabomber	2025-01-06 11:09:54 (1 year ago)	2025-01-06T11:09:47.316046 espaceonline.co.uk auth[11471]: pam_unix(dovecot:auth): authentication fa ... show more 2025-01-06T11:09:47.316046 espaceonline.co.uk auth[11471]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot [email protected] rhost=145.239.10.14 2025-01-06T11:09:48.844924 espaceonline.co.uk dovecot[1929]: auth-worker(11471): pam([email protected],145.239.10.14,<DvWaqgcrl7OR7woO>): unknown user (given password: Panafonic2$) 2025-01-06T11:09:50.393095 espaceonline.co.uk dovecot[1929]: imap-login: Disconnected (auth failed, 1 attempts in 3 secs): user=<[email protected]>, method=PLAIN, rip=145.239.10.14, lip=176.126.240.132, TLS: Disconnected, session=<DvWaqgcrl7OR7woO> ... show less	Brute-Force SSH
Anonymous	2025-01-06 05:59:38 (1 year ago)	Ports: 143,993; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
Anonymous	2025-01-06 05:55:39 (1 year ago)	BruteForce IMAP/POP3	Brute-Force
🇩🇪 David Ferneding	2025-01-04 18:05:12 (1 year ago)	Part of large-scale ddos-attack, 385934 requests from this ip	DDoS Attack
🇧🇪 cmbplf	2024-12-29 19:12:23 (1 year ago)	6 /?seX=HOsGm (2mos3w4d)	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2024-12-05 18:04:46 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 145.239.10.14 (ns3083845.ip-145-239-10.eu): 1 i ... show more (mod_security) mod_security (id:225170) triggered by 145.239.10.14 (ns3083845.ip-145-239-10.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 13:04:39.236321 2024] [security2:error] [pid 25646:tid 25646] [client 145.239.10.14:43597] [client 145.239.10.14] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fitnessgearmagazine.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fitnessgearmagazine.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z1HrN0Pj4AnZ89BHjnI5QQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2024-11-18 19:01:45 (1 year ago)	2 /?URdX=WmDAJ, /?YBBz=RmnT (3w2d6h)	Brute-Force Bad Web Bot

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 64.62.156.70

🇧🇪 2a00:1450:400c:c1d::120

🇩🇪 213.209.159.56

🇧🇷 205.210.31.197

🇧🇪 198.235.24.219

🇧🇪 198.235.24.202

🇦🇪 198.38.94.14

🇺🇸 147.185.132.64

🇮🇩 125.164.35.177

🇷🇺 109.194.108.203

🇺🇸 100.28.191.174

🇺🇸 64.62.156.76

🇱🇹 45.227.254.170

🇨🇳 39.70.30.197

🇺🇸 38.43.93.182

🇮🇳 34.14.175.28

🇩🇪 8.209.127.2

🇰🇿 2.135.15.244

🇷🇴 2.57.121.112

🇺🇸 2607:f8b0:4001:c5f::12a