JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 145.239.3.48

145.239.3.48 was found in our database!

This IP was reported 353 times. Confidence of Abuse is 0%: ?

ISP	OVH Dedicated Servers LIM
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	lim106.truehost.cloud
Domain Name	ovh.net
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 145.239.3.48

Whois 145.239.3.48

IP Abuse Reports for 145.239.3.48:

This IP address has been reported a total of 353 times from 115 distinct sources. 145.239.3.48 was first reported on November 12th 2021, and the most recent report was 7 months ago.

Old Reports: The most recent abuse report for this IP address is from 7 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-10-18 20:09:15 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 18 16:09:08.467260 2025] [security2:error] [pid 27882:tid 27882] [client 145.239.3.48:35808] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|coolcustomweddingproducts.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "coolcustomweddingproducts.com"] [uri "/wp-json/Wp/v2/users"] [unique_id "aPPz5M4C9CYLq9Ahu5OR_AAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-18 06:52:20 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 18 02:52:14.494251 2025] [security2:error] [pid 23264:tid 23264] [client 145.239.3.48:53356] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.directcch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.directcch.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aPM5HgWmqH5lGQcnzrNrzwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-18 06:29:21 (7 months ago)	[redacted] 145.239.3.48 - - [18/Oct/2025:08:29:19 +0200] "POST /xmlrpc.php HTTP/2.0" 403 199 "-" "Mo ... show more [redacted] 145.239.3.48 - - [18/Oct/2025:08:29:19 +0200] "POST /xmlrpc.php HTTP/2.0" 403 199 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063" [redacted] 145.239.3.48 - - [18/Oct/2025:08:29:20 +0200] "POST /xmlrpc.php HTTP/2.0" 403 199 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063" [redacted] 145.239.3.48 - - [18/Oct/2025:08:29:20 +0200] "POST /xmlrpc.php HTTP/2.0" 403 199 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063" [redacted] 145.239.3.48 - - [18/Oct/2025:08:29:20 +0200] "POST /xmlrpc.php HTTP/2.0" 403 199 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063" [redacted] 145.239.3.48 - - [18/Oct/2025:08:29:20 +0200] "POST /xmlrpc.php HTTP/2.0" 403 199 " ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-10-16 16:20:44 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 16 12:20:40.029610 2025] [security2:error] [pid 32392:tid 32420] [client 145.239.3.48:43052] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|cynosurelandscapers.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cynosurelandscapers.com"] [uri "/wp-json/Wp/v2/users"] [unique_id "aPEbWAaAHJ0xBeUUS0nj8QAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 stinpriza	2025-10-16 14:47:03 (7 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2025-10-16 13:34:36 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 16 09:34:29.552915 2025] [security2:error] [pid 307:tid 307] [client 145.239.3.48:54634] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.my-spec.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.my-spec.com"] [uri "/wp-json/Wp/v2/users"] [unique_id "aPD0Zb0J45Wr5Q0aaS8OhQAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-10-12 10:57:48 (8 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇩🇪 Packets-Decreaser.NET	2025-10-11 22:59:34 (8 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇩🇪 Marc	2025-10-11 20:03:11 (8 months ago)		Brute-Force
🇺🇸 TPI-Abuse	2025-01-10 03:53:32 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 09 22:53:27.682444 2025] [security2:error] [pid 10795:tid 10795] [client 145.239.3.48:60980] [client 145.239.3.48] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|drjasonkolber.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "drjasonkolber.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z4CZt-j3B7zeq4XP4Iik7wAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-01-10 02:18:10 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 09 21:18:06.652002 2025] [security2:error] [pid 6462:tid 6462] [client 145.239.3.48:36652] [client 145.239.3.48] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|wsspy.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wsspy.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z4CDXhMvwpLD5RJiOtacsQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-01-09 17:42:45 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 145.239.3.48 (lim106.truehost.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 09 12:42:36.975911 2025] [security2:error] [pid 19595:tid 19595] [client 145.239.3.48:60958] [client 145.239.3.48] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|opmasterpainter.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "opmasterpainter.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z4AKjJwV5cPrb6enp7rslgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 weblite	2025-01-07 22:59:18 (1 year ago)	WP_XMLRPC_ABUSE	Brute-Force Web App Attack
🇵🇱 bmino.pl	2025-01-07 02:53:04 (1 year ago)	Autoban 145.239.3.48 BLOCK ACCESS	Web App Attack
🇮🇹 LTM	2025-01-06 07:20:01 (1 year ago)	WebServer - Attempts to exploit	Hacking Brute-Force Web App Attack

Showing 1 to 15 of 353 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇰 2a03:5440:1:4902:9999::243

🇭🇰 34.96.201.184

🇩🇪 8.209.101.209

🇰🇷 114.203.87.250

🇨🇳 111.122.249.2

🇨🇳 101.35.210.162

🇧🇬 91.191.209.98

🇺🇸 20.163.33.23

🇷🇴 193.46.255.86

🇨🇳 180.153.236.178

🇸🇬 167.71.201.163

🇵🇱 138.124.20.112

🇮🇳 117.216.210.246

🇨🇳 112.19.161.224

🇳🇱 50.7.127.99

🇨🇳 36.135.103.30

🇷🇴 2.57.122.177

🇩🇪 217.154.144.111

🇺🇸 208.84.101.168

🇯🇵 195.40.121.124