JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2.49.144.102

2.49.144.102 was found in our database!

This IP was reported 58 times. Confidence of Abuse is 100%: ?

100%

ISP	Emirates Telecommunications Corporation
Usage Type	Fixed Line ISP
ASN	AS5384
Hostname(s)	bba-2-49-144-102.alshamil.net.ae
Domain Name	etisalat.ae
Country	🇦🇪 United Arab Emirates
City	Dubai, Dubai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2.49.144.102

Whois 2.49.144.102

IP Abuse Reports for 2.49.144.102:

This IP address has been reported a total of 58 times from 32 distinct sources. 2.49.144.102 was first reported on May 18th 2026, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 decode5921	2026-06-10 18:00:04 (7 hours ago)	Honeypot hit (honeypot:wp) — probed a non-existent bait path on a site that does not run that softwa ... show more Honeypot hit (honeypot:wp) — probed a non-existent bait path on a site that does not run that software. show less	Brute-Force Web App Attack
🇫🇮 decode5921	2026-06-09 17:45:03 (1 day ago)	Honeypot hit (honeypot:wp) — probed a non-existent bait path on a site that does not run that softwa ... show more Honeypot hit (honeypot:wp) — probed a non-existent bait path on a site that does not run that software. show less	Brute-Force Web App Attack
🇫🇮 decode5921	2026-06-08 17:30:03 (2 days ago)	Honeypot hit (honeypot:wp) — probed a non-existent bait path on a site that does not run that softwa ... show more Honeypot hit (honeypot:wp) — probed a non-existent bait path on a site that does not run that software. show less	Brute-Force Web App Attack
🇬🇧 consul.to	2026-06-07 19:59:48 (3 days ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇮 decode5921	2026-06-07 17:15:04 (3 days ago)	Honeypot hit (honeypot:wp) — probed a non-existent bait path on a site that does not run that softwa ... show more Honeypot hit (honeypot:wp) — probed a non-existent bait path on a site that does not run that software. show less	Brute-Force Web App Attack
🇩🇪 4server	2026-06-07 04:53:45 (3 days ago)	[SunJun0706:53:41.1311292026][security2:error][pid3314718:tid3314820][client2.49.144.102:0]ModSecuri ... show more [SunJun0706:53:41.1311292026][security2:error][pid3314718:tid3314820][client2.49.144.102:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"cst-ranghetti.ch\"][uri\"/xmlrpc.php\"][unique_id\"aiT5VTXnEwBE2100VRj2_AAAANA\"] show less	Port Scan Brute-Force Web App Attack
🇫🇮 decode5921	2026-06-06 17:00:05 (4 days ago)	Honeypot hit (honeypot:wp) — probed a non-existent bait path on a site that does not run that softwa ... show more Honeypot hit (honeypot:wp) — probed a non-existent bait path on a site that does not run that software. show less	Brute-Force Web App Attack
🇦🇹 Pingger Shikkoken	2026-06-05 13:08:27 (5 days ago)	2026-06-05T13:08:27+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC ... show more 2026-06-05T13:08:27+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=2.49.144.102 DST=10.1.1.2 LEN=52 TOS=0x00 PREC=0x00 TTL=114 ID=36930 DF PROTO=TCP SPT=45904 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0 2026-06-05T13:08:28+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=2.49.144.102 DST=10.1.1.2 LEN=52 TOS=0x00 PREC=0x00 TTL=114 ID=36931 DF PROTO=TCP SPT=45904 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0 2026-06-05T13:08:30+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=2.49.144.102 DST=10.1.1.2 LEN=52 TOS=0x00 PREC=0x00 TTL=114 ID=36932 DF PROTO=TCP SPT=45904 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0 show less	Hacking Bad Web Bot
Anonymous	2026-06-05 00:58:10 (6 days ago)	Attac	Brute-Force
🇳🇱 Site.eu	2026-06-04 17:45:13 (6 days ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇬🇧 consul.to	2026-06-04 09:33:18 (6 days ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 big-cloud.nl	2026-06-04 01:58:15 (6 days ago)	Try to access /xmlrpc.php	Web App Attack
🇳🇱 i-turnradio.nl	2026-06-03 04:36:35 (1 week ago)	2026-06-03 @ 06:36:35 (CET) ~ Blocked for trying to access: /xmlrpc.php	Web App Attack
🇫🇷 dynamix	2026-06-02 09:52:24 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇨🇭 4server	2026-06-01 20:01:05 (1 week ago)	[MonJun0122:01:01.5692712026][security2:error][pid2264078:tid2264425][client2.49.144.102:0]ModSecuri ... show more [MonJun0122:01:01.5692712026][security2:error][pid2264078:tid2264425][client2.49.144.102:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"367\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"behindthemoon.ch\"][uri\"/xmlrpc.php\"][unique_id\"ah3k_ZZr2wZOwzN-kVK6gAAAAAE\"] show less	Hacking Web App Attack

Showing 1 to 15 of 58 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇺 185.43.207.46

🇺🇸 165.22.0.54

🇺🇸 162.216.150.77

🇺🇸 162.216.149.186

🇺🇸 96.126.109.105

🇺🇸 71.6.237.64

🇺🇸 65.86.146.152

🇳🇱 46.8.68.144

🇵🇰 119.156.28.157

🇻🇳 115.78.9.138

🇺🇸 107.150.96.37

🇩🇪 69.5.169.218

🇨🇳 36.111.42.36

🇮🇩 34.128.126.140

🇺🇸 18.119.209.50

🇺🇦 195.18.18.177

🇳🇱 183.81.169.76

🇯🇵 180.49.214.94

🇮🇷 176.65.240.242

🇫🇷 173.212.248.253