JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 37.46.113.142

37.46.113.142 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 34%: ?

34%

ISP	AltusHost Luxembourg Network
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51430
Hostname(s)	lux-net-ip.as51430.net
Domain Name	altushost.com
Country	🇳🇱 Netherlands
City	Zwolle, Overijssel

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 37.46.113.142

Whois 37.46.113.142

IP Abuse Reports for 37.46.113.142:

This IP address has been reported a total of 32 times from 25 distinct sources. 37.46.113.142 was first reported on November 16th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 natdem.org	2026-06-11 00:00:16 (2 weeks ago)	Web: .env file probe, Scanner (masscan)	Web App Attack Hacking
🇺🇸 Rayulcifer	2026-06-10 10:13:49 (2 weeks ago)	37.46.113.142 - - [10/Jun/2026:05:13:48 -0500] "GET /.env HTTP/1.1" 200 871 "-" "Mozilla/5.0 (Macint ... show more 37.46.113.142 - - [10/Jun/2026:05:13:48 -0500] "GET /.env HTTP/1.1" 200 871 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.1.1 Safari/605.1.15" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
🇺🇸 xmission.com	2026-05-16 16:51:20 (1 month ago)	Blocked by UFW (TCP on 34946) Source port: 52081 TTL: 46 Packet length: 60 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 34946) Source port: 52081 TTL: 46 Packet length: 60 TOS: 0x08 This report (for 37.46.113.142) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 consul.to	2026-05-16 04:56:08 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 Savvii	2026-05-08 23:28:48 (1 month ago)	10 attempts against mh_ha-misc-ban on pf221105	Brute-Force Web App Attack
🇮🇹 ciccio diddo	2026-05-08 23:25:49 (1 month ago)	CMS/WP Exploit multiple 404 port:Tcp/80,443	Brute-Force Web App Attack
🇺🇸 mnsf	2026-05-08 21:06:20 (1 month ago)	Scanning/Probing (20)	Brute-Force Web App Attack
🇬🇧 Mendip_Defender	2026-05-08 20:29:09 (1 month ago)	37.46.113.142 - - [08/May/2026:21:29:05 +0100] "GET /wp-content/plugins/ninja-forms-uploads/readme.t ... show more 37.46.113.142 - - [08/May/2026:21:29:05 +0100] "GET /wp-content/plugins/ninja-forms-uploads/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36" 37.46.113.142 - - [08/May/2026:21:29:05 +0100] "GET /wp-content/plugins/ninja-forms-uploads/readme.txt HTTP/2.0" 403 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36" 37.46.113.142 - - [08/May/2026:21:29:05 +0100] "GET /wp-content/plugins/advanced-custom-post-type/changelog.md HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; Pixel 6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4844.58 Mobile Safari/537.36" ... show less	Hacking Web App Attack
🇫🇷 dynamix	2026-05-08 20:10:35 (1 month ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 18:48:56 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 37.46.113.142 (lux-net-ip.as51430.net): 1 in th ... show more (mod_security) mod_security (id:210730) triggered by 37.46.113.142 (lux-net-ip.as51430.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 14:48:50.574560 2026] [security2:error] [pid 16068:tid 16093] [client 37.46.113.142:7902] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|abusaimeh.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "abusaimeh.com"] [uri "/wp-content/debug.log"] [unique_id "af4wEtUTUVTYtPviwGZ4VwAAARU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-08 14:58:26 (1 month ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇩🇪 big-cloud.nl	2026-05-08 14:02:13 (1 month ago)	Try to access /wp-content/plugins/advanced-custom-post-type/changelog.md	Web App Attack
🇫🇷 masterguru	2026-05-08 13:53:36 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 37.46.113.142 (LU/Luxembourg/lux-net-ip.as5143 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 37.46.113.142 (LU/Luxembourg/lux-net-ip.as51430.net): 1 in the last 3600 secs (0-193) show less	Hacking
🇺🇸 TPI-Abuse	2026-05-08 12:57:10 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 37.46.113.142 (lux-net-ip.as51430.net): 1 in th ... show more (mod_security) mod_security (id:210492) triggered by 37.46.113.142 (lux-net-ip.as51430.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 08:57:02.175626 2026] [security2:error] [pid 24905:tid 24905] [client 37.46.113.142:32948] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ablogisticsgroup.com"] [uri "/wp-content/plugins/usc-e-shop/functions/content-log.php"] [unique_id "af3dngv-3dEwjiOeeY8EPQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 agenciahypelab.com.br	2026-05-08 11:24:24 (1 month ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 218.151.26.122

🇩🇪 217.160.255.92

🇨🇳 202.108.14.226

🇺🇸 198.98.56.227

🇺🇸 193.19.109.2

🇺🇸 64.62.197.142

🇬🇧 31.14.254.84

🇧🇪 198.235.24.219

🇬🇧 195.206.182.194

🇲🇽 187.192.86.153

🇮🇹 147.53.195.50

🇵🇰 144.48.121.126

🇺🇸 136.144.33.7

🇨🇳 122.96.28.27

🇮🇳 103.203.175.199

🇮🇳 103.148.118.211

🇷🇺 95.107.0.133

🇫🇷 85.217.140.51

🇲🇦 81.192.46.36

🇺🇸 52.177.169.196