JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 41.210.147.80

41.210.147.80 was found in our database!

This IP was reported 58 times. Confidence of Abuse is 58%: ?

58%

ISP	3G, 4G,5G MOBILE-NETWORK
Usage Type	Mobile ISP
ASN	AS20294
Hostname(s)	h1350.n1.ips.mtn.co.ug
Domain Name	mtn.com
Country	🇺🇬 Uganda
City	Kampala, Central Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 41.210.147.80

Whois 41.210.147.80

IP Abuse Reports for 41.210.147.80:

This IP address has been reported a total of 58 times from 36 distinct sources. 41.210.147.80 was first reported on April 4th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Baking333	2026-05-12 15:22:57 (3 weeks ago)	[redacted] 41.210.147.80 - - [12/May/2026:16:22:54 +0100] "POST /[redacted] HTTP/1.1" 405 4877 0/328 ... show more [redacted] 41.210.147.80 - - [12/May/2026:16:22:54 +0100] "POST /[redacted] HTTP/1.1" 405 4877 0/328597 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/11.0.0.0 Safari/537.36" [redacted] 41.210.147.80 - - [12/May/2026:16:22:54 +0100] "POST /[redacted] HTTP/1.1" 405 1148 0/145856 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x86) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.0.0 Safari/537.36" show less	Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-05-12 15:16:22 (3 weeks ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇦🇺 FireGuard Server	2026-05-11 10:50:37 (3 weeks ago)	Blocked by OPNsense firewall; 3 hits, proto=tcp, ports=443	Port Scan Hacking
🇩🇪 pltcldvlpr	2026-05-11 10:25:17 (3 weeks ago)	CMS/framework probe. Matched path: 41.210.147.80 - - [11/May/2026:12:25:17 +0200] "POST /xmlrpc.php ... show more CMS/framework probe. Matched path: 41.210.147.80 - - [11/May/2026:12:25:17 +0200] "POST /xmlrpc.php HTTP/1.1" 404 162 "-" "Mozilla/5.0 (Linux; Android 10; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/13.0.0.0 Safari/537.36" asn=20294 org="MTN Uganda": 41.210.147.80 - - [11/May/2026:12:25:17 +0200] "POST /xmlrpc.php HTTP/1.1" 404 162 "-" "Mozilla/5.0 (Linux; Android 10; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/13.0.0.0 Safari/537.36" asn=20294 org="MTN Uganda" ... show less	Web App Attack
🇺🇸 integrantservices.com	2026-05-08 09:06:59 (4 weeks ago)	(wordpress) Failed wordpress login from 41.210.147.80 (UG/Uganda/h1350.n1.ips.mtn.co.ug)	Brute-Force
🇩🇪 LRob.fr	2026-05-08 07:00:10 (4 weeks ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-05-07 09:20:22 (4 weeks ago)	Try to access /xmlrpc.php	Web App Attack
🇺🇸 interbiznw.com	2026-05-05 14:48:38 (1 month ago)	malicious-web-requests-vulnerability-scanning	Hacking Brute-Force Exploited Host Web App Attack
🇺🇸 MPL	2026-05-05 13:58:05 (1 month ago)	tcp/23	Port Scan
🇩🇪 4server	2026-05-05 08:38:15 (1 month ago)	[TueMay0510:38:08.7643242026][security2:error][pid1454077:tid1454145][client41.210.147.80:0]ModSecur ... show more [TueMay0510:38:08.7643242026][security2:error][pid1454077:tid1454145][client41.210.147.80:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"sisuconsulting.net\"][uri\"/xmlrpc.php\"][unique_id\"afmscAVf7SCM_8XOk-2pMAAAAIY\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 WellSpring	2026-05-04 15:06:06 (1 month ago)	xmlrpc exploit on 678.today/xmlrpc.php — WellSpr.ing/NetSentinel civic-AI security layer	Brute-Force Web App Attack
🇮🇳 evicky2002	2026-05-02 06:00:00 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=89, sources=1)	Hacking Brute-Force SSH
🇩🇪 4server	2026-05-02 05:27:22 (1 month ago)	[SatMay0207:27:17.1855782026][security2:error][pid469404:tid469487][client41.210.147.80:0]ModSecurit ... show more [SatMay0207:27:17.1855782026][security2:error][pid469404:tid469487][client41.210.147.80:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"hdcadvisory.ch\"][uri\"/xmlrpc.php\"][unique_id\"afWLNeZ2advSCir3rDwbvAAAANI\"] show less	Port Scan Brute-Force Web App Attack
🇨🇦 polycoda	2026-05-01 14:50:29 (1 month ago)	🔑 Wordpress login brute force attempt	Hacking Web App Attack
🇩🇪 stinpriza	2026-05-01 10:38:13 (1 month ago)	Web App Attack	Web App Attack

Showing 1 to 15 of 58 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 208.84.101.72

🇧🇷 186.215.191.192

🇫🇮 147.185.133.98

🇷🇴 80.94.92.165

🇪🇸 212.231.190.106

🇳🇱 176.65.148.244

🇻🇳 112.78.4.53

🇯🇵 103.163.220.97

🇻🇳 103.82.132.16

🇳🇱 45.148.10.157

🇳🇱 45.148.10.30

🇬🇧 37.10.113.221

🇰🇷 211.223.107.86

🇺🇸 198.46.134.148

🇬🇧 185.216.145.182

🇮🇩 157.10.160.86

🇳🇱 81.19.216.117

🇷🇴 80.94.92.182

🇺🇸 74.125.180.140

🇪🇬 62.193.91.121