JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.11.97.227

45.11.97.227 was found in our database!

This IP was reported 192 times. Confidence of Abuse is 100%: ?

100%

ISP	PENDC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS48678
Hostname(s)	neva-02.hostneva.com
Domain Name	pendc.com
Country	🇹🇷 Turkey
City	Bursa, Bursa Province

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.11.97.227

Whois 45.11.97.227

IP Abuse Reports for 45.11.97.227:

This IP address has been reported a total of 192 times from 90 distinct sources. 45.11.97.227 was first reported on May 9th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-05 16:30:35 (1 day ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇺🇸 jormaster3k	2026-06-05 16:19:15 (1 day ago)	Attack against WordPress	Web App Attack
🇩🇪 AlexEventfahrtenIPDB	2026-06-05 09:23:35 (1 day ago)	[Fri Jun 05 11:23:28.749262 2026] [authz_core:error] [pid 1438515:tid 1438515] [client 45.11.97.227: ... show more [Fri Jun 05 11:23:28.749262 2026] [authz_core:error] [pid 1438515:tid 1438515] [client 45.11.97.227:58894] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php [Fri Jun 05 11:23:34.117380 2026] [authz_core:error] [pid 1299365:tid 1299365] [client 45.11.97.227:39432] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php, referer: https://alex-eventfahrten.spdns.de/wp-login.php ... show less	Brute-Force Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-05 08:43:10 (1 day ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇩🇪 LRob.fr	2026-06-05 06:45:03 (1 day ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇺🇸 nationaleventpros.com	2026-06-05 06:42:20 (1 day ago)	WordPress login attempt	Brute-Force
🇲🇹 Malta	2026-06-05 06:04:33 (1 day ago)	45.11.97.227 - - [05/Jun/2026:08:04:33 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Ubunt ... show more 45.11.97.227 - - [05/Jun/2026:08:04:33 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇫🇷 masterguru	2026-06-05 05:54:16 (1 day ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 45.11.97.227 (TR/Turkey/neva-02.hostneva.com) ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 45.11.97.227 (TR/Turkey/neva-02.hostneva.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇲🇽 octageeks.com	2026-06-05 04:29:07 (1 day ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇩🇪 LRob.fr	2026-06-05 00:45:05 (1 day ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇲🇾 Rizzy	2026-06-04 20:51:44 (2 days ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇫🇷 ELYAZ	2026-06-04 18:43:29 (2 days ago)	(wordpress) Failed wordpress login from 45.11.97.227 (TR/Türkiye/neva-02.hostneva.com): (CF_ENABLE)	Brute-Force
Anonymous	2026-06-04 10:44:27 (2 days ago)	[04/Jun/2026:10:44:27 +0000] host=lovelyrender.app server=lovelyrender.app ip=45.11.97.227 method=PO ... show more [04/Jun/2026:10:44:27 +0000] host=lovelyrender.app server=lovelyrender.app ip=45.11.97.227 method=POST req=/xmlrpc.php uri=/index.php status=302 bytes=0 rt=0.070 urt=0.071 ref="-" ua="Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack Bad Web Bot
🇩🇪 Marc	2026-06-04 10:08:54 (2 days ago)	45.11.97.227 - - [04/Jun/2026:09:58:04 +0200] "GET /wp-login.php HTTP/2.0" 200 3982 "-" "Mozilla/5.0 ... show more 45.11.97.227 - - [04/Jun/2026:09:58:04 +0200] "GET /wp-login.php HTTP/2.0" 200 3982 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 45.11.97.227 - - [04/Jun/2026:09:58:04 +0200] "POST /wp-login.php HTTP/2.0" 403 11137 "https://www.saatschule.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 45.11.97.227 - - [04/Jun/2026:12:00:58 +0200] "GET /wp-login.php HTTP/2.0" 200 3392 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 45.11.97.227 - - [04/Jun/2026:12:00:58 +0200] "POST /wp-login.php HTTP/2.0" 200 3366 "https://heckmann-elektro.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 45.11.97.227 - - [04/Jun/2026:12:08:53 +0200] "GET /wp-login.php HTTP/2.0" 200 3980 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleW show less	Brute-Force Web App Attack
🇺🇸 Victor López	2026-06-04 09:25:21 (2 days ago)	chispa.digitalhypepro.com 45.11.97.227 - - [04/Jun/2026:04:21:05 -0500] "GET /wp-login.php HTTP/2.0" ... show more chispa.digitalhypepro.com 45.11.97.227 - - [04/Jun/2026:04:21:05 -0500] "GET /wp-login.php HTTP/2.0" 200 1861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" chispa.digitalhypepro.com 45.11.97.227 - - [04/Jun/2026:04:21:06 -0500] "POST /wp-login.php HTTP/2.0" 200 1994 "https://chispa.digitalhypepro.com/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" videoprenatal.com 45.11.97.227 - - [04/Jun/2026:04:25:20 -0500] "POST /xmlrpc.php HTTP/2.0" 403 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Hacking Web App Attack

Showing 1 to 15 of 192 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇹 62.60.130.186

🇮🇳 2a02:4780:11:2307:0:3164:a30b:1

🇺🇸 2607:f8b0:400e:c05::12a

🇩🇪 167.94.145.31

🇩🇪 167.94.145.18

🇺🇸 69.74.29.21

🇸🇬 47.128.124.224

🇰🇷 211.46.177.174

🇺🇸 205.210.31.108

🇹🇼 198.235.24.49

🇺🇸 162.216.149.92

🇵🇰 153.117.9.182

🇫🇮 147.185.133.8

🇻🇳 116.110.3.83

🇺🇸 66.132.224.24

🇷🇺 46.8.6.62

🇧🇷 45.164.99.18

🇳🇱 45.156.128.67

🇬🇧 35.203.211.194

🇨🇳 14.103.107.234