JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.128.38.237

45.128.38.237 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 0%: ?

ISP	M247 LTD Warsaw Infrastructure
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9009
Domain Name	m247.com
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.128.38.237

Whois 45.128.38.237

IP Abuse Reports for 45.128.38.237:

This IP address has been reported a total of 11 times from 8 distinct sources. 45.128.38.237 was first reported on January 9th 2023, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇿🇦 Tokolosh Hunters	2026-03-24 15:47:07 (2 months ago)	AutoBlockWindow-WordPress Bruteforce from NonZA-2026-03-24 15:47:06	Brute-Force
Anonymous	2026-03-03 12:30:13 (3 months ago)	\| Multiple SQL injection attempts from same source ip.(multiple servers)	Web App Attack Hacking SQL Injection
🇺🇸 TPI-Abuse	2025-12-28 16:40:11 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.128.38.237 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.128.38.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 11:40:00.997916 2025] [security2:error] [pid 6285:tid 6285] [client 45.128.38.237:59052] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.brbcoin.com"] [uri "/.env"] [unique_id "aVFdYIp7FqsDXvn5tNgCKQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-28 15:11:08 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.128.38.237 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.128.38.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 10:11:03.128991 2025] [security2:error] [pid 15304:tid 15304] [client 45.128.38.237:57044] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "activethinkers.net"] [uri "/.git/index"] [unique_id "aVFIhx4vOokW6R1NkELTxQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-28 12:26:44 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.128.38.237 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.128.38.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 07:26:39.064099 2025] [security2:error] [pid 18817:tid 18817] [client 45.128.38.237:34656] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "method-one.net"] [uri "/.git/index"] [unique_id "aVEh_7Anv9Xe6_2ucM3NXAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 Telemetry2U.com	2024-06-14 22:49:41 (1 year ago)	SQL Injection attempt detected	SQL Injection Web App Attack
🇩🇪 Mr.Kruger	2024-06-14 22:07:50 (1 year ago)	SQL/JS Injection	SQL Injection
🇺🇸 TPI-Abuse	2024-06-12 20:56:50 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 45.128.38.237 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.128.38.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 12 16:56:44.652502 2024] [security2:error] [pid 5824] [client 45.128.38.237:55979] [client 45.128.38.237] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.laboquimia.es"] [uri "/.env"] [unique_id "ZmoLjFyxSiYHQ246rp2TzwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TheMadBeaker	2024-06-12 20:17:50 (1 year ago)	Fail2Ban Ban Triggered HTTP Fake Web Crawler	Bad Web Bot
🇳🇱 BlueWire Hosting	2024-06-12 14:10:02 (1 year ago)	Scanning for Laravel vulnerabilities	Web App Attack
🇪🇸 Reinhard	2023-01-09 07:44:02 (3 years ago)	[09/Jan/2023:08:38:26 +0100] Massive attack against my pages. More than 250 files affected.	Hacking Brute-Force Bad Web Bot Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 212.132.127.66

🇮🇳 182.156.35.238

🇳🇱 176.65.139.43

🇺🇸 132.255.133.44

🇨🇳 59.110.239.11

🇩🇪 213.209.159.175

🇺🇸 208.87.243.35

🇺🇿 188.113.248.21

🇫🇮 185.148.3.232

🇳🇱 185.66.143.222

🇮🇳 180.151.76.186

🇰🇿 176.110.125.57

🇳🇱 176.65.139.130

🇫🇷 176.31.139.18

🇧🇷 152.67.48.120

🇺🇸 132.255.133.208

🇺🇸 132.255.133.105

🇻🇳 113.172.124.25

🇺🇸 108.181.4.175

🇨🇳 101.126.144.118