JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.141.215.39

45.141.215.39 was found in our database!

This IP was reported 576 times. Confidence of Abuse is 100%: ?

100%

ISP	1337 Services GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS210558
Domain Name	as210558.net
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.141.215.39

Whois 45.141.215.39

IP Abuse Reports for 45.141.215.39:

This IP address has been reported a total of 576 times from 231 distinct sources. 45.141.215.39 was first reported on April 26th 2024, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-27 02:38:36 (1 hour ago)	Automated vulnerability scanning and sensitive file probing against a secured web server. Attempted ... show more Automated vulnerability scanning and sensitive file probing against a secured web server. Attempted access to sensitive configuration files and common vulnerability paths. show less	Brute-Force Web App Attack
🇫🇷 cityhunter_rhone	2026-06-27 01:06:05 (3 hours ago)	Fail2Ban offender in jail [recidive] — 1 total attempts — tracked by mercurius-guide.com security sy ... show more Fail2Ban offender in jail [recidive] — 1 total attempts — tracked by mercurius-guide.com security system. show less	SSH Brute-Force
Anonymous	2026-06-26 23:20:12 (4 hours ago)	45.141.215.39 - - [27/Jun/2026:01:20:11 +0200] "GET /installer.php HTTP/1.1" 404 450 "-" "Mozilla/5. ... show more 45.141.215.39 - - [27/Jun/2026:01:20:11 +0200] "GET /installer.php HTTP/1.1" 404 450 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" 45.141.215.39 - - [27/Jun/2026:01:20:11 +0200] "GET /installer.php HTTP/1.1" 404 251 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" 45.141.215.39 - - [27/Jun/2026:01:20:11 +0200] "GET /installer-backup.php HTTP/1.1" 404 251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:147.0) Gecko/20100101 Firefox/147.0" 45.141.215.39 - - [27/Jun/2026:01:20:11 +0200] "GET /installer-backup.php HTTP/1.1" 404 450 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:147.0) Gecko/20100101 Firefox/147.0" 45.141.215.39 - - [27/Jun/2026:01:20:11 +0200] "GET /wordpress/ HTTP/1.1" 404 251 "-" "Mozilla/5.0 (X11; Debian; Linux x86_64; rv:145.0) Gecko/20100101 Firefox/145.0" 45.141.215.39 - - [27/Jun/2026:01:20:11 +0200] "GET /wordpress/ HTTP/1.1" 404 450 "-" "Mo ... show less	Bad Web Bot Web App Attack
🇺🇸 mccsoft.io	2026-06-26 22:46:51 (5 hours ago)	Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). So ... show more Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). Source matched a blocked-path security rule (jail nginx-444); server returned HTTP 444 (connection closed without response). TCP three-way handshake completed (full HTTP request received). show less	Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-26 22:10:40 (6 hours ago)	Excessive multi-domain requests	Brute-Force
🇺🇸 n2nguyenn2nguyen	2026-06-26 00:20:24 (1 day ago)	Blocked by YFC Security on https://parcl9.com — type: xmlrpc_attempts	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 00:01:28 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 45.141.215.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.141.215.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 20:01:14.391820 2026] [security2:error] [pid 12308:tid 12308] [client 45.141.215.39:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|techcomparenow.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "techcomparenow.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aj3BSu1AEIpoT8EiynYNrQAAAAE"], referer: https://weecountyvaulters.co.uk//wp-login.php show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-25 05:36:48 (1 day ago)	168 requests with url.path *config.php	Brute-Force Bad Web Bot
🇩🇪 mk-dizajn.hr	2026-06-22 05:31:54 (4 days ago)	$f2bV_matches	Bad Web Bot
Anonymous	2026-06-21 21:15:56 (5 days ago)	fail2ban:piguard2:18,19,21	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Victor López	2026-06-21 19:21:06 (5 days ago)	s2.digitalhypepro.com 45.141.215.39 - - [21/Jun/2026:14:20:54 -0500] "GET //xmlrpc.php?rsd HTTP/2.0" ... show more s2.digitalhypepro.com 45.141.215.39 - - [21/Jun/2026:14:20:54 -0500] "GET //xmlrpc.php?rsd HTTP/2.0" 200 3205 "ltimagem.com.br/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" s2.digitalhypepro.com 45.141.215.39 - - [21/Jun/2026:14:21:03 -0500] "POST //xmlrpc.php HTTP/2.0" 405 552 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" s2.digitalhypepro.com 45.141.215.39 - - [21/Jun/2026:14:21:05 -0500] "POST //wp-login.php HTTP/2.0" 404 7898 "https://s2.digitalhypepro.com//wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" ... show less	Hacking Web App Attack
🇺🇸 VanKoh	2026-06-21 15:41:39 (5 days ago)	45.141.215.39 - - [21/Jun/2026:09:41:38 -0600] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Arch ... show more 45.141.215.39 - - [21/Jun/2026:09:41:38 -0600] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Arch Linux; Linux x86_64; rv:149.0) Gecko/20100101 Firefox/149.0" 45.141.215.39 - - [21/Jun/2026:09:41:38 -0600] "GET /wordpress/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 45.141.215.39 - - [21/Jun/2026:09:41:39 -0600] "GET /old/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:147.0) Gecko/20100101 Firefox/147.0" ... show less	Port Scan Web App Attack
🇺🇸 Mundo Bueno	2026-06-21 02:18:13 (6 days ago)	[ISILIA Protection v2.1] Tentative d'accès: /old/ \| Pays: PL \| UA: Mozilla/5.0 (Windows NT 10.0; Win ... show more [ISILIA Protection v2.1] Tentative d'accès: /old/ \| Pays: PL \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Sa show less	Hacking Web App Attack
🇨🇿 ptlab	2026-06-20 18:45:53 (6 days ago)	Detected wp_admin attack from WP-host.	Hacking Web App Attack
🇫🇷 dynamix	2026-06-20 16:03:06 (6 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack

Showing 1 to 15 of 576 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.253.0.17

🇧🇪 162.158.233.254

🇭🇰 118.26.36.18

🇺🇸 64.227.101.166

🇱🇹 45.227.254.170

🇳🇱 45.198.224.138

🇫🇷 185.177.72.17

🇨🇳 183.23.54.145

🇪🇸 158.158.43.25

🇮🇹 109.114.28.181

🇨🇦 99.240.209.60

🇳🇱 45.148.10.151

🇬🇧 35.203.211.94

🇷🇺 31.173.2.33

🇮🇩 180.243.14.111

🇺🇸 147.185.132.51

🇨🇳 113.201.207.170

🇺🇸 72.216.11.138

🇺🇸 52.188.185.84

🇺🇸 52.165.81.251