JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.143.30.252

45.143.30.252 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 37%: ?

37%

ISP	SOFTLINK LTD
Usage Type	Fixed Line ISP
ASN	AS202651
Domain Name	softlinknet.com
Country	🇮🇶 Iraq
City	Mosul, Nineveh

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.143.30.252

Whois 45.143.30.252

IP Abuse Reports for 45.143.30.252:

This IP address has been reported a total of 7 times from 6 distinct sources. 45.143.30.252 was first reported on January 3rd 2026, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-20 20:15:43 (15 hours ago)	(mod_security) mod_security (id:240335) triggered by 45.143.30.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 45.143.30.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 16:15:35.777777 2026] [security2:error] [pid 26543:tid 26543] [client 45.143.30.252:16838] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.143.30.252 (+1 hits since last alert)\|naominixon.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "naominixon.com"] [uri "/xmlrpc.php"] [unique_id "ajb05wDs14h4PWtd75rkRQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 18:02:43 (17 hours ago)	(mod_security) mod_security (id:240335) triggered by 45.143.30.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 45.143.30.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 14:02:38.290627 2026] [security2:error] [pid 17231:tid 17231] [client 45.143.30.252:17459] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.143.30.252 (+1 hits since last alert)\|major33.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "major33.com"] [uri "/xmlrpc.php"] [unique_id "ajbVvvwU8AiPgNhpkcKhPQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 BlueWire Hosting	2026-06-20 17:30:52 (18 hours ago)	Wordpress brute force attempt	Brute-Force Web App Attack
Anonymous	2026-06-20 16:58:45 (18 hours ago)	[redacted] 45.143.30.252 - - [20/Jun/2026:18:58:01 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "W ... show more [redacted] 45.143.30.252 - - [20/Jun/2026:18:58:01 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 45.143.30.252 - - [20/Jun/2026:18:58:12 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/13.0; WordPress/6.2; http://site14965529.com" [redacted] 45.143.30.252 - - [20/Jun/2026:18:58:22 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.2)" [redacted] 45.143.30.252 - - [20/Jun/2026:18:58:33 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/13.0; WordPress/6.3; http://site79053871.com" [redacted] 45.143.30.252 - - [20/Jun/2026:18:58:44 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.1; WordPress/6.3; http://site79282671.com" ... show less	Hacking Web App Attack
🇺🇸 cwytech	2026-06-20 14:14:10 (21 hours ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/wp-us-login-only-high.	Bad Web Bot Web App Attack
🇦🇺 AWW-Admin	2026-06-20 10:13:45 (1 day ago)	(wordpress) Failed wordpress login from 45.143.30.252 (IQ/Iraq/-)	Brute-Force
🇺🇸 gui-ying233	2026-01-03 05:50:14 (5 months ago)	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537 ... show more Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 show less	Bad Web Bot

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇶🇦 2600:1900:4260:40e::123

🇬🇧 198.244.183.209

🇰🇷 121.184.144.232

🇺🇸 107.175.87.129

🇱🇹 81.30.98.44

🇩🇪 45.142.107.99

🇧🇷 189.51.216.20

🇻🇳 183.91.27.6

🇻🇳 171.231.195.144

🇺🇿 144.124.192.139

🇬🇧 87.236.176.177

🇧🇷 45.205.1.241

🇹🇷 31.145.131.202

🇵🇱 23.230.84.230

🇺🇸 20.168.121.119

🇺🇸 216.25.89.94

🇳🇱 176.65.148.84

🇧🇬 94.155.124.98

🇺🇸 17.22.245.235

🇬🇧 2a06:4880:c000::ee