JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.147.121.38

45.147.121.38 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 0%: ?

ISP	IGRA-SERVICE LLC
Usage Type	Fixed Line ISP
ASN	AS33991
Domain Name	g-service.ru
Country	🇷🇺 Russian Federation
City	Krasnoyarsk, Krasnoyarsk Krai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.147.121.38

Whois 45.147.121.38

IP Abuse Reports for 45.147.121.38:

This IP address has been reported a total of 18 times from 14 distinct sources. 45.147.121.38 was first reported on October 13th 2025, and the most recent report was 7 months ago.

Old Reports: The most recent abuse report for this IP address is from 7 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2025-11-04 03:03:58 (7 months ago)	wordpress-trap	Web App Attack
🇳🇱 i-turnradio.nl	2025-11-03 19:52:09 (7 months ago)	2025-11-03 @ 20:52:09 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
Anonymous	2025-10-31 14:15:49 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-30 18:21:04 (7 months ago)	wordpress-trap	Web App Attack
🇩🇪 sverson	2025-10-24 23:18:57 (7 months ago)	Vulnerability probe of page	Hacking
🇺🇸 TPI-Abuse	2025-10-24 15:38:01 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 45.147.121.38 (nat-T1-3.g-service.ru): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 45.147.121.38 (nat-T1-3.g-service.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 24 11:37:54.868734 2025] [security2:error] [pid 8681:tid 8681] [client 45.147.121.38:18629] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fusionrep.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fusionrep.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aPudUu10JB80AKTO3sGDxAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-24 13:39:26 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 45.147.121.38 (nat-T1-3.g-service.ru): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 45.147.121.38 (nat-T1-3.g-service.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 24 09:39:20.300028 2025] [security2:error] [pid 590:tid 590] [client 45.147.121.38:13316] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|babylontravelone.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "babylontravelone.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aPuBiK_rA91pyYPHIJ-fRwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Tripwire	2025-10-23 14:08:59 (7 months ago)	Scanning for exploits - /shell.php	Web App Attack
🇫🇷 dynamix	2025-10-23 10:24:19 (7 months ago)	Multiple WAF Violations	Web App Attack
🇬🇧 Globe2	2025-10-21 06:20:15 (7 months ago)	Multiple ModSec Blocks	Web App Attack
🇧🇬 Filipe Dávila	2025-10-19 03:21:00 (7 months ago)	[Sat Oct 18 23:20:58.396068 2025] [:error] [pid 332618:tid 140273069770496] [client 45.147.121.38:17 ... show more [Sat Oct 18 23:20:58.396068 2025] [:error] [pid 332618:tid 140273069770496] [client 45.147.121.38:1774] [client 45.147.121.38] [redacted]: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "[redacted][redacted]"] [[redacted] "233"] [id "[redacted]"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "[redacted]/4.7.0-dev"] [tag "[redacted]"] [tag "[redacted]"] [hostname "[redacted]"] [uri "/phpinfo.php"] [unique_id "aPRZGuw66onpfdJ5HAnRigAAAFY"] show less	Web App Attack
🇧🇪 cmbplf	2025-10-16 20:39:15 (7 months ago)	74 requests with url.path */wp-content/plugins/litespeed-cache/readme.txt	Brute-Force Bad Web Bot
🇺🇸 NXTwoThou	2025-10-16 07:09:04 (7 months ago)	/info.php	Web App Attack
🇮🇹 VHosting	2025-10-16 05:20:03 (7 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇩🇪 paulrusiecki	2025-10-15 22:04:57 (7 months ago)	45.147.121.38 - - [16/Oct/2025:00:04:56 +0200] "GET /info.php HTTP/1.1" 404 435 "-" "Mozilla/5.0 (Wi ... show more 45.147.121.38 - - [16/Oct/2025:00:04:56 +0200] "GET /info.php HTTP/1.1" 404 435 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.7204.96 Safari/537.36" 45.147.121.38 - - [16/Oct/2025:00:04:56 +0200] "GET /phpinfo.php HTTP/1.1" 404 435 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.7204.96 Safari/537.36" 45.147.121.38 - - [16/Oct/2025:00:04:56 +0200] "GET /p.php HTTP/1.1" 404 435 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.7204.96 Safari/537.36" ... show less	Brute-Force

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 207.244.232.111

🇬🇧 195.206.182.199

🇬🇧 193.32.209.243

🇳🇱 176.65.149.194

🇳🇱 176.65.139.195

🇸🇬 174.138.23.14

🇩🇪 165.22.28.115

🇸🇬 129.226.221.96

🇮🇳 122.184.124.46

🇳🇱 91.92.40.23

🇷🇺 85.12.248.68

🇧🇬 79.124.62.126

🇺🇸 52.20.198.190

🇺🇸 47.77.195.187

🇧🇷 206.42.8.243

🇧🇷 187.16.96.250

🇵🇪 161.132.54.218

🇨🇦 159.203.35.5

🇨🇳 122.226.223.59

🇨🇳 120.229.253.140