JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.169.99.248

45.169.99.248 was found in our database!

This IP was reported 137 times. Confidence of Abuse is 84%: ?

84%

ISP	NET ISP S.A.S
Usage Type	Fixed Line ISP
ASN	AS267790
Hostname(s)	45-169-99-248.netcomunicaciones.com
Domain Name	netcomunicaciones.com
Country	🇨🇴 Colombia
City	Mocoa, Putumayo Department

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.169.99.248

Whois 45.169.99.248

IP Abuse Reports for 45.169.99.248:

This IP address has been reported a total of 137 times from 57 distinct sources. 45.169.99.248 was first reported on November 1st 2024, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Martin Lundstrom	2026-06-04 16:55:34 (1 hour ago)	https://www.eagleeye-intelligence.com — WordPress attack. Automatically detected and blocked.	Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 02:57:26 (15 hours ago)	(mod_security) mod_security (id:240335) triggered by 45.169.99.248 (45-169-99-248.netcomunicaciones. ... show more (mod_security) mod_security (id:240335) triggered by 45.169.99.248 (45-169-99-248.netcomunicaciones.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 22:57:19.135275 2026] [security2:error] [pid 28892:tid 28892] [client 45.169.99.248:64299] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.169.99.248 (+1 hits since last alert)\|pleaseaddbacon.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pleaseaddbacon.com"] [uri "/xmlrpc.php"] [unique_id "aiDpj34GxCk0helDwFX6lwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-03 14:35:51 (1 day ago)	45.169.99.248 - - [03/Jun/2026:16:35:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/13.0 ... show more 45.169.99.248 - - [03/Jun/2026:16:35:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/13.0; WordPress/6.3; http://site90839921.com" 45.169.99.248 - - [03/Jun/2026:16:35:30 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack/13.0; WordPress/6.3; http://site90839921.com" 45.169.99.248 - - [03/Jun/2026:16:35:40 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack/13.0; WordPress/6.4; http://site62069717.com" 45.169.99.248 - - [03/Jun/2026:16:35:41 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/13.0; WordPress/6.4; http://site62069717.com" 45.169.99.248 - - [03/Jun/2026:16:35:50 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com" ... show less	Brute-Force Web App Attack
🇦🇺 afleventoffice.com.au	2026-06-02 02:13:16 (2 days ago)	POST /xmlrpc.php HTTP/1.1	Web App Attack
🇳🇱 Site.eu	2026-06-01 08:28:46 (3 days ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇳🇱 Site.eu	2026-05-31 01:57:28 (4 days ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇺🇸 TAY	2026-05-30 03:47:57 (5 days ago)	45.169.99.248 - - [30/May/2026:11:47:36 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4889 "-" "Jetpack by ... show more 45.169.99.248 - - [30/May/2026:11:47:36 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4889 "-" "Jetpack by WordPress.com" 45.169.99.248 - - [30/May/2026:11:47:45 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4889 "-" "Jetpack by WordPress.com" 45.169.99.248 - - [30/May/2026:11:47:56 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4889 "-" "WordPress.com; https://wordpress.com" ... show less	Brute-Force
🇩🇪 dbmwebdesign	2026-05-28 22:15:08 (6 days ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
🇺🇸 cwytech	2026-05-28 17:52:19 (1 week ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/wp-us-login-only-high.	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-28 16:02:42 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 45.169.99.248 (45-169-99-248.netcomunicaciones. ... show more (mod_security) mod_security (id:240335) triggered by 45.169.99.248 (45-169-99-248.netcomunicaciones.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 28 12:02:37.224512 2026] [security2:error] [pid 1175:tid 1175] [client 45.169.99.248:60379] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.169.99.248 (+1 hits since last alert)\|drayvian.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "drayvian.com"] [uri "/xmlrpc.php"] [unique_id "ahhnHS4zYqrmJ_tamr-M7AAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-28 13:26:49 (1 week ago)	[redacted] 45.169.99.248 - - [28/May/2026:15:26:07 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "J ... show more [redacted] 45.169.99.248 - - [28/May/2026:15:26:07 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.5; WordPress/6.2; http://site19331763.com" [redacted] 45.169.99.248 - - [28/May/2026:15:26:17 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/13.0; WordPress/6.1; http://site18387266.com" [redacted] 45.169.99.248 - - [28/May/2026:15:26:28 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.4)" [redacted] 45.169.99.248 - - [28/May/2026:15:26:38 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 45.169.99.248 - - [28/May/2026:15:26:48 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" ... show less	Hacking Web App Attack
🇳🇱 ConsulHosting	2026-05-28 11:29:59 (1 week ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇩🇪 dbmwebdesign	2026-05-28 05:05:06 (1 week ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 integrantservices.com	2026-05-26 06:02:18 (1 week ago)	(wordpress) Failed wordpress login from 45.169.99.248 (CO/Colombia/45-169-99-248.netcomunicaciones.c ... show more (wordpress) Failed wordpress login from 45.169.99.248 (CO/Colombia/45-169-99-248.netcomunicaciones.com) show less	Brute-Force
Anonymous	2026-05-22 14:42:45 (1 week ago)	wordpress: XML-RPC metaWeblog.newPost attack	Web App Attack Hacking

Showing 1 to 15 of 137 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.100

🇨🇦 172.96.179.9

🇨🇦 50.66.167.29

🇻🇳 42.96.20.16

🇬🇧 198.178.235.41

🇲🇽 186.96.145.241

🇨🇳 121.227.152.171

🇫🇷 62.84.187.219

🇸🇬 47.79.15.120

🇫🇷 5.135.245.74

🇷🇺 5.101.64.6

🇺🇸 4.236.161.123

🇧🇷 201.77.124.248

🇧🇷 170.245.118.67

🇺🇸 166.196.75.100

🇮🇳 115.241.83.2

🇳🇱 85.11.167.147

🇺🇸 75.127.15.105

🇺🇸 20.169.108.13

🇺🇸 2607:f8b0:4001:c1c::125