JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.230.106.63

45.230.106.63 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 39%: ?

39%

ISP	Alfa Network Solutions Inform¿tica LTDA
Usage Type	Fixed Line ISP
ASN	AS267171
Domain Name	internetalfa.com.br
Country	🇧🇷 Brazil
City	Sao Paulo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.230.106.63

Whois 45.230.106.63

IP Abuse Reports for 45.230.106.63:

This IP address has been reported a total of 9 times from 7 distinct sources. 45.230.106.63 was first reported on November 25th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 noise.agency	2026-06-12 19:29:34 (2 days ago)	(wordpress) Failed wordpress login from 45.230.106.63 (BR/Brazil/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-12 19:05:47 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 45.230.106.63 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 45.230.106.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 15:05:40.891845 2026] [security2:error] [pid 30960:tid 30960] [client 45.230.106.63:12450] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.230.106.63 (+1 hits since last alert)\|boaredraven.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "boaredraven.com"] [uri "/xmlrpc.php"] [unique_id "aixYhGU3K1qYqclIzPNB8gAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 Rizzy	2026-06-12 18:27:35 (2 days ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 16:54:33 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 45.230.106.63 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 45.230.106.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 12:54:27.022805 2026] [security2:error] [pid 22902:tid 22902] [client 45.230.106.63:13384] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.230.106.63 (+1 hits since last alert)\|anamericanabroad.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "anamericanabroad.com"] [uri "/xmlrpc.php"] [unique_id "airoQ-Bd7qMJVZJIGG7C8AAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 netclix.gr	2026-06-08 18:46:53 (6 days ago)	(wordpress) Failed wordpress login from 45.230.106.63 (BR/Brazil/-): (CF_ENABLE)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-05 18:46:49 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 45.230.106.63 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 45.230.106.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 14:46:42.851970 2026] [security2:error] [pid 14220:tid 14220] [client 45.230.106.63:13525] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.230.106.63 (+1 hits since last alert)\|geckoturner.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "geckoturner.com"] [uri "/xmlrpc.php"] [unique_id "aiMZksCuDb9QVQJJh0xE3wAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 16:50:10 (1 week ago)	Attac	Brute-Force
🇦🇺 screwlooseit.com.au	2026-06-05 13:13:51 (1 week ago)	Blocked by CSF 13 firewall - Rule: XMLRPC BR/Brazil/-	Web App Attack
Anonymous	2025-11-25 07:24:00 (6 months ago)	scanning http requests from known botnet	Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 2404:6800:4005:c03::127

🇧🇷 179.117.28.252

🇨🇳 120.48.52.177

🇷🇺 87.226.190.225

🇺🇸 50.46.141.125

🇧🇷 45.162.188.54

🇺🇸 45.79.109.4

🇻🇳 180.93.32.105

🇮🇱 147.236.228.216

🇳🇱 91.92.40.6

🇨🇳 58.210.197.34

🇳🇱 45.148.10.141

🇮🇳 4.240.96.30

🇷🇴 2.57.122.177

🇨🇳 183.199.157.26

🇺🇸 162.254.36.150

🇳🇬 152.32.140.22

🇲🇾 115.135.234.221

🇻🇳 103.82.21.8

🇫🇷 88.142.46.185