JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.238.169.81

45.238.169.81 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 49%: ?

49%

ISP	CS NET COMUNICAÇÃO LTDA
Usage Type	Fixed Line ISP
ASN	AS268341
Domain Name	jcsfibra.com.br
Country	🇧🇷 Brazil
City	Salvador, Bahia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.238.169.81

Whois 45.238.169.81

IP Abuse Reports for 45.238.169.81:

This IP address has been reported a total of 8 times from 7 distinct sources. 45.238.169.81 was first reported on June 11th 2026, and the most recent report was 42 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Yepngo	2026-06-15 20:58:39 (42 minutes ago)	45.238.169.81 - - [15/Jun/2026:22:58:28 +0200] "POST /xmlrpc.php HTTP/2.0" 200 410 "-" "Jetpack by W ... show more 45.238.169.81 - - [15/Jun/2026:22:58:28 +0200] "POST /xmlrpc.php HTTP/2.0" 200 410 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.2)" 45.238.169.81 - - [15/Jun/2026:22:58:39 +0200] "POST /xmlrpc.php HTTP/2.0" 200 410 "-" "WordPress.com; https://wordpress.com" ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 20:29:58 (1 hour ago)	(mod_security) mod_security (id:240335) triggered by 45.238.169.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 45.238.169.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 16:29:50.440591 2026] [security2:error] [pid 31756:tid 31756] [client 45.238.169.81:10290] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.238.169.81 (+1 hits since last alert)\|yogawithbubba.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "yogawithbubba.com"] [uri "/xmlrpc.php"] [unique_id "ajBgvvWhWCFe_FZXpG_wMAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 cwytech	2026-06-15 19:28:16 (2 hours ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/wordpress-geofence-sus.	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 15:20:22 (6 hours ago)	(mod_security) mod_security (id:240335) triggered by 45.238.169.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 45.238.169.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 11:20:16.035619 2026] [security2:error] [pid 30086:tid 30086] [client 45.238.169.81:10848] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.238.169.81 (+1 hits since last alert)\|ucommsi.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ucommsi.com"] [uri "/xmlrpc.php"] [unique_id "ajAYMNhjyuZgPEns3MfhZgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-15 04:23:52 (17 hours ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇫🇷 dynamix	2026-06-15 03:53:43 (17 hours ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-13 08:56:25 (2 days ago)	[redacted] 45.238.169.81 - - [13/Jun/2026:10:55:41 +0200] "POST /xmlrpc.php HTTP/1.1" 403 1511 "-" " ... show more [redacted] 45.238.169.81 - - [13/Jun/2026:10:55:41 +0200] "POST /xmlrpc.php HTTP/1.1" 403 1511 "-" "Jetpack/12.5; WordPress/6.2; http://site94027453.com" [redacted] 45.238.169.81 - - [13/Jun/2026:10:55:52 +0200] "POST /xmlrpc.php HTTP/1.1" 403 0 "-" "Jetpack by WordPress.com" [redacted] 45.238.169.81 - - [13/Jun/2026:10:56:03 +0200] "POST /xmlrpc.php HTTP/1.1" 403 0 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.2)" [redacted] 45.238.169.81 - - [13/Jun/2026:10:56:13 +0200] "POST /xmlrpc.php HTTP/1.1" 403 0 "-" "Jetpack/12.5; WordPress/6.2; http://site84063828.com" [redacted] 45.238.169.81 - - [13/Jun/2026:10:56:24 +0200] "POST /xmlrpc.php HTTP/1.1" 403 0 "-" "Jetpack/12.5; WordPress/6.2; http://site22863643.com" ... show less	Hacking Web App Attack
🇩🇪 rh24	2026-06-11 14:19:06 (4 days ago)	(wordpress) Failed wordpress login from 45.238.169.81 (BR/Brazil/-): (CF_ENABLE)	Brute-Force

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇧🇷 189.89.9.46

🇺🇸 162.216.150.72

🇵🇱 143.20.97.245

🇨🇦 107.159.19.15

🇧🇩 103.120.202.26

🇺🇸 76.176.108.74

🇩🇪 69.5.169.18

🇺🇸 34.24.226.6

🇨🇦 20.151.108.150

🇨🇦 20.104.244.165

🇬🇧 195.96.139.69

🇺🇸 185.198.240.12

🇧🇷 179.184.241.69

🇺🇸 172.110.223.185

🇮🇹 158.173.77.174

🇺🇸 66.240.192.138

🇧🇬 62.133.47.13

🇺🇸 34.125.99.196

🇻🇳 14.246.7.248