JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.4.148.39

45.4.148.39 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 48%: ?

48%

ISP	Fausto Silva de Almeida Serviços - ME
Usage Type	Fixed Line ISP
ASN	AS266073
Hostname(s)	45.4.148.39.dynamic.pointnetprovedor.net.br
Domain Name	pointnetprovedor.net.br
Country	🇧🇷 Brazil
City	Surubim, Pernambuco

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.4.148.39

Whois 45.4.148.39

IP Abuse Reports for 45.4.148.39:

This IP address has been reported a total of 36 times from 16 distinct sources. 45.4.148.39 was first reported on July 5th 2022, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 screwlooseit.com.au	2026-06-30 01:30:16 (13 hours ago)	Blocked by CSF 13 firewall - Rule: XMLRPC BR/Brazil/45.4.148.39.dynamic.pointnetprovedor.net.br	Web App Attack
🇺🇸 TPI-Abuse	2026-06-30 00:01:27 (14 hours ago)	(mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetproved ... show more (mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetprovedor.net.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 20:01:22.156711 2026] [security2:error] [pid 9423:tid 9423] [client 45.4.148.39:9444] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.4.148.39 (+1 hits since last alert)\|assembliesofgodinsamoa.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "assembliesofgodinsamoa.org"] [uri "/xmlrpc.php"] [unique_id "akMHUhVdxhcbJleM1WHKFAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-29 19:32:45 (19 hours ago)		Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-28 21:25:04 (1 day ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
Anonymous	2026-06-06 00:22:10 (3 weeks ago)	Attac	Brute-Force
🇱🇻 garmtech.com	2026-06-04 22:31:19 (3 weeks ago)	IM360 WAF: Rate limit exceeded for XMLRPC DoS	Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 21:07:34 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetproved ... show more (mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetprovedor.net.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 17:07:26.339925 2026] [security2:error] [pid 28962:tid 28962] [client 45.4.148.39:24274] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.4.148.39 (+1 hits since last alert)\|jellisonrepair.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "jellisonrepair.com"] [uri "/xmlrpc.php"] [unique_id "aiHpDuuusZYjCI_x9LVzAwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 00:44:29 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetproved ... show more (mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetprovedor.net.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 20:44:25.164665 2026] [security2:error] [pid 18163:tid 18163] [client 45.4.148.39:24341] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.4.148.39 (+1 hits since last alert)\|interiorsolutions-stuart.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "interiorsolutions-stuart.com"] [uri "/xmlrpc.php"] [unique_id "aiDKaUYvendjordI5oOxegAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 23:12:42 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetproved ... show more (mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetprovedor.net.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 19:12:34.038920 2026] [security2:error] [pid 17374:tid 17374] [client 45.4.148.39:24518] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.4.148.39 (+1 hits since last alert)\|carolinafootprints.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "carolinafootprints.com"] [uri "/xmlrpc.php"] [unique_id "aiC04pdSU5TKY_d3LFJZHwAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 23:59:31 (4 weeks ago)	(mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetproved ... show more (mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetprovedor.net.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 19:59:24.905021 2026] [security2:error] [pid 28926:tid 28941] [client 45.4.148.39:24710] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.4.148.39 (+1 hits since last alert)\|metalartgate.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "metalartgate.com"] [uri "/xmlrpc.php"] [unique_id "ah4c3CKIKbxPpavjUpQyUwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 21:56:40 (4 weeks ago)	(mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetproved ... show more (mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetprovedor.net.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 17:56:33.455038 2026] [security2:error] [pid 25147:tid 25147] [client 45.4.148.39:24565] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.4.148.39 (+1 hits since last alert)\|oogeothermal.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "oogeothermal.com"] [uri "/xmlrpc.php"] [unique_id "ah4AEQX9GwLWbyTk9eSKugAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-31 23:38:48 (4 weeks ago)	(mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetproved ... show more (mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetprovedor.net.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 19:38:40.867801 2026] [security2:error] [pid 28786:tid 28786] [client 45.4.148.39:24625] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.4.148.39 (+1 hits since last alert)\|microbooty.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "microbooty.com"] [uri "/xmlrpc.php"] [unique_id "ahzGgKttSgMu18fabm3fqQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-31 02:30:10 (4 weeks ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-05-31 00:58:51 (4 weeks ago)	(mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetproved ... show more (mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetprovedor.net.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 30 20:58:44.293317 2026] [security2:error] [pid 8933:tid 8933] [client 45.4.148.39:24561] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.4.148.39 (+1 hits since last alert)\|iplantotravel.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "iplantotravel.com"] [uri "/xmlrpc.php"] [unique_id "ahuHxOGfn1H_038d14kOtwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 21:32:32 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetproved ... show more (mod_security) mod_security (id:240335) triggered by 45.4.148.39 (45.4.148.39.dynamic.pointnetprovedor.net.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 17:32:24.727923 2026] [security2:error] [pid 4388:tid 4388] [client 45.4.148.39:24116] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.4.148.39 (+1 hits since last alert)\|jan-wilson.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "jan-wilson.com"] [uri "/xmlrpc.php"] [unique_id "ahdi6PkOH5jw92BbDd0keQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 178.20.210.151

🇸🇬 134.209.99.90

🇳🇱 91.92.40.8

🇻🇳 222.253.220.250

203.0.113.22

203.0.113.11

🇩🇿 154.241.215.0

🇺🇸 147.185.132.213

🇲🇦 196.64.112.95

🇮🇶 185.24.60.39

🇺🇾 167.61.64.164

🇭🇰 101.36.119.203

🇰🇪 41.191.229.226

🇹🇭 223.205.234.113

🇧🇪 198.235.24.205

🇸🇦 188.53.206.140

🇧🇷 152.248.2.108

🇻🇳 116.99.174.55

🇮🇹 81.57.15.243

🇱🇹 81.30.98.44