JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.8.22.239

45.8.22.239 was found in our database!

This IP was reported 115 times. Confidence of Abuse is 75%: ?

75%

ISP	Advin Services LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206216
Domain Name	advinservers.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.8.22.239

Whois 45.8.22.239

IP Abuse Reports for 45.8.22.239:

This IP address has been reported a total of 115 times from 86 distinct sources. 45.8.22.239 was first reported on April 3rd 2023, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 andreighitan	2026-05-24 11:54:41 (3 weeks ago)	Malicious scanning webshell probe and attack against WordPress hosting server	Web App Attack
🇩🇪 BerndG17	2026-05-19 13:34:00 (4 weeks ago)	Access to a configuration file - [SERVER:SCRIPT_NAME = /wp-config.php]	Web App Attack Hacking
🇧🇪 sid3windr	2026-05-08 19:44:33 (1 month ago)	GET /.env (Tarpitted for 1d15h8m37s, wasted 8.06MB)	Web App Attack
🇺🇦 URAN Publishing Service	2026-05-08 12:19:54 (1 month ago)	45.8.22.239 - - [08/May/2026:15:19:53 +0300] "GET /backend/.env HTTP/1.1" 404 710 "-" "Mozilla/5.0 ( ... show more 45.8.22.239 - - [08/May/2026:15:19:53 +0300] "GET /backend/.env HTTP/1.1" 404 710 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 45.8.22.239 - - [08/May/2026:15:19:53 +0300] "GET /app/.env HTTP/1.1" 404 710 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" ... show less	Web App Attack
Anonymous	2026-05-08 02:03:48 (1 month ago)	Auto-reported by Fail2Ban (NPM-Auth)	Web App Attack
🇳🇱 JCB	2026-05-07 16:25:00 (1 month ago)	45.8.22.239 - - [06/May/2026:23:32:15 +0300] "GET /.env.production HTTP/1.1" 403 239 45.8.22.239 - ... show more 45.8.22.239 - - [06/May/2026:23:32:15 +0300] "GET /.env.production HTTP/1.1" 403 239 45.8.22.239 - - [06/May/2026:23:32:15 +0300] "GET /.aws/credentials HTTP/1.1" 403 239 ... show less	Web App Attack Hacking
🇪🇸 Z\|ntrueñigO	2026-05-07 05:43:00 (1 month ago)	Auto-report. Hits=18, Ports=443, Country=-.	Brute-Force
Anonymous	2026-05-07 05:40:26 (1 month ago)	45.8.22.239 - - [07/May/2026:02:40:25 -0300] "GET /.env HTTP/1.1" 403 125 "-" "Mozilla/5.0 (Windows ... show more 45.8.22.239 - - [07/May/2026:02:40:25 -0300] "GET /.env HTTP/1.1" 403 125 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:150.0) Gecko/20100101 Firefox/150.0" 45.8.22.239 - - [07/May/2026:02:40:25 -0300] "GET /.env.local HTTP/1.1" 403 125 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:150.0) Gecko/20100101 Firefox/150.0" ... show less	Port Scan
Anonymous	2026-05-07 04:31:55 (1 month ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
Anonymous	2026-05-07 04:17:35 (1 month ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇺🇸 octageeks.com	2026-05-07 04:07:58 (1 month ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇧🇷 SOC PR	2026-05-07 04:02:13 (1 month ago)	IPS: Sensitive Configuration File Disclosure.	Hacking
🇱🇻 garmtech.com	2026-05-07 01:16:08 (1 month ago)	Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.	Web App Attack
Anonymous	2026-05-07 00:55:05 (1 month ago)	host-ipset-guard auto-report; server=ns67.kdns.gr; rule=httpd-suspicious-path; count=8/6; duration=7 ... show more host-ipset-guard auto-report; server=ns67.kdns.gr; rule=httpd-suspicious-path; count=8/6; duration=72h; scope=ns67.kdns.gr; country=US; sites=global; samples=/ \| /secrets.json \| /.env show less	Hacking Web App Attack
🇩🇪 raph	2026-05-07 00:45:49 (1 month ago)	[DOT FILES] crawler .env, .git, .config, etc.	Bad Web Bot Web App Attack

Showing 1 to 15 of 115 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2001:4ca0:108:42:1:80:6:9

🇳🇱 193.176.31.243

🇺🇸 156.232.13.161

🇬🇧 90.219.54.229

🇺🇸 69.120.48.62

🇩🇪 64.89.163.178

🇩🇪 2a04:c300:400::1f7

🇦🇹 213.225.9.147

🇹🇼 198.235.24.83

🇨🇳 180.76.145.57

🇷🇺 178.207.14.244

🇺🇸 162.216.149.108

🇭🇰 154.85.55.166

🇻🇳 116.109.115.93

🇸🇬 103.189.234.96

🇿🇦 102.220.85.131

🇫🇷 85.217.140.53

🇺🇸 48.211.212.212

🇺🇸 40.124.81.157

🇪🇸 37.11.183.238