JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.92.1.242

45.92.1.242 was found in our database!

This IP was reported 305 times. Confidence of Abuse is 100%: ?

100%

ISP	1337 Services GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS210558
Domain Name	as210558.net
Country	🇳🇱 Netherlands
City	Lelystad, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.92.1.242

Whois 45.92.1.242

IP Abuse Reports for 45.92.1.242:

This IP address has been reported a total of 305 times from 164 distinct sources. 45.92.1.242 was first reported on May 25th 2026, and the most recent report was 12 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 S.O.B.A. Dev.	2026-05-31 14:57:40 (3 days ago)	Threat Blocked by BeeHive from (ASN:210558) (Network:1337 Services GmbH) (Host:soba.dev) (Method:GET ... show more Threat Blocked by BeeHive from (ASN:210558) (Network:1337 Services GmbH) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2026-05-31T14:57:40Z) show less	Brute-Force Web Spam Web App Attack
🇩🇪 reznekcs	2026-05-31 14:52:51 (3 days ago)	F2B wordpress ban. Logs: 45.92.1.242 - - [31/May/2026:16:52:50 +0200] "POST /xmlrpc.php HTTP/1.1" 20 ... show more F2B wordpress ban. Logs: 45.92.1.242 - - [31/May/2026:16:52:50 +0200] "POST /xmlrpc.php HTTP/1.1" 200 604 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 45.92.1.242 - - [31/May/2026:16:52:50 +0200] "POST /xmlrpc.php HTTP/1.1" 200 642 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" show less	Brute-Force Web App Attack
🇩🇪 4server	2026-05-31 13:14:41 (3 days ago)	[SunMay3115:14:37.3779732026][security2:error][pid1202382:tid1202427][client45.92.1.242:0]ModSecurit ... show more [SunMay3115:14:37.3779732026][security2:error][pid1202382:tid1202427][client45.92.1.242:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"morandi-trasporti.ch\"][uri\"/xmlrpc.php\"][unique_id\"ahw0PR7jC3RlI-bOrfovsQAAABg\"] show less	Port Scan Brute-Force Web App Attack
🇩🇪 reznekcs	2026-05-31 13:12:29 (3 days ago)	F2B wordpress ban. Logs: 45.92.1.242 - - [31/May/2026:15:12:28 +0200] "POST /xmlrpc.php HTTP/1.1" 20 ... show more F2B wordpress ban. Logs: 45.92.1.242 - - [31/May/2026:15:12:28 +0200] "POST /xmlrpc.php HTTP/1.1" 200 604 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 45.92.1.242 - - [31/May/2026:15:12:28 +0200] "POST /xmlrpc.php HTTP/1.1" 200 642 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" show less	Brute-Force Web App Attack
🇩🇪 Skyrider	2026-05-31 10:54:57 (3 days ago)	crowdsecurity/http-probing	Hacking
🇮🇩 soc-yk	2026-05-31 09:54:12 (3 days ago)	Type: suspicious_network_activity Threat: unknown Risk: 100 Events: 226 Evidence: - Persistent susp ... show more Type: suspicious_network_activity Threat: unknown Risk: 100 Events: 226 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified show less	Port Scan Hacking
🇬🇧 consul.to	2026-05-31 09:29:56 (3 days ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-05-31 09:20:04 (3 days ago)	45.92.1.242 - - [31/May/2026:11:20:03 +0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 437 "-" ... show more 45.92.1.242 - - [31/May/2026:11:20:03 +0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 437 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 45.92.1.242 - - [31/May/2026:11:20:03 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 437 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 45.92.1.242 - - [31/May/2026:11:20:03 +0200] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 437 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 45.92.1.242 - - [31/May/2026:11:20:03 +0200] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 437 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 45.92.1.242 - - [31/May/2026:11:20:04 +0200] "GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 437 ... show less	Brute-Force Web App Attack
🇺🇸 Charlesiv	2026-05-31 06:00:31 (3 days ago)	Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: BLOCK ASN: 210558 (1337 Services Gm ... show more Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: BLOCK ASN: 210558 (1337 Services GmbH) Protocol: HTTP/1.1 (GET method) Endpoint: /site/wp-includes/wlwmanifest.xml Timestamp: 2026-05-31T05:26:46Z Ray ID: a04390cb3b53f5cb UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36 show less	Bad Web Bot
🇨🇿 huginet	2026-05-31 02:41:17 (3 days ago)	45.92.1.242 - - [31/May/2026:04:41:16 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 196 "- ... show more 45.92.1.242 - - [31/May/2026:04:41:16 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 45.92.1.242 - - [31/May/2026:04:41:16 +0200] "GET //xmlrpc.php?rsd HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" ... show less	Web Spam Web App Attack
🇩🇪 ger-stg-sifi1	2026-05-31 02:16:09 (3 days ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇩🇪 bescared	2026-05-31 02:11:59 (3 days ago)	F2B - Malicious activity detected. URL Probing. -8ff06ede-	Hacking Bad Web Bot Web App Attack
🇫🇷 Kenshin869	2026-05-31 01:46:06 (3 days ago)	Wordpress unauthorized access attempt	Brute-Force
🇩🇪 Gwyneth Llewelyn	2026-05-31 01:20:57 (3 days ago)		Brute-Force Web App Attack
Anonymous	2026-05-31 00:46:22 (3 days ago)	Failed Wordpress Logins	Web App Attack

Showing 91 to 105 of 305 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.68

🇦🇷 190.122.90.115

🇧🇷 186.251.71.202

🇦🇱 185.226.89.235

🇷🇺 185.140.163.206

🇳🇱 172.94.9.136

🇭🇰 156.238.235.153

🇺🇸 137.131.40.48

🇨🇳 120.48.168.33

🇨🇳 112.32.240.176

🇬🇧 35.203.210.77

🇷🇴 2.57.122.177

🇺🇸 205.210.31.96

🇹🇼 198.235.24.70

🇪🇸 185.9.193.111

🇻🇳 116.110.208.144

🇯🇵 103.125.146.26

🇰🇪 102.215.34.20

🇸🇬 101.47.156.21

🇳🇱 85.11.167.7