JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.92.1.39

45.92.1.39 was found in our database!

This IP was reported 342 times. Confidence of Abuse is 39%: ?

39%

ISP	1337 Services GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS210558
Domain Name	as210558.net
Country	🇳🇱 Netherlands
City	Lelystad, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.92.1.39

Whois 45.92.1.39

IP Abuse Reports for 45.92.1.39:

This IP address has been reported a total of 342 times from 172 distinct sources. 45.92.1.39 was first reported on December 3rd 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SpaceHost-Server	2026-05-06 22:38:10 (1 month ago)		Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2026-05-01 22:43:17 (1 month ago)		Brute-Force Web App Attack
Anonymous	2026-04-26 19:48:21 (1 month ago)	$f2bV_matches	Brute-Force
🇧🇷 Peregrine	2026-04-23 03:10:23 (1 month ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 45.92.1.39 104.23.166.100 - - [19/Apr/2026:10:30:27 -0300 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 45.92.1.39 104.23.166.100 - - [19/Apr/2026:10:30:27 -0300] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 404 414 45.92.1.39 172.70.46.191 - - [19/Apr/2026:10:30:27 -0300] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 404 414 45.92.1.39 104.23.166.100 - - [19/Apr/2026:10:30:27 -0300] "GET /lwveohhm.php?Fox=d3wL7 HTTP/1.1" 404 414 45.92.1.39 104.23.166.100 - - [19/Apr/2026:10:30:27 -0300] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 404 414 show less	Bad Web Bot
🇩🇪 itsolon	2026-04-22 01:25:37 (1 month ago)	[22/Apr/2026:03:25:32 +0200] 177682113270.459817 45.92.1.39 60569 217.154.7.177 443 [22/Apr/2026:03: ... show more [22/Apr/2026:03:25:32 +0200] 177682113270.459817 45.92.1.39 60569 217.154.7.177 443 [22/Apr/2026:03:25:34 +0200] 177682113473.979727 45.92.1.39 64838 217.154.7.177 443 [22/Apr/2026:03:25:34 +0200] 177682113418.553724 45.92.1.39 61218 217.154.7.177 80 [22/Apr/2026:03:25:32 +0200] 177682113211.807137 45.92.1.39 60586 217.154.7.177 443 [22/Apr/2026:03:25:34 +0200] 177682113437.942544 45.92.1.39 60611 217.154.7.177 443 ... show less	Port Scan Hacking Brute-Force Web App Attack
🇲🇾 Rizzy	2026-04-22 01:03:29 (1 month ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇬🇧 andypiper	2026-04-22 01:02:39 (1 month ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇦🇺 2000cn.com.au	2026-04-22 00:58:10 (1 month ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-bad-user-agent	Web App Attack Bad Web Bot
🇺🇸 julianalee.com	2026-04-22 00:13:00 (1 month ago)	20/Apr/26 03:31:23 #6261494 CRITICAL - 45.92.1.39 POST /index.php - BASE64-encoded inje ... show more 20/Apr/26 03:31:23 #6261494 CRITICAL - 45.92.1.39 POST /index.php - BASE64-encoded injection - [POST:l = ZXJyb3JfcmVwb3J0aW5nKDApOyBlY2hvIHBocF91bmFtZSgpLiI8YnI+Ii5nZXRjd2QoKS4iPGJyPiI7IGlmKCRfR0VUWydGb3gnXSA9PSAnZDN3TDcnKXskc2F3MSA9ICRfRklMRVNbJ2ZpbGUnXVsndG1wX25hbWUnXTskc2F3MiA9ICRfRklMRVNbJ2Z...] - julianaleefoundation.org show less	SQL Injection
🇩🇪 itsolon	2026-04-21 23:06:45 (1 month ago)	[22/Apr/2026:01:06:42 +0200] 177681280227.496653 45.92.1.39 64217 217.154.7.177 443 [22/Apr/2026:01: ... show more [22/Apr/2026:01:06:42 +0200] 177681280227.496653 45.92.1.39 64217 217.154.7.177 443 [22/Apr/2026:01:06:44 +0200] 17768128041.637093 45.92.1.39 62117 217.154.7.177 80 [22/Apr/2026:01:06:44 +0200] 177681280476.513036 45.92.1.39 58943 217.154.7.177 443 [22/Apr/2026:01:06:43 +0200] 177681280389.907014 45.92.1.39 50256 217.154.7.177 443 [22/Apr/2026:01:06:44 +0200] 177681280477.018157 45.92.1.39 52825 217.154.7.177 443 ... show less	Port Scan Hacking Brute-Force Web App Attack
🇨🇭 4server	2026-04-21 21:33:01 (1 month ago)	[TueApr2123:32:54.9238282026][security2:error][pid3541673:tid3541748][client45.92.1.39:0]ModSecurity ... show more [TueApr2123:32:54.9238282026][security2:error][pid3541673:tid3541748][client45.92.1.39:0]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"$\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\$\\|\?=\?f$\?:open\\|write$\?\\\\\\\\$\\|\\\\\\\\b\(\?:passthru\\|serialize\\|php_uname\\|phpinfo\\|shell_exec\\|preg_\\\\\\\\w \\|mysql_query\\|exec\\|include\\|eval\\|create_function\\|system\\|base64_decode\\|decode_base64\\|base64_url_decode\\|str_rot13$\\\\\\\\b\?$\?:\\\\\\\\\(\\|\\\\\\\\:$\)\"atARGS:l.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"724\"][id\"340195\"][rev\"4\"][msg\"Atomicorp.comWAFRules:AttackBlocked-Base64EncodedPHPfunctioninArgument-thismaybeanattack.\"][data\"php_uname\(\"][severity\"CRITICAL\"][hostname\"shadowdrummer.ch\"][uri\"/wp-plain.php\"][unique_id\"aeftBhdvnlZzhfVWu3FS7wAAAQc\"]\,referer:www.google.com show less	Hacking Web App Attack
Anonymous	2026-04-21 20:09:52 (1 month ago)	Plugin Upload Exploit via fix/up.php,File Upload Exploit via wp-plain.php,Theme Backdoor Exploit via ... show more Plugin Upload Exploit via fix/up.php,File Upload Exploit via wp-plain.php,Theme Backdoor Exploit via db.php,Exfbdlza.php Backdoor Probe,ALFA_DATA API Abuse show less	Hacking Web App Attack
🇺🇸 nationaleventpros.com	2026-04-21 19:19:50 (1 month ago)	vulnerability scan	Web App Attack
🇷🇺 Deynekin.com	2026-04-21 17:52:15 (1 month ago)	This IP address has been identified as part of a botnet infrastructure used by threat actors, indica ... show more This IP address has been identified as part of a botnet infrastructure used by threat actors, indicating automated and malicious activity. show less	Fraud Orders Web App Attack SSH Web Spam FTP Brute-Force Phishing Email Spam Port Scan Brute-Force Exploited Host Hacking SQL Injection
🇫🇷 Version Net	2026-04-21 17:34:16 (1 month ago)	IPS Detection: ALFA.TEaM.Web.Shell	Hacking

Showing 1 to 15 of 342 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 174.35.25.179

🇹🇬 156.38.73.89

🇺🇸 147.185.132.56

🇧🇷 131.108.51.92

🇳🇱 91.92.40.204

🇳🇱 91.92.40.6

🇧🇷 45.205.1.243

🇺🇸 44.194.255.195

🇹🇼 198.235.24.94

🇬🇧 196.16.2.38

🇲🇽 187.152.134.157

🇧🇷 179.191.82.115

🇨🇦 172.71.120.33

🇯🇵 138.199.39.178

🇨🇳 124.31.107.75

🇳🇱 91.92.42.243

🇳🇱 81.19.216.101

🇺🇸 44.245.27.207

🇪🇬 41.39.190.138

🇧🇷 189.127.172.36