AbuseIPDB » 49.212.235.41
49.212.235.41 was found in our database!
This IP was reported 9 times. Confidence of
Abuse
is 0%: ?
| ISP |
SAKURA Internet Inc.
|
| Usage Type |
Data Center/Web Hosting/Transit
|
| ASN |
AS9371
|
| Hostname(s) |
www3331.sakura.ne.jp
|
| Domain Name |
sakura.ad.jp
|
| Country |
๐ฏ๐ต
Japan
|
| City |
Osaka, Osaka
|
IP info including ISP, Usage Type, and Location provided
by IPInfo. Updated weekly.
IP Abuse Reports for 49.212.235.41:
This IP address has been reported a total of
9
times from
7 distinct
sources.
49.212.235.41 was first reported on
, and the most recent report was
.
Old Reports:
The most recent abuse report for this IP address is from
. It is possible that this IP is no longer involved in abusive activities.
| Reporter |
IoA Timestamp (UTC)
|
Comment |
Categories |
|
|
Anonymous
|
|
SMTP scanner - relay access denied
|
Brute-Force
Exploited Host
|
|
|
๐ฆ๐บ
weblite
|
|
WP_MALWARE_PROBE
|
Hacking
Web App Attack
|
|
|
๐จ๐ฑ
darkside
|
|
49.212.235.41 - - [26/Jul/2025:20:32:22 -0400] "GET /archive.zip HTTP/1.1" 404 76288 "-" "-"
49.212. ...
show more
49.212.235.41 - - [26/Jul/2025:20:32:22 -0400] "GET /archive.zip HTTP/1.1" 404 76288 "-" "-"
49.212.235.41 - - [26/Jul/2025:20:32:23 -0400] "GET /Backup.zip HTTP/1.1" 404 76288 "-" "-"
...
show less
|
Web App Attack
|
|
|
๐ต๐ฑ
sefinek.net
|
|
Triggered Cloudflare WAF (firewallCustom) from JP.
Action taken: BLOCK
Protocol: HTTP/1.1 (HEAD meth ...
show more
Triggered Cloudflare WAF (firewallCustom) from JP.
Action taken: BLOCK
Protocol: HTTP/1.1 (HEAD method)
Endpoint: /Backup.zip
UA: Empty string
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
|
Bad Web Bot
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 49.212.235.41 (www3331.sakura.ne.jp): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 49.212.235.41 (www3331.sakura.ne.jp): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 19 19:39:29.719083 2025] [security2:error] [pid 32273:tid 32273] [client 49.212.235.41:58595] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "menagri.com"] [uri "/wp-config.php_old"] [unique_id "aHwssXkRiRo98XriVwh-BwAAAAk"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฎ๐น
VHosting
|
|
Detected attack by Imunify360
|
Brute-Force
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210492) triggered by 49.212.235.41 (www3331.sakura.ne.jp): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 49.212.235.41 (www3331.sakura.ne.jp): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 18 17:22:18.840455 2025] [security2:error] [pid 28567:tid 28567] [client 49.212.235.41:62020] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "groomattheinn.com"] [uri "/wp-config.php_old"] [unique_id "aHq7CvSvn3-Wjb1TNoBJmAAAAAU"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฎ๐น
VHosting
|
|
Detected attack by Imunify360
|
Brute-Force
Web App Attack
|
|
|
๐จ๐ญ
Another Ally ๐ฉ๐ปโ๐พ
|
|
spam
|
Email Spam
|
|
Showing 1 to
9
of 9 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: