JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 49.37.41.145

49.37.41.145 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 73%: ?

73%

ISP	Reliance Jio Infocomm Limited
Usage Type	Fixed Line ISP
ASN	AS55836
Domain Name	jio.com
Country	🇮🇳 India
City	Kolkata, West Bengal

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 49.37.41.145

Whois 49.37.41.145

IP Abuse Reports for 49.37.41.145:

This IP address has been reported a total of 15 times from 14 distinct sources. 49.37.41.145 was first reported on September 13th 2021, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 Burayot	2026-06-11 17:04:32 (2 days ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 49.37.41.145 (IN/India/-): 1 in the ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 49.37.41.145 (IN/India/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 mnsf	2026-06-11 07:05:30 (2 days ago)	Xmlrpc Caught (6)	Brute-Force Web App Attack
🇬🇧 consul.to	2026-06-11 06:54:11 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇮 inlink.ltd	2026-06-10 16:26:10 (3 days ago)	Known malicious PHP file or CMS probe	Web App Attack
🇳🇱 wlt-blocker	2026-06-10 11:06:51 (3 days ago)	Unauthorized access to webpage admin	Web App Attack
🇲🇹 Malta	2026-06-10 10:35:53 (3 days ago)	49.37.41.145 - - [10/Jun/2026:12:35:53 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Linux; Andro ... show more 49.37.41.145 - - [10/Jun/2026:12:35:53 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Linux; Android 10; x86) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇺🇸 lnklnx	2026-06-08 16:57:33 (5 days ago)	www.lnklnx.com:443 49.37.41.145 - - [08/Jun/2026:11:57:31 -0500] "POST /xmlrpc.php HTTP/1.1" 403 387 ... show more www.lnklnx.com:443 49.37.41.145 - - [08/Jun/2026:11:57:31 -0500] "POST /xmlrpc.php HTTP/1.1" 403 3872 "-" "Mozilla/5.0 (Windows NT 6.2; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/83.0.0.0 Safari/537.36" ... show less	Web App Attack
Anonymous	2026-06-08 16:55:43 (5 days ago)	49.37.41.145 - - [08/Jun/2026:18:50:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Mozilla/5.0 ( ... show more 49.37.41.145 - - [08/Jun/2026:18:50:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/84.0.0.0 Safari/537.36" 49.37.41.145 - - [08/Jun/2026:18:50:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/84.0.0.0 Safari/537.36" 49.37.41.145 - - [08/Jun/2026:18:55:17 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Mozilla/5.0 (Windows NT 6.2; x86) AppleWebKit/537.36 (KHTML, like Gecko) Edge/89.0.0.0 Safari/537.36" 49.37.41.145 - - [08/Jun/2026:18:55:18 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (Windows NT 6.2; x86) AppleWebKit/537.36 (KHTML, like Gecko) Edge/89.0.0.0 Safari/537.36" 49.37.41.145 - - [08/Jun/2026:18:55:42 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Mozilla/5.0 (Windows NT 10.0; x86) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
Anonymous	2026-06-07 08:10:21 (6 days ago)	49.37.41.145 - - [07/Jun/2026:10:10:21 +0200] "POST / HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Macintosh; ... show more 49.37.41.145 - - [07/Jun/2026:10:10:21 +0200] "POST / HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Opera/78.0.0.0 Safari/537.36" show less	Web App Attack
Anonymous	2026-06-07 05:36:02 (6 days ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇳🇱 wlt-blocker	2026-06-06 13:04:39 (1 week ago)	Unauthorized access to webpage admin	Web App Attack
🇨🇦 electronico	2026-06-06 12:29:13 (1 week ago)	49.37.41.145 - - [06/Jun/2026:23:29:12 +1100] "POST /xmlrpc.php HTTP/1.1" 301 4285 "-" "Mozilla/5.0 ... show more 49.37.41.145 - - [06/Jun/2026:23:29:12 +1100] "POST /xmlrpc.php HTTP/1.1" 301 4285 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/85.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
🇨🇦 polycoda	2026-06-06 07:39:05 (1 week ago)	AutoBlock: 🔐 WordPress Login Brute Force (20X or 30X) (Decay-Based)	Brute-Force Web App Attack
🇨🇭 4server	2026-06-05 17:54:30 (1 week ago)	[FriJun0519:54:24.5351032026][security2:error][pid2196311:tid2196412][client49.37.41.145:0]ModSecuri ... show more [FriJun0519:54:24.5351032026][security2:error][pid2196311:tid2196412][client49.37.41.145:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"367\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"carolin-mizio.ch\"][uri\"/xmlrpc.php\"][unique_id\"aiMNUAr1eN1SHjXqeBYg8gAAAAQ\"] show less	Hacking Web App Attack
🇩🇪 clamehost.it	2021-09-13 05:01:56 (4 years ago)	Automatic report - Brute Force attack using this IP address	Brute-Force

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.95.230.142

🇧🇷 179.216.16.184

🇷🇺 178.207.14.244

🇭🇰 119.246.15.94

🇧🇷 2804:1b3:a4c1:e03d:5872:64da:9a46:1e33

🇳🇱 204.76.203.51

🇳🇱 195.178.110.157

🇭🇰 152.32.209.166

🇰🇷 118.194.249.8

🇵🇹 85.240.62.84

🇱🇻 62.60.234.140

🇭🇰 45.142.154.87

🇺🇸 34.106.207.224

🇳🇱 20.229.115.183

🇺🇸 2607:f8b0:4001:c11::12e

🇺🇸 198.46.253.100

🇮🇳 172.232.108.36

🇺🇸 162.243.228.110

🇺🇸 138.91.107.7

🇰🇷 112.216.129.27