JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.249.227.109

5.249.227.109 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 0%: ?

ISP	GROUP.ONE NORWAY AS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51468
Domain Name	one.com
Country	🇳🇴 Norway
City	Oslo, Oslo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.249.227.109

Whois 5.249.227.109

IP Abuse Reports for 5.249.227.109:

This IP address has been reported a total of 39 times from 21 distinct sources. 5.249.227.109 was first reported on July 25th 2021, and the most recent report was 4 years ago.

Old Reports: The most recent abuse report for this IP address is from 4 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 pusathosting.com	2021-11-30 09:55:18 (4 years ago)	uvcm 5.249.227.109 [30/Nov/2021:21:53:20 "https://kimronggolawe.com/wp-login.php?action=register" "G ... show more uvcm 5.249.227.109 [30/Nov/2021:21:53:20 "https://kimronggolawe.com/wp-login.php?action=register" "GET /wp-login.php?registration=disabled 200 8161 5.249.227.109 [30/Nov/2021:21:53:21 "-" "GET /wp-login.php?action=register 302 5570 5.249.227.109 [30/Nov/2021:21:53:23 "https://kimronggolawe.com/wp-login.php?action=register" "GET /wp-login.php?registration=disabled 200 3054 show less	Brute-Force Web App Attack
🇺🇸 tinyshield.me	2021-10-06 10:06:27 (4 years ago)	Provided by tinyshield.me - Simple Security For WordPress	Brute-Force Web App Attack
🇬🇧 UKFast Security	2021-10-02 19:41:26 (4 years ago)	WordPress XML RPC POST Brute Force Attack	Web App Attack
🇩🇪 cerberusinformatica	2021-10-02 19:01:59 (4 years ago)	5.249.227.109 - - [03/Oct/2021:01:01:03 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 ... show more 5.249.227.109 - - [03/Oct/2021:01:01:03 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 5.249.227.109 - - [03/Oct/2021:01:01:59 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... show less	Web App Attack
🇫🇷 sololinux.es	2021-10-02 09:57:25 (4 years ago)	5.249.227.109 - - [02/Oct/2021:15:57:24 +0200] "POST /wp-login.php HTTP/1.0" 200 3914 "-" "Mozilla/5 ... show more 5.249.227.109 - - [02/Oct/2021:15:57:24 +0200] "POST /wp-login.php HTTP/1.0" 200 3914 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... show less	Brute-Force Web App Attack
🇬🇧 headwall	2021-10-02 04:08:39 (4 years ago)	Probe for WordPress internals file xmlrpc.php by client 5.249.227.109 on local port 443	Web App Attack
🇫🇷 sololinux.es	2021-10-02 02:38:42 (4 years ago)	5.249.227.109 - - [02/Oct/2021:08:38:41 +0200] "POST /wp-login.php HTTP/1.0" 200 3913 "-" "Mozilla/5 ... show more 5.249.227.109 - - [02/Oct/2021:08:38:41 +0200] "POST /wp-login.php HTTP/1.0" 200 3913 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... show less	Brute-Force Web App Attack
🇬🇧 headwall	2021-10-02 00:41:15 (4 years ago)	Probe for WordPress internals file xmlrpc.php by client 5.249.227.109 on local port 443	Web App Attack
🇲🇾 syokadmin	2021-10-01 21:50:52 (4 years ago)	(mod_security) mod_security (id:949110) triggered by 5.249.227.109 (NO/Norway/-): 1 in the last 3600 ... show more (mod_security) mod_security (id:949110) triggered by 5.249.227.109 (NO/Norway/-): 1 in the last 3600 secs show less	Brute-Force
🇨🇦 KIsmay	2021-10-01 15:06:40 (4 years ago)	WordPress Brute Force, 5 attempts	Brute-Force Web App Attack
🇸🇬 pusathosting.com	2021-10-01 14:45:03 (4 years ago)	ang 5.249.227.109 {batikratoebu.com} "POST /wp-login.php 200 5.249.227.109 {batikratoebu.com} "GET / ... show more ang 5.249.227.109 {batikratoebu.com} "POST /wp-login.php 200 5.249.227.109 {batikratoebu.com} "GET /wp-login.php 200 5.249.227.109 {batikratoebu.com} "POST /wp-login.php 200 show less	Brute-Force Web App Attack
🇺🇸 SleepyHosting	2021-10-01 14:22:56 (4 years ago)	(WPLOGIN) WP Login Attack 5.249.227.109 (NO/Norway/-): 5 in the last 3600 secs	Brute-Force
🇩🇪 cerberusinformatica	2021-10-01 13:55:50 (4 years ago)	5.249.227.109 - - [01/Oct/2021:19:37:10 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 ... show more 5.249.227.109 - - [01/Oct/2021:19:37:10 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 5.249.227.109 - - [01/Oct/2021:19:55:50 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... show less	Web App Attack
Anonymous	2021-10-01 11:28:31 (4 years ago)	abasicmove.de 5.249.227.109 [01/Oct/2021:17:28:30 +0200] "POST /wp-login.php HTTP/1.1" 200 8197 "-" ... show more abasicmove.de 5.249.227.109 [01/Oct/2021:17:28:30 +0200] "POST /wp-login.php HTTP/1.1" 200 8197 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" abasicmove.de 5.249.227.109 [01/Oct/2021:17:28:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 5516 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" show less	Web App Attack
🇨🇦 Lagserv.com	2021-10-01 10:55:02 (4 years ago)	WORDPRESS brute force	Web Spam Blog Spam Brute-Force Web App Attack

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 218.150.184.241

🇨🇳 218.13.26.42

🇳🇱 176.65.139.36

🇭🇰 154.221.28.214

🇺🇸 147.185.132.70

🇮🇳 125.20.237.142

🇺🇸 35.196.18.151

🇺🇸 18.217.208.51

🇷🇺 194.176.114.36

🇷🇺 178.185.136.57

🇺🇸 165.227.188.42

🇸🇬 159.89.200.30

🇫🇮 147.185.133.140

127.0.0.1

🇺🇸 107.167.34.125

🇳🇿 103.93.145.33

🇺🇸 64.62.156.29

🇩🇪 47.245.141.179

🇺🇸 40.83.182.122

🇻🇳 14.191.196.218