JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 63.141.245.242

63.141.245.242 was found in our database!

This IP was reported 130 times. Confidence of Abuse is 100%: ?

100%

ISP	Nocix, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS33387
Hostname(s)	nvme.hostbuddy.cloud
Domain Name	nocix.net
Country	🇺🇸 United States of America
City	Kansas City, Missouri

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 63.141.245.242

Whois 63.141.245.242

IP Abuse Reports for 63.141.245.242:

This IP address has been reported a total of 130 times from 55 distinct sources. 63.141.245.242 was first reported on July 11th 2024, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-04 04:10:31 (5 hours ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇩🇪 LRob.fr	2026-06-03 11:00:07 (22 hours ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇲🇹 Malta	2026-06-03 10:52:13 (22 hours ago)	63.141.245.242 - - [03/Jun/2026:12:52:12 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 63.141.245.242 - - [03/Jun/2026:12:52:12 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇧🇪 cmbplf	2026-06-01 15:10:49 (2 days ago)	2.263 requests from abuseipdb.com blacklisted IP (6mos3w8h)	Brute-Force Bad Web Bot
Anonymous	2026-06-01 13:44:04 (2 days ago)	Bot / scanning and/or hacking attempts: [0/0] init, GET /wp-login.php HTTP/2.0, [2/2] done, POST /wp ... show more Bot / scanning and/or hacking attempts: [0/0] init, GET /wp-login.php HTTP/2.0, [2/2] done, POST /wp-login.php HTTP/2.0 show less	Hacking Web App Attack
🇲🇽 octageeks.com	2026-06-01 04:11:01 (3 days ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇨🇦 polycoda	2026-05-31 20:09:08 (3 days ago)	📄 Probes for wp-login.php and other inexistent URLs	Hacking Web App Attack
🇩🇪 LRob.fr	2026-05-31 19:45:02 (3 days ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇩🇪 london2038.com	2026-05-31 18:38:27 (3 days ago)	Attacking WordPress 63.141.245.242 - - [31/May/2026:20:38:23 +0200] "POST /wp-login.php HTTP/2.0" 50 ... show more Attacking WordPress 63.141.245.242 - - [31/May/2026:20:38:23 +0200] "POST /wp-login.php HTTP/2.0" 503 19291 "https://<REDACTED>/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Brute-Force Web App Attack
🇦🇺 QT	2026-05-31 15:05:39 (3 days ago)	Unauthorised WordPress admin login attempted at 2026-06-01 01:05:31 +1000	Web App Attack
🇩🇪 nyt	2026-05-31 14:28:54 (3 days ago)	Repeated WordPress login POSTs blocked by WAF (3 in 6h)	Brute-Force Web App Attack
🇫🇷 solution.it	2026-05-31 14:23:02 (3 days ago)	[Sun May 31 16:23:01.422108 2026] [php7:error] [pid 4094316:tid 4094316] [client 63.141.245.242:4470 ... show more [Sun May 31 16:23:01.422108 2026] [php7:error] [pid 4094316:tid 4094316] [client 63.141.245.242:44704] script '/var/www/html/blog.solution.it/wp-login.php' not found or unable to stat show less	Web App Attack
🇲🇹 Malta	2026-05-31 10:36:41 (3 days ago)	63.141.245.242 - - [31/May/2026:12:36:41 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 63.141.245.242 - - [31/May/2026:12:36:41 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇩🇪 FeG Deutschland	2026-05-25 19:44:56 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack
🇫🇷 masterguru	2026-05-25 08:29:25 (1 week ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 63.141.245.242 (US/United States/nvme.hostbud ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 63.141.245.242 (US/United States/nvme.hostbuddy.cloud): 1 in the last 3600 secs (0-197) show less	Hacking

Showing 1 to 15 of 130 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.148.10.141

🇺🇸 195.210.107.83

🇬🇧 193.163.125.164

🇲🇽 187.218.57.50

🇦🇷 181.45.46.208

🇧🇼 168.167.228.74

🇫🇷 163.5.241.55

🇨🇳 118.145.238.60

🇦🇲 87.241.157.222

🇱🇹 81.30.98.158

🇮🇳 59.95.246.194

🇮🇪 52.178.176.182

🇮🇪 52.178.176.157

🇧🇩 45.118.68.59

🇿🇲 41.175.188.58

🇬🇧 34.39.61.250

🇮🇹 34.17.207.81

🇮🇳 3.108.40.245

🇺🇸 206.221.176.60

🇵🇭 203.177.9.57