JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 84.239.48.4

84.239.48.4 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 0%: ?

ISP	INVITE Systems SRL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	invitesys.ro
Country	🇺🇸 United States of America
City	Fargo, North Dakota

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 84.239.48.4

Whois 84.239.48.4

IP Abuse Reports for 84.239.48.4:

This IP address has been reported a total of 35 times from 22 distinct sources. 84.239.48.4 was first reported on November 7th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 int8	2026-04-18 22:55:41 (2 months ago)	2026-04-18T22:55:41.617721431Z Minecraft server scanner: status request	Port Scan
🇳🇱 FREAKISH	2026-04-18 22:54:32 (2 months ago)	2026-04-19 00:54:32: Minecraft server scan detected from 84.239.48.4 on port 25565 of 127.0.0.1	Port Scan
🇩🇪 zUnlegit	2026-04-18 22:53:57 (2 months ago)	2026-04-18 22:53:57: Minecraft server scan detected from 84.239.48.4 on port 25565 of mailserver	Port Scan
🇺🇸 cpxducky	2026-04-18 22:53:47 (2 months ago)	2026-04-18 22:53:47: Minecraft server scan detected from 84.239.48.4 on port 25565 of mail.cpxducky. ... show more 2026-04-18 22:53:47: Minecraft server scan detected from 84.239.48.4 on port 25565 of mail.cpxducky.com show less	Port Scan
🇺🇸 LockBlock	2026-04-18 22:53:42 (2 months ago)	2026-04-18 22:53:42: Minecraft server scan detected from 84.239.48.4 on port 25565 of racknerd-e7e1a ... show more 2026-04-18 22:53:42: Minecraft server scan detected from 84.239.48.4 on port 25565 of racknerd-e7e1a9 show less	Port Scan
🇩🇪 int8	2026-04-03 08:33:16 (2 months ago)	2026-04-03T08:33:16.742961068Z Minecraft server scanner: status request	Port Scan
🇳🇱 FREAKISH	2026-04-03 08:32:19 (2 months ago)	2026-04-03 10:32:19: Minecraft server scan detected from 84.239.48.4 on port 25565 of 127.0.0.1	Port Scan
🇩🇪 zUnlegit	2026-04-03 08:31:54 (2 months ago)	2026-04-03 08:31:38: Minecraft server scan detected from 84.239.48.4 on port 25565 of mailserver	Port Scan
🇺🇸 cpxducky	2026-04-03 08:31:39 (2 months ago)	2026-04-03 08:31:39: Minecraft server scan detected from 84.239.48.4 on port 25565 of mail.cpxducky. ... show more 2026-04-03 08:31:39: Minecraft server scan detected from 84.239.48.4 on port 25565 of mail.cpxducky.com show less	Port Scan
🇺🇸 LockBlock	2026-04-03 08:31:31 (2 months ago)	2026-04-03 08:31:31: Minecraft server scan detected from 84.239.48.4 on port 25565 of racknerd-e7e1a ... show more 2026-04-03 08:31:31: Minecraft server scan detected from 84.239.48.4 on port 25565 of racknerd-e7e1a9 show less	Port Scan
🇺🇸 mnsf	2026-02-02 16:05:05 (4 months ago)	Login Too Frequent (38) Request Overload (198)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-02 00:39:11 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 84.239.48.4 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 84.239.48.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 19:39:06.228255 2026] [security2:error] [pid 26296:tid 26308] [client 84.239.48.4:64065] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|artmarialeon.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "artmarialeon.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aX_yKuhBigSMpWvPPXNdqQAAAQg"], referer: https://www.facebook.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-01 18:12:08 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 84.239.48.4 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 84.239.48.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 13:12:03.158732 2026] [security2:error] [pid 32693:tid 32693] [client 84.239.48.4:12754] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ashleycroft.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ashleycroft.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aX-Xcxn3EqAM6ECLiIIsFwAAAAA"], referer: https://www.bing.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-01 15:05:07 (4 months ago)	Login Too Frequent (43) Request Overload (217)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-01 10:05:49 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 84.239.48.4 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 84.239.48.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 05:05:40.752818 2026] [security2:error] [pid 23035:tid 23035] [client 84.239.48.4:56794] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.artbytracyjane.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.artbytracyjane.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aX8ldIvrVxQS6tR_lmqvuAAAABc"], referer: https://t.co/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 209.85.128.101

🇩🇪 185.220.100.243

🇨🇳 180.167.128.203

🇨🇳 110.249.201.12

🇵🇱 74.248.24.188

🇸🇬 23.111.14.189

🇮🇳 4.213.38.49

🇮🇹 195.231.39.17

🇻🇳 180.93.43.95

🇮🇩 163.7.5.163

🇭🇰 150.5.154.160

🇺🇸 38.148.249.2

🇨🇭 20.203.180.35

🇨🇳 14.103.118.177

🇰🇷 222.96.44.234

🇨🇳 218.61.251.3

🇬🇧 213.171.208.62

🇺🇸 136.117.144.65

🇺🇸 66.132.195.15

🇳🇱 45.148.10.240