JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.11.172.25

45.11.172.25 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 17%: ?

17%

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	netutils.io
Country	🇭🇺 Hungary
City	Budapest, Budapest

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.11.172.25

Whois 45.11.172.25

IP Abuse Reports for 45.11.172.25:

This IP address has been reported a total of 11 times from 4 distinct sources. 45.11.172.25 was first reported on May 3rd 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 Anytech	2026-06-06 15:59:48 (1 week ago)	Blocked by Conn-Monitor: Web scanning activity	Web App Attack
🇬🇧 consul.to	2026-05-30 00:57:43 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-05-27 23:15:03 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-05-18 03:18:11 (4 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-05-17 00:41:23 (4 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇧🇪 cmbplf	2026-05-11 07:44:45 (1 month ago)	11 requests with user_agent.original Mozilla/5.0 (Macintosh; U; PPC; en-US; rv:0.9.3) Gecko/2001080 ... show more 11 requests with user_agent.original Mozilla/5.0 (Macintosh; U; PPC; en-US; rv:0.9.3) Gecko/20010802 5 requests with user_agent.original Mozilla/5.0 (Linux; Android 6.0.1; SM-G532MT Build/MMB29T; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/99.0.4844.88 Mobile Safari/537.36 [FB_IAB/FB4A;FBAV/436.0.0.35.101;] show less	Brute-Force Bad Web Bot
🇬🇧 consul.to	2026-05-01 15:54:27 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2024-05-05 05:04:20 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 45.11.172.25 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 45.11.172.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 05 01:04:13.041500 2024] [security2:error] [pid 3683] [client 45.11.172.25:28627] [client 45.11.172.25] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|chewlas.brandpumice.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "chewlas.brandpumice.com"] [uri "/back/mysql.sql"] [unique_id "ZjcTTTowO841xkxaqbkq7AAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-05-05 04:16:27 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 45.11.172.25 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 45.11.172.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 05 00:16:22.778384 2024] [security2:error] [pid 32668] [client 45.11.172.25:37247] [client 45.11.172.25] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|cvgandhes.investments\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cvgandhes.investments"] [uri "/backup/www.sql"] [unique_id "ZjcIFgR1xfMn14BkpaCyRwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-05-03 02:27:08 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 45.11.172.25 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 45.11.172.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 02 22:27:02.019187 2024] [security2:error] [pid 23090] [client 45.11.172.25:26745] [client 45.11.172.25] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|towlesilvapsychotherapy.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "towlesilvapsychotherapy.com"] [uri "/back/sql.sql"] [unique_id "ZjRLdkXsPfrw6UmQ9Zan_AAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-05-03 02:05:25 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 45.11.172.25 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 45.11.172.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 02 22:05:17.608949 2024] [security2:error] [pid 27376] [client 45.11.172.25:4891] [client 45.11.172.25] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.mindtoken.app\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.mindtoken.app"] [uri "/backup/backup.sql"] [unique_id "ZjRGXUrQd_lT_1RCMcHUwAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 147.50.231.135

🇺🇸 74.249.184.13

🇸🇪 194.103.82.72

🇩🇪 185.242.3.179

🇱🇰 124.43.6.160

🇧🇩 103.239.252.132

🇫🇷 85.217.140.36

🇨🇳 8.130.150.26

🇸🇪 213.65.190.48

🇨🇳 183.36.179.7

🇺🇸 165.154.135.119

🇨🇳 120.92.105.170

🇵🇱 87.251.64.158

🇺🇸 70.61.94.82

🇺🇸 54.172.159.189

🇳🇱 45.148.10.157

🇸🇬 45.127.34.120

🇯🇵 34.104.212.40

🇨🇳 222.222.210.183

🇨🇳 221.235.139.191