JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.128.199.45

45.128.199.45 was found in our database!

This IP was reported 157 times. Confidence of Abuse is 45%: ?

45%

ISP	VPN Consumer Amsterdam, The Netherlands
Usage Type	Data Center/Web Hosting/Transit
ASN	AS62240
Domain Name	vpnconsumer.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.128.199.45

Whois 45.128.199.45

IP Abuse Reports for 45.128.199.45:

This IP address has been reported a total of 157 times from 85 distinct sources. 45.128.199.45 was first reported on March 4th 2022, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 integrantservices.com	2026-06-04 00:56:07 (2 days ago)	(wordpress) Failed wordpress login from 45.128.199.45 (-)	Brute-Force
Anonymous	2026-05-23 21:15:17 (1 week ago)	Attac	Brute-Force
🇳🇿 Antinson	2026-05-07 06:34:06 (4 weeks ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇺🇸 Epimetheus	2026-05-05 22:42:27 (1 month ago)	Zombie network / Bot scanner detected: [GET] /wp-content/admin-header.php [GET] /wp-content/upgrade ... show more Zombie network / Bot scanner detected: [GET] /wp-content/admin-header.php [GET] /wp-content/upgrade-temp-backup/about.php [GET] /wp-content/uploads/system_core.php [GET] /wp-includes/blocks/media-text/index.php [GET] /wp-content/plugins/pwnd/file-js.php [GET] /wp-admin/css/bolt.php [GET] /wp-content/uploads/autodiagnosis.php [GET] /wp-content/plugins/three-column-screen-layout/db.php [GET] /wp-content/plugins/vwcleanerplugin/bump.php [GET] /libraries/joomla/jmails.php [GET] /type.php [GET] /wp-includes/l10n/class-wp-translations-library.php%20 [GET] /wp-content/uploads/uploads.php [GET] /vendor/phpunit/phpunit/src/Util/PHP/abcd.php UA: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36 show less	Bad Web Bot Exploited Host Web App Attack
🇩🇪 raph	2026-05-02 02:21:07 (1 month ago)	[Wordpress] crawler /wp-admin/, /wp-content/, etc.	Bad Web Bot Web App Attack
🇧🇾 lns.bz	2026-05-01 20:25:13 (1 month ago)	Too many 404 requests [BY]	Web App Attack
🇫🇷 Octopuce	2026-04-30 10:58:36 (1 month ago)	Aggressive web search of vulnerable pages: /autoload_classmap/bypass.php /dropdown.php /images/admin ... show more Aggressive web search of vulnerable pages: /autoload_classmap/bypass.php /dropdown.php /images/admin.php /db.php /.well-known/pki-validation/ma ... show less	Web App Attack
🇳🇱 Site.eu	2026-04-30 09:40:08 (1 month ago)	Excessive multi-domain requests	Brute-Force
🇫🇮 Shaik Sai Meera	2026-04-30 00:04:45 (1 month ago)	IM360 WAF: Infectors: Suspicious access attempt (webshell)	Brute-Force FTP Brute-Force Open Proxy
🇺🇸 TPI-Abuse	2026-04-29 08:07:23 (1 month ago)	(mod_security) mod_security (id:234930) triggered by 45.128.199.45 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:234930) triggered by 45.128.199.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 04:07:18.904145 2026] [security2:error] [pid 13600:tid 13600] [client 45.128.199.45:21089] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/lib\\\\/php\\\\/connector\\\\.minimal\\\\.php$" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6778"] [id "234930"] [rev "2"] [msg "COMODO WAF: File upload vulnerability in the file manager plugin before 6.9 for WordPress (CVE-2020-25213)\|\|www.easy2surf.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "www.easy2surf.com"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "afG8NivOPCqS2BR5UMgRZwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2026-04-29 00:04:40 (1 month ago)	IM360 WAF: Infectors: Suspicious access attempt (webshell)	Brute-Force FTP Brute-Force Open Proxy
🇫🇮 Shaik Sai Meera	2026-04-28 00:04:36 (1 month ago)	IM360 WAF: Infectors: Suspicious access attempt (webshell)	Brute-Force FTP Brute-Force Open Proxy
🇺🇦 URAN Publishing Service	2026-04-27 21:39:31 (1 month ago)	45.128.199.45 - - [28/Apr/2026:00:39:30 +0300] "GET /wp-includes/customize/wp-conflg.php?p= HTTP/1.1 ... show more 45.128.199.45 - - [28/Apr/2026:00:39:30 +0300] "GET /wp-includes/customize/wp-conflg.php?p= HTTP/1.1" 404 715 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-04-27 13:49:13 (1 month ago)	45.128.199.45 - - [27/Apr/2026:16:49:12 +0300] "GET /wp-admin/maint/index.php HTTP/1.1" 404 711 "-" ... show more 45.128.199.45 - - [27/Apr/2026:16:49:12 +0300] "GET /wp-admin/maint/index.php HTTP/1.1" 404 711 "-" "Go-http-client/1.1" 45.128.199.45 - - [27/Apr/2026:16:49:12 +0300] "GET /wp-admin/css/index.php HTTP/1.1" 404 711 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇫🇮 Shaik Sai Meera	2026-04-27 00:04:08 (1 month ago)	IM360 WAF: Infectors: Suspicious access attempt (webshell)	Brute-Force FTP Brute-Force Open Proxy

Showing 1 to 15 of 157 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 111.162.158.46

🇺🇸 47.251.245.44

🇨🇳 14.103.184.200

🇺🇸 216.25.89.120

🇸🇬 193.37.32.55

🇺🇸 162.216.149.146

🇺🇸 96.78.175.41

🇸🇬 47.236.165.0

🇨🇳 220.180.249.165

🇱🇹 185.169.4.189

🇦🇷 181.46.9.195

🇸🇬 152.42.160.174

🇨🇳 113.57.154.110

🇳🇱 88.210.63.122

🇸🇪 85.203.44.120

🇺🇸 66.132.186.177

🇳🇱 45.148.10.147

🇺🇸 20.15.162.87

🇧🇷 102.211.152.138

🇭🇰 101.36.108.191