JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.128.199.76

45.128.199.76 was found in our database!

This IP was reported 173 times. Confidence of Abuse is 100%: ?

100%

ISP	VPN Consumer Amsterdam, The Netherlands
Usage Type	Data Center/Web Hosting/Transit
ASN	AS62240
Domain Name	vpnconsumer.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.128.199.76

Whois 45.128.199.76

IP Abuse Reports for 45.128.199.76:

This IP address has been reported a total of 173 times from 89 distinct sources. 45.128.199.76 was first reported on March 11th 2022, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Live Home Cams	2026-06-22 09:26:22 (4 hours ago)	WebApp brute force attack detected. Multiple file scanning attempts from 45.128.199.76. Detected by ... show more WebApp brute force attack detected. Multiple file scanning attempts from 45.128.199.76. Detected by fail2ban. show less	Web App Attack Brute-Force
🇩🇪 dbmwebdesign	2026-06-22 02:25:12 (11 hours ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇩🇪 ghostwarriors	2026-06-21 23:20:30 (14 hours ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-21 23:06:45 (14 hours ago)	[Mon Jun 22 01:06:41.005318 2026] [authz_core:error] [pid 40986:tid 41033] [client 45.128.199.76:203 ... show more [Mon Jun 22 01:06:41.005318 2026] [authz_core:error] [pid 40986:tid 41033] [client 45.128.199.76:20317] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-admin/maint/includes, referer: http://cimt-precision.de/wp-admin/maint/includes/ [Mon Jun 22 01:06:41.408779 2026] [authz_core:error] [pid 40986:tid 41036] [client 45.128.199.76:20317] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-admin/maint/includes, referer: http://cimt-precision.de/wp-admin/maint/includes/ [Mon Jun 22 01:06:44.412275 2026] [authz_core:error] [pid 40986:tid 41025] [client 45.128.199.76:20317] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-admin/css/admin.php, referer: http://cimt-precision.de/wp-admin/css/admin.php [Mon Jun 22 01:06:44.723682 2026] [authz_core:error] [pid 40986:tid 41017] [client 45.128.199.76:20317] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-admin/css/admin.php, referer: http://cimt-pr ... show less	Brute-Force Web App Attack
🇫🇷 rellik	2026-06-21 19:17:00 (18 hours ago)	Brute Force Scanning Critical Critical Files & Directories, Potential Part of BotNet	Hacking DDoS Attack Brute-Force Web App Attack
🇦🇺 paulshipley.com.au	2026-06-20 02:36:09 (2 days ago)	[Sat Jun 20 12:36:08.746603 2026] [security2:error] [pid 743210] [client 45.128.199.76:39593] [clien ... show more [Sat Jun 20 12:36:08.746603 2026] [security2:error] [pid 743210] [client 45.128.199.76:39593] [client 45.128.199.76] ModSecurity: Access denied with code 403 (phase 4). Operator GE matched 4 at TX:outbound_anomaly_score. [file "/etc/modsecurity/crs/rules/RESPONSE-959-BLOCKING-EVALUATION.conf"] [line "77"] [id "959100"] [msg "Outbound Anomaly Score Exceeded (Total Score: 4)"] [ver "OWASP_CRS/3.3.4"] [tag "anomaly-evaluation"] [hostname "support.paulshipley.com.au"] [uri "/wp-includes/fonts/"] [unique_id "ajX8mPAvC2K8WctL5Brd6wAAAA8"], referer: http://support.paulshipley.com.au/wp-includes/fonts/ ... show less	Web App Attack
🇩🇪 LRob.fr	2026-06-18 17:45:13 (3 days ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇫🇷 masterguru	2026-06-17 12:27:51 (5 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195) show less	Bad Web Bot
🇺🇦 URAN Publishing Service	2026-06-17 05:29:26 (5 days ago)	45.128.199.76 - - [17/Jun/2026:08:29:23 +0300] "GET /wp-content/plugins/so-pinyin-slugs/inc/main_jso ... show more 45.128.199.76 - - [17/Jun/2026:08:29:23 +0300] "GET /wp-content/plugins/so-pinyin-slugs/inc/main_json.php HTTP/1.1" 404 3293 "http://journals.uran.ua/wp-content/plugins/so-pinyin-slugs/inc/main_json.php" "Go-http-client/1.1" 45.128.199.76 - - [17/Jun/2026:08:29:25 +0300] "GET /wp-content/plugins/filester/assets/css/404.php HTTP/1.1" 404 730 "http://journals.uran.ua/wp-content/plugins/filester/assets/css/404.php" "Go-http-client/1.1" ... show less	Web App Attack
🇦🇺 MAGIC	2026-06-17 05:02:55 (5 days ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 todix	2026-06-15 21:57:19 (6 days ago)	Web App Attack Exploid from 45.128.199.76	Web App Attack
🇬🇧 Celtic	2026-06-15 03:43:52 (1 week ago)	Blocked by Fail2Ban with Jail (plesk-apache)	Brute-Force SSH
🇩🇪 FeG Deutschland	2026-06-14 21:14:05 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 127	Exploited Host Web App Attack
🇩🇪 ghostwarriors	2026-06-14 20:21:06 (1 week ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 07:32:31 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 45.128.199.76 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.128.199.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 03:32:27.215135 2026] [security2:error] [pid 19682:tid 19682] [client 45.128.199.76:53807] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "epetsure.co"] [uri "/wp-content/uploads/wp-config.php"] [unique_id "ai5ZCy-_v5tvNgjzHW0mtAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 173 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.228

🇷🇺 178.177.55.11

🇨🇦 148.113.221.114

🇺🇸 2607:f8b0:400e:c0c::122

🇨🇳 223.86.148.242

🇩🇪 193.124.20.248

🇺🇸 141.11.88.11

🇵🇰 14.192.157.27

🇷🇴 2.57.122.238

🇨🇳 222.138.151.162

🇪🇨 181.175.197.221

🇵🇰 14.192.157.49

🇫🇷 2a10:4646:190::c4d:e84a

🇰🇷 222.108.100.117

🇺🇸 165.154.182.223

🇺🇸 66.132.224.25

🇨🇦 52.139.41.31

🇸🇬 23.111.14.191

🇦🇷 190.105.214.48

🇸🇬 167.172.93.203