JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.130.81.23

45.130.81.23 was found in our database!

This IP was reported 111 times. Confidence of Abuse is 19%: ?

19%

ISP	VPN Consumer Kiev, Ukraine
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇺🇦 Ukraine
City	Kyiv, Kyiv City

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.130.81.23

Whois 45.130.81.23

IP Abuse Reports for 45.130.81.23:

This IP address has been reported a total of 111 times from 35 distinct sources. 45.130.81.23 was first reported on September 27th 2023, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SpaceHost-Server	2026-06-22 22:32:38 (3 hours ago)		Brute-Force Web App Attack
Anonymous	2026-06-22 16:38:03 (9 hours ago)	Fail2Ban triggered	Web App Attack
Anonymous	2026-05-06 17:33:44 (1 month ago)	Forum/form spam	Web Spam
🇩🇪 mygcode.de	2026-04-05 03:38:40 (2 months ago)	Contact Form spaming - Detected by Honeypot	Web Spam
🇬🇧 pinguin	2026-03-15 13:06:36 (3 months ago)	Triggered Cloudflare WAF (firewallManaged) from UA. Action taken: LOG Protocol: HTTP/1.1 (HEAD metho ... show more Triggered Cloudflare WAF (firewallManaged) from UA. Action taken: LOG Protocol: HTTP/1.1 (HEAD method) Endpoint: /back/directory.zip UA: Empty string This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 Penny Packer	2026-02-20 01:22:23 (4 months ago)	Fail2Ban apache-tripwires	Web App Attack
🇯🇵 Valhalla	2026-02-13 12:24:23 (4 months ago)	/backups/www.zip	Hacking Web App Attack
🇫🇷 mikekarl	2026-02-09 20:10:48 (4 months ago)	Empty or bad user-agent.	Bad Web Bot
🇫🇷 dynamix	2026-02-06 05:30:02 (4 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-01-29 15:46:03 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 45.130.81.23 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 45.130.81.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 29 10:45:56.543832 2026] [security2:error] [pid 5685:tid 5685] [client 45.130.81.23:52017] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|cryptofructo.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cryptofructo.com"] [uri "/restore/dump.sql"] [unique_id "aXuAtEWL7MzB_AL9GR2t7gAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Penny Packer	2026-01-26 16:02:36 (4 months ago)	Fail2Ban apache-tripwires	Web App Attack
🇺🇸 TPI-Abuse	2026-01-25 00:54:02 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.130.81.23 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 45.130.81.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 24 19:53:55.297346 2026] [security2:error] [pid 13154:tid 13154] [client 45.130.81.23:35211] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pellman-world.com"] [uri "/back/sftp-config.json"] [unique_id "aXVpo94qZ9_th_BkXrb9uwAAAC4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-15 08:21:31 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 45.130.81.23 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 45.130.81.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 15 03:21:27.060986 2026] [security2:error] [pid 22583:tid 22583] [client 45.130.81.23:35927] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|matteozacchino.dev\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "matteozacchino.dev"] [uri "/backup/backup.sql"] [unique_id "aWijh86tQhwwyKwDDLzvjQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-19 07:51:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.130.81.23 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 45.130.81.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 19 02:51:11.226057 2025] [security2:error] [pid 5665:tid 5665] [client 45.130.81.23:21917] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oliverhardy.com"] [uri "/back/sftp-config.json"] [unique_id "aUUD734oCT5qgDFu6aZjggAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇯🇵 Valhalla	2025-12-16 09:54:06 (6 months ago)	/restore/www.sql	Hacking Web App Attack

Showing 1 to 15 of 111 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.131

🇺🇸 192.250.227.24

🇬🇧 185.216.145.183

🇻🇳 171.231.195.215

🇺🇸 162.216.150.56

🇺🇸 159.203.87.109

🇦🇺 158.178.141.16

🇨🇳 117.50.177.222

🇰🇷 112.217.188.122

🇷🇴 80.94.92.165

🇺🇸 74.7.228.254

🇬🇧 62.60.155.134

🇪🇸 46.136.92.105

🇧🇷 45.238.103.30

🇬🇧 35.203.211.36

🇺🇸 20.98.128.111

🇺🇸 216.180.246.212

🇺🇸 205.210.31.89

🇧🇷 200.155.66.2

🇺🇸 198.46.182.206