JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.132.185.238

45.132.185.238 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 0%: ?

ISP	Baykov Ilya Sergeevich
Usage Type	Data Center/Web Hosting/Transit
ASN	AS41745
Domain Name	hip-hosting.com
Country	🇷🇺 Russian Federation
City	Moscow, Moscow

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.132.185.238

Whois 45.132.185.238

IP Abuse Reports for 45.132.185.238:

This IP address has been reported a total of 15 times from 6 distinct sources. 45.132.185.238 was first reported on September 4th 2023, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇻🇳 Xuan Can	2025-07-16 21:06:07 (10 months ago)	(mod_security) mod_security (id:6) triggered by 45.132.185.238 (RU/Russia/-): 1 in the last 3600 sec ... show more (mod_security) mod_security (id:6) triggered by 45.132.185.238 (RU/Russia/-): 1 in the last 3600 secs; Ports: 80,443; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 17 04:06:01.182166 2025] [security2:error] [pid 8314:tid 8359] [client 45.132.185.238:0] ModSecurity: Access denied with connection close (phase 2). Pattern match "wp-login.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "62"] [id "6"] [severity "CRITICAL"] [hostname "kb.sieuthimaychu.vn"] [uri "/wp-login.php"] [unique_id "aHgUOZvaygDD-aWD2pDk8gAAAI8"] show less	Brute-Force SSH
Anonymous	2025-04-09 05:09:47 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-04-05 10:56:40 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 45.132.185.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.132.185.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 05 06:56:34.292355 2025] [security2:error] [pid 2684163:tid 2684163] [client 45.132.185.238:40317] [client 45.132.185.238] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "engravingbyangela.com"] [uri "/wp-config.php.copy"] [unique_id "Z_EMYm-veMGQGcmZKod_aQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 WeCloudit-Anti-Abuse	2025-02-20 17:20:07 (1 year ago)	WAF: Old style account creation and modification in Joomla! 2- alpha	Email Spam Brute-Force
Anonymous	2024-12-09 03:22:29 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-12-05 11:01:48 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-11-27 15:26:48 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-11-16 09:48:22 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-11-09 21:29:39 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.132.185.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.132.185.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 09 16:29:31.603952 2024] [security2:error] [pid 4904:tid 4904] [client 45.132.185.238:59949] [client 45.132.185.238] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|khovanov.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "khovanov.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zy_UO4V1a1rShCHHY_NpYAAAAAU"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-10-31 05:17:21 (1 year ago)	Ports: 2077,2078,2082,2083,2086,2087,2095,2096; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
Anonymous	2024-10-17 15:23:51 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2023-12-24 21:38:46 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 45.132.185.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.132.185.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 24 16:38:42.214920 2023] [security2:error] [pid 1094] [client 45.132.185.238:56183] [client 45.132.185.238] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Bella II/Thumbs.db"] [unique_id "ZYik4pN53Nc2c26eQSBVNwAAAAo"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Bella%20II/ show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Roderic	2023-12-18 05:01:43 (2 years ago)	(apache-bow-document) Failed apache-bow-scanners trigger with match [redacted] from 45.132.185.238 ( ... show more (apache-bow-document) Failed apache-bow-scanners trigger with match [redacted] from 45.132.185.238 (RU/Russia/-) show less	Hacking
🇨🇭 backslash	2023-10-06 06:50:20 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇨🇭 backslash	2023-09-04 15:55:11 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 147.185.133.4

🇨🇳 125.76.228.194

🇺🇸 113.20.0.58

🇸🇬 47.82.11.51

🇸🇬 47.82.11.50

🇨🇳 175.11.241.148

🇺🇸 138.186.136.202

🇨🇦 85.217.149.6

🇨🇳 60.174.35.18

🇸🇬 47.82.11.5

🇳🇱 45.134.225.230

🇷🇺 37.128.240.47

🇬🇧 35.203.210.16

🇬🇧 13.40.86.108

🇮🇹 2.33.204.219

🇰🇷 222.118.59.16

🇧🇷 200.175.61.207

🇺🇸 162.216.149.46

🇩🇪 161.35.65.86

🇸🇬 47.82.11.49