JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.132.187.190

45.132.187.190 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 32%: ?

32%

ISP	TrafficTransitSolution LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	traffictransitsolution.us
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.132.187.190

Whois 45.132.187.190

IP Abuse Reports for 45.132.187.190:

This IP address has been reported a total of 20 times from 13 distinct sources. 45.132.187.190 was first reported on February 29th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-06-20 11:15:11 (3 days ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇺🇸 nationaleventpros.com	2026-06-14 20:35:33 (1 week ago)	WordPress login attempt	Brute-Force
🇺🇸 kosada.com	2026-06-11 04:25:27 (1 week ago)	Web password guessing	Brute-Force
🇩🇰 SaltySoftworks	2026-06-10 05:40:58 (1 week ago)	Page: /contact/	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 21:36:31 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 45.132.187.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.132.187.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 17:36:27.282375 2026] [security2:error] [pid 16127:tid 16127] [client 45.132.187.190:34411] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|veenstras.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "veenstras.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiXkW3qWU8x-NaWLugU44gAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-05-31 17:26:33 (3 weeks ago)	Web password guessing	Brute-Force
🇺🇸 TPI-Abuse	2026-05-25 19:05:34 (4 weeks ago)	(mod_security) mod_security (id:225170) triggered by 45.132.187.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.132.187.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 25 15:05:28.333466 2026] [security2:error] [pid 12393:tid 12393] [client 45.132.187.190:22879] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|darrenj.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "darrenj.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahSdeDBl2HR1eqCQmVjkFQAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nationaleventpros.com	2026-05-20 04:37:50 (1 month ago)	WordPress login attempt	Brute-Force
🇺🇸 TPI-Abuse	2026-05-03 12:09:56 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 45.132.187.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.132.187.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 03 08:09:51.746753 2026] [security2:error] [pid 1658:tid 1658] [client 45.132.187.190:11011] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|dbq.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "dbq.us"] [uri "/wp-json/wp/v2/users"] [unique_id "afc7D6uR5g_D6GX87R_s5QAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-01 01:26:13 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 45.132.187.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.132.187.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 21:26:07.852239 2026] [security2:error] [pid 18474:tid 18474] [client 45.132.187.190:30783] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|andrsn.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "andrsn.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afQBL2DzXNv4BK3YrdrOfQAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-01 12:18:30 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 45.132.187.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.132.187.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 01 07:18:25.200552 2026] [security2:error] [pid 6823:tid 6823] [client 45.132.187.190:46057] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bernsteinip.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bernsteinip.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aVZmEVIFyJFVorvZ2htjpgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mind5t0rm	2025-12-31 03:43:00 (5 months ago)	(WPLOGIN) WP Login Attack 45.132.187.190 (RU/Russia/-): 3 in the last 3600 secs; Ports: ; Direction ... show more (WPLOGIN) WP Login Attack 45.132.187.190 (RU/Russia/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 45.132.187.190 - - [31/Dec/2025:10:42:51 +0700] "GET /wp-login.php HTTP/1.1" 200 3046 "http://mythicgames.net/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:138.0) Gecko/20100101 Firefox/138.0" 45.132.187.190 - - [31/Dec/2025:10:42:53 +0700] "POST /wp-login.php HTTP/1.1" 200 2871 "https://mythicgames.net/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:138.0) Gecko/20100101 Firefox/138.0" 45.132.187.190 - - [31/Dec/2025:10:42:55 +0700] "POST /wp-login.php HTTP/1.1" 200 2871 "https://mythicgames.net/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:138.0) Gecko/20100101 Firefox/138.0" show less	Port Scan
🇩🇪 hbrks	2025-12-28 13:47:41 (5 months ago)	1 attack(s) detected, such as these: {"event":"web_block","ip":"45.132.187.190","host":"marche-be.co ... show more 1 attack(s) detected, such as these: {"event":"web_block","ip":"45.132.187.190","host":"marche-be.com","request":"GET /wp-login.php HTTP/1.1","user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:138.0) Gecko/20100101 Firefox/138.0","reason":"service:unknow","timestamp":"2025-12-28T13:47:41 00:00","logentry":"marche-be.com 45.132.187.190 - - [28/Dec/2025:13:47:41 0000] GET /wp-login.php HTTP/1.1 444 0 - Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:138.0) Gecko/20100101 Firefox/138.0 - matched:service:unknow"} * Report Details : https://p4u.xyz/R603RT6IHAK/1 IP Details *: https://p4u.xyz/R603RT6IHAK/2 show less	Web Spam Hacking Bad Web Bot
🇫🇷 RodGel	2025-12-26 12:05:13 (5 months ago)	Suspicious pattern detected: /wp-login.php	Web App Attack
🇩🇪 F242	2025-12-25 09:31:09 (5 months ago)	Wordpress Login or XMLRPC abuse	Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇪 2a05:d018:10df:d401:4d0c:17ca:bb3f:c097

🇭🇺 194.176.254.138

🇵🇭 180.191.237.106

🇺🇸 162.216.150.134

🇨🇦 85.217.149.32

🇩🇪 77.110.107.31

🇸🇬 47.79.10.207

🇺🇸 44.12.229.154

🇯🇴 5.45.134.67

🇷🇺 185.40.30.168

🇳🇱 162.159.113.106

🇺🇸 135.237.127.45

🇮🇳 135.13.28.35

🇵🇭 119.92.70.82

🇷🇴 92.118.39.59

🇳🇱 91.92.40.19

🇷🇺 85.12.248.68

🇦🇷 45.238.106.175

🇺🇸 44.38.65.170

🇰🇪 41.89.96.253