JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.132.224.154

45.132.224.154 was found in our database!

This IP was reported 89 times. Confidence of Abuse is 56%: ?

56%

ISP	VPN-Consumer-AU
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	syndesi-networks.nl
Country	🇦🇺 Australia
City	Brisbane, Queensland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.132.224.154

Whois 45.132.224.154

IP Abuse Reports for 45.132.224.154:

This IP address has been reported a total of 89 times from 50 distinct sources. 45.132.224.154 was first reported on August 7th 2023, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 london2038.com	2026-06-25 23:02:17 (7 hours ago)	Probing for exploits 45.132.224.154 - - [26/Jun/2026:01:02:13 +0200] "GET /wp-includes/widgets/ HTTP ... show more Probing for exploits 45.132.224.154 - - [26/Jun/2026:01:02:13 +0200] "GET /wp-includes/widgets/ HTTP/1.1" 301 169 "-" "Go-http-client/1.1" 45.132.224.154 - - [26/Jun/2026:01:02:13 +0200] "GET /wp-includes/PHPMailer/ HTTP/1.1" 301 169 "-" "Go-http-client/1.1" show less	Hacking Web App Attack
🇬🇧 consul.to	2026-06-24 20:38:36 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 Octopuce	2026-06-24 17:01:50 (1 day ago)	Aggressive web search of vulnerable pages: /cgi-bin/autoload_classmap.php /wp-links-opml.php /wp-adm ... show more Aggressive web search of vulnerable pages: /cgi-bin/autoload_classmap.php /wp-links-opml.php /wp-admin/user/network.php /atomlib.php /wp-includ ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 22:08:30 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 45.132.224.154 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 45.132.224.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 18:08:26.296337 2026] [security2:error] [pid 3029:tid 3101] [client 45.132.224.154:42245] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.132.224.154 (+1 hits since last alert)\|totheendsoftheearth.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "totheendsoftheearth.com"] [uri "/xmlrpc.php"] [unique_id "aisx2rd1-iRex4OiRN0SHgAAAUM"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-06-04 16:39:26 (3 weeks ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122) show less	Bad Web Bot
🇺🇸 mnsf	2026-06-04 15:05:13 (3 weeks ago)	Too many Status 40X (11)	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-04 13:13:30 (3 weeks ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195) show less	Bad Web Bot
🇫🇮 6kilowatti	2026-06-02 08:48:11 (3 weeks ago)	45.132.224.154 - - [02/Jun/2026:11:48:09 +0300] "GET /wp-includes/blocks/accordion/ HTTP/1.1" 404 60 ... show more 45.132.224.154 - - [02/Jun/2026:11:48:09 +0300] "GET /wp-includes/blocks/accordion/ HTTP/1.1" 404 60 "-" "Go-http-client/1.1" 45.132.224.154 - - [02/Jun/2026:11:48:10 +0300] "GET /wp-includes/assets/script-loader-react-refresh.php HTTP/1.1" 404 47 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇸🇬 pusathosting.com	2026-06-02 03:51:03 (3 weeks ago)	24ds22 bruteforce	Brute-Force Web App Attack
🇦🇺 paulshipley.com.au	2026-06-01 22:05:47 (3 weeks ago)	[Tue Jun 02 08:05:46.579475 2026] [security2:error] [pid 162852] [client 45.132.224.154:59355] [clie ... show more [Tue Jun 02 08:05:46.579475 2026] [security2:error] [pid 162852] [client 45.132.224.154:59355] [client 45.132.224.154] ModSecurity: Access denied with code 403 (phase 4). Operator GE matched 4 at TX:outbound_anomaly_score. [file "/etc/modsecurity/crs/rules/RESPONSE-959-BLOCKING-EVALUATION.conf"] [line "77"] [id "959100"] [msg "Outbound Anomaly Score Exceeded (Total Score: 4)"] [ver "OWASP_CRS/3.3.4"] [tag "anomaly-evaluation"] [hostname "stkildashule.org.au"] [uri "/wp-content/languages/plugins/"] [unique_id "ah4COmU4pOYMIWQCGmF3EgAAAAU"], referer: http://stkildashule.org.au/wp-content/languages/plugins/ ... show less	Web App Attack
Anonymous	2026-05-31 23:12:06 (3 weeks ago)	Banned by Fail2Ban on server	Web App Attack
🇺🇸 nationaleventpros.com	2026-05-29 12:38:08 (3 weeks ago)	vulnerability scan	Web App Attack
🇩🇪 ghostwarriors	2026-05-29 10:50:38 (3 weeks ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2026-05-29 09:54:32 (3 weeks ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-wordpress-scan	Web App Attack Hacking
🇩🇪 ghostwarriors	2026-05-27 20:50:18 (4 weeks ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 89 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇻 196.196.53.94

🇧🇷 177.181.7.152

🇮🇳 135.235.138.254

🇬🇧 217.146.80.122

🇲🇽 187.251.123.104

🇩🇪 185.242.3.226

🇫🇮 178.20.210.208

🇩🇪 164.92.192.50

🇫🇮 147.185.133.214

🇺🇸 91.230.168.124

🇭🇰 72.255.246.193

🇺🇸 71.6.237.138

🇺🇸 64.62.197.146

🇧🇪 34.156.187.21

🇻🇳 27.66.247.12

🇺🇸 20.65.194.183

🇻🇳 14.178.196.83

🇰🇷 14.63.217.28

🇩🇪 213.209.159.226

🇺🇸 195.184.76.246