JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.133.112.12

45.133.112.12 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 24%: ?

24%

ISP	Atlas Network Holdings LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213954
Domain Name	atlasnetworkholdings.online
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.133.112.12

Whois 45.133.112.12

IP Abuse Reports for 45.133.112.12:

This IP address has been reported a total of 12 times from 6 distinct sources. 45.133.112.12 was first reported on August 20th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-19 16:06:15 (1 day ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 06:44:05 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 45.133.112.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.133.112.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 02:44:00.703359 2026] [security2:error] [pid 25057:tid 25057] [client 45.133.112.12:59125] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|lifeinsmoke.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lifeinsmoke.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiuqsHpZlBTgg6er4bjHJQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-02 02:44:49 (2 weeks ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2026-05-26 11:29:13 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.133.112.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.133.112.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 07:29:06.808680 2026] [security2:error] [pid 5248:tid 5315] [client 45.133.112.12:29485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adultbaja.com"] [uri "/wp-config.php.old"] [unique_id "ahWEAgrBuha8D0ua4wJAAQAAAoo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 SiliSoftware	2026-05-17 12:30:37 (1 month ago)	/backup_2019.wrdp	Web App Attack
🇺🇸 TPI-Abuse	2026-05-12 16:12:15 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.133.112.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.133.112.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 12 12:12:09.295905 2026] [security2:error] [pid 14996:tid 14996] [client 45.133.112.12:25139] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|comitedelafamille.org\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "comitedelafamille.org"] [uri "/a.db"] [unique_id "agNRWdR-7eQPuQDpPb4jpwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-12 21:29:00 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 45.133.112.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 45.133.112.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Oct 12 17:28:56.956387 2025] [security2:error] [pid 30606:tid 30606] [client 45.133.112.12:59945] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|edgeimprov.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "edgeimprov.com"] [uri "/admin"] [unique_id "aOwdmHyEfDisnyz40T6E7gAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 fbarela	2025-09-28 15:01:42 (8 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇦🇺 oncord	2025-08-25 13:07:23 (9 months ago)	Form spam	Web Spam
🇺🇸 oncord	2025-08-24 10:49:25 (9 months ago)	Form spam	Web Spam
🇦🇺 oncord	2025-08-23 05:31:30 (9 months ago)	Form spam	Web Spam
🇦🇺 oncord	2025-08-20 16:28:03 (10 months ago)	Form spam	Web Spam

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.59.48.184

🇫🇮 147.185.133.161

🇳🇱 91.92.40.24

🇫🇷 82.64.38.234

🇧🇷 200.222.100.134

🇹🇼 198.235.24.50

🇩🇪 178.171.59.77

🇮🇪 146.70.189.170

🇫🇷 141.101.69.8

🇩🇪 69.5.169.37

🇺🇸 216.218.206.93

🇺🇸 216.25.89.125

🇫🇷 172.71.119.100

🇳🇱 165.232.95.227

🇻🇳 121.200.217.58

🇨🇳 106.13.182.13

🇭🇰 103.243.24.124

🇺🇸 47.251.255.1

🇧🇷 45.163.173.204

🇳🇱 45.148.10.151