JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.133.113.69

45.133.113.69 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 28%: ?

28%

ISP	Atlas Network Holdings LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213954
Domain Name	atlasnetworkholdings.online
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.133.113.69

Whois 45.133.113.69

IP Abuse Reports for 45.133.113.69:

This IP address has been reported a total of 15 times from 9 distinct sources. 45.133.113.69 was first reported on June 9th 2025, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇮 administrator	2026-06-10 22:12:58 (20 hours ago)	2026-06-09 00:04:52,262 fail2ban.actions [1104]: NOTICE [apache-fakegooglebot] Ban 45.133.11 ... show more 2026-06-09 00:04:52,262 fail2ban.actions [1104]: NOTICE [apache-fakegooglebot] Ban 45.133.113.69 2026-06-10 00:05:23,172 fail2ban.actions [1080]: NOTICE [apache-fakegooglebot] Ban 45.133.113.69 2026-06-09 00:04:52,262 fail2ban.actions [1104]: NOTICE [apache-fakegooglebot] Ban 45.133.113.69 2026-06-10 00:05:23,172 fail2ban.actions [1080]: NOTICE [apache-fakegooglebot] Ban 45.133.113.69 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇱🇻 garmtech.com	2026-06-03 05:07:59 (1 week ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 08-07.45.133.113.69.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 08-07.45.133.113.69.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-05-29 12:35:41 (1 week ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 15-35.45.133.113.69.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 15-35.45.133.113.69.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇬🇧 Oakley	2026-05-27 14:35:11 (2 weeks ago)	(mod_security) mod_security (id:900178) triggered by 45.133.113.69 (US/United States/-): 5 in the la ... show more (mod_security) mod_security (id:900178) triggered by 45.133.113.69 (US/United States/-): 5 in the last 900 secs show less	Web App Attack Hacking
🇱🇻 garmtech.com	2026-05-27 10:02:25 (2 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 13-02.45.133.113.69.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 13-02.45.133.113.69.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-05-22 02:50:41 (2 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 05-50.45.133.113.69.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 05-50.45.133.113.69.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 TPI-Abuse	2026-04-29 22:32:38 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.133.113.69 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.133.113.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 18:32:30.292508 2026] [security2:error] [pid 29683:tid 29683] [client 45.133.113.69:13123] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|tour.philipma.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "tour.philipma.com"] [uri "/s3cmd.ini"] [unique_id "afKG_o0uX-tFaXhQcFlTTQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-28 16:31:52 (1 month ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇫🇷 masterguru	2026-04-28 06:39:46 (1 month ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 45.133.113.69 (NL/The Netherlands/-): ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 45.133.113.69 (NL/The Netherlands/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 TPI-Abuse	2026-04-27 12:28:53 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.133.113.69 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.133.113.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 27 08:28:46.682160 2026] [security2:error] [pid 30972:tid 30972] [client 45.133.113.69:12387] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.andrsn.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.andrsn.com"] [uri "/s3cmd.ini"] [unique_id "ae9WfvQALQwYLfiHvjl6EQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 10:48:26 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.133.113.69 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.133.113.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 06:48:19.308887 2026] [security2:error] [pid 8463:tid 8463] [client 45.133.113.69:42011] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|thelostfruit.anthonyjoseph.us\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "thelostfruit.anthonyjoseph.us"] [uri "/s3cmd.ini"] [unique_id "ae3tc9K3yzVqsEo8QqiVgQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-10 11:39:31 (8 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.10 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.10 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-08 23:54:19 (8 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.08 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.08 is noted in report timestamp show less	Hacking Brute-Force
🇩🇪 LRob.fr	2025-08-14 00:30:17 (9 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
Anonymous	2025-06-09 13:04:00 (1 year ago)	Message meets Alert condition The following critical firewall event was detected: SSL VPN login fai ... show more Message meets Alert condition The following critical firewall event was detected: SSL VPN login fail. date=2025-06-09 time=03:56:01 devname=FortiGate-200F devid=FG200FT922906136 eventtime=1749459361394550137 tz="-0500" logid="0101039426" type="event" subtype="vpn" level="alert" vd="root" logdesc="SSL VPN login fail" action="ssl-login-fail" tunneltype="ssl-web" tunnelid=0 remip=45.133.113.69 srccountry="United States" user="jbrown" group="N/A" dst_host="N/A" reason="sslvpn_login_unknown_user" msg="SSL user failed to logged in" show less	VPN IP

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 2a06:4880:6000::7e

🇧🇩 203.190.11.3

🇩🇪 185.249.74.198

🇺🇸 162.217.165.220

🇨🇳 120.211.189.58

🇨🇳 101.96.203.31

🇺🇸 69.164.214.243

🇳🇱 45.148.10.141

🇻🇳 171.244.37.103

🇸🇪 171.25.158.82

🇨🇳 115.190.155.5

🇳🇱 91.92.241.35

🇮🇳 61.246.201.82

🇪🇸 217.154.106.153

🇨🇦 199.21.149.124

🇩🇪 194.59.206.2

🇺🇸 162.241.129.208

🇫🇮 147.185.133.16

🇫🇮 135.181.182.250

🇧🇷 45.232.73.84