JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.133.115.137

45.133.115.137 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 14%: ?

14%

ISP	Atlas Network Holdings LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213954
Domain Name	atlasnetworkholdings.online
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.133.115.137

Whois 45.133.115.137

IP Abuse Reports for 45.133.115.137:

This IP address has been reported a total of 8 times from 7 distinct sources. 45.133.115.137 was first reported on June 4th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Oakley	2026-05-31 17:47:26 (3 weeks ago)	(mod_security) mod_security (id:900178) triggered by 45.133.115.137 (US/United States/-): 5 in the l ... show more (mod_security) mod_security (id:900178) triggered by 45.133.115.137 (US/United States/-): 5 in the last 900 secs show less	Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-05-20 21:30:21 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 45.133.115.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.133.115.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 17:30:14.612489 2026] [security2:error] [pid 19770:tid 19772] [client 45.133.115.137:44103] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.txt" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.neutrahouse1939.ward-bergerhouse.org"] [uri "/wp-config.txt"] [unique_id "ag4n5kxDQ309VKvUAOq3sAAAAUA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 03:38:42 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 45.133.115.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.133.115.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 19 23:38:37.503927 2026] [security2:error] [pid 24409:tid 24438] [client 45.133.115.137:20857] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.bak" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pilargarciamanzanares.com"] [uri "/wp-config.bak"] [unique_id "ag0svVSULTyRws6ldY9t9wAAAU8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-05-18 11:33:04 (1 month ago)	URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .b ... show more URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .backup/ .bak/ .bck/ .bk/ .bkp/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .cnf/ .com/ .compositefont/ .config/ .conf/ .copy/ .crt/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dist/ .dll/ .dos/ .dpkg-dist/ .drv/ .gadget/ .hta/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .inf/ .ini/ .jks/ .jse/ .key/ .licx/ .lnk/ .log/ .mdb/ .msc/ .ocx/ .old/ .pass/ .pdb/ .pfx/ .pif/ .pem/ .pol/ .prf/ .printer/ .pwd/ .rdb/ .rdp/ .reg/ .resources/ .resx/ .sav/ .save/ .scr/ .sct/ .sh/ .shs/ .sql/ .sqlite/ .sqlite3/ .swap/ .swo/ .swp/ .sys/ .temp/ .tfstate/ .tlb/ .tmp/ .vb/ .vbe/ .vbs/ .vbproj/ .vsdisco/ .vxd/ .webinfo/ .ws/ .wsc/ .wsf/ .wsh/ .xsd/ .xsx/" at TX:extension. (920440-201) show less	Hacking
🇩🇪 mk-dizajn.hr	2026-04-16 17:52:20 (2 months ago)	$f2bV_matches	Brute-Force
🇮🇹 sssrit	2026-04-15 11:10:20 (2 months ago)	45.133.115.137 - - [15/Apr/2026:13:10:18 +0200] "GET /wp-content/uploads/ HTTP/1.1" 403 146 "-" "Moz ... show more 45.133.115.137 - - [15/Apr/2026:13:10:18 +0200] "GET /wp-content/uploads/ HTTP/1.1" 403 146 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.2 Safari/605.1.15" ... show less	Web App Attack
🇲🇾 Rizzy	2026-04-15 03:40:33 (2 months ago)	Multiple WAF Violations	Brute-Force Web App Attack
Anonymous	2025-06-04 11:50:00 (1 year ago)	Message meets Alert condition The following critical firewall event was detected: SSL VPN login fai ... show more Message meets Alert condition The following critical firewall event was detected: SSL VPN login fail. date=2025-06-03 time=22:07:57 devname=FortiGate-200F devid=FG200FT922906136 eventtime=1749006477887085172 tz="-0500" logid="0101039426" type="event" subtype="vpn" level="alert" vd="root" logdesc="SSL VPN login fail" action="ssl-login-fail" tunneltype="ssl-web" tunnelid=0 remip=45.133.115.137 srccountry="United States" user="jlopez" group="N/A" dst_host="N/A" reason="sslvpn_login_unknown_user" msg="SSL user failed to logged in" show less	VPN IP

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.141.46.66

🇳🇱 91.92.42.7

🇫🇷 85.217.140.49

🇮🇳 42.104.142.130

🇺🇸 18.190.15.50

🇻🇳 171.231.180.133

🇺🇸 162.216.149.224

🇨🇳 144.123.107.150

🇰🇷 121.182.101.207

🇺🇸 107.172.88.206

🇵🇱 87.251.64.156

🇫🇷 85.217.140.18

🇺🇸 68.36.177.47

🇩🇪 193.124.20.235

🇬🇧 185.152.38.220

🇨🇳 183.23.54.219

🇺🇸 172.172.131.149

🇮🇩 140.213.204.56

🇱🇺 88.207.128.85

🇫🇷 85.217.140.12