JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.133.5.125

45.133.5.125 was found in our database!

This IP was reported 196 times. Confidence of Abuse is 29%: ?

29%

ISP	VPN Consumer Sydney, Australia
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	vpnconsumer.com
Country	🇦🇺 Australia
City	Sydney, New South Wales

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.133.5.125

Whois 45.133.5.125

IP Abuse Reports for 45.133.5.125:

This IP address has been reported a total of 196 times from 81 distinct sources. 45.133.5.125 was first reported on June 18th 2022, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-27 20:11:08 (3 hours ago)	Excessive 404/403 errors	Brute-Force
🇬🇧 consul.to	2026-06-07 17:38:43 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 Octopuce	2026-06-07 16:03:09 (2 weeks ago)	Aggressive web search of vulnerable pages: /css/index.php /images/index22.php /wp-user.php /wp-inclu ... show more Aggressive web search of vulnerable pages: /css/index.php /images/index22.php /wp-user.php /wp-includes/pomo/about.php /wp-includes/pomo/index. ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 08:33:31 (3 weeks ago)	(mod_security) mod_security (id:240000) triggered by 45.133.5.125 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240000) triggered by 45.133.5.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 04:33:26.306135 2026] [security2:error] [pid 29751:tid 29751] [client 45.133.5.125:0] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|jspsf.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "jspsf.com"] [uri "/images/stories/themes.php"] [unique_id "aiKJ1uWOJmZ4aDIz-l6oFAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mw	2026-06-05 00:01:21 (3 weeks ago)	GET /wp-admin/user/wp-login.php HTTP/1.1	Web App Attack
🇳🇱 Site.eu	2026-05-06 01:27:02 (1 month ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 Petros Stefanakis	2026-05-05 11:32:38 (1 month ago)	(mod_security) mod_security triggered on hostname [redacted] 45.133.5.125 (AU/Australia/-)	SQL Injection
🇬🇧 poundawebsiteltd	2026-04-23 14:19:41 (2 months ago)	Apache 403 Forbidden Access. Evidence: [REDACTED_DOMAIN]:80 45.133.5.125 - - [23/Apr/2026:15:19:39 + ... show more Apache 403 Forbidden Access. Evidence: [REDACTED_DOMAIN]:80 45.133.5.125 - - [23/Apr/2026:15:19:39 +0100] GET /wp-includes/item.php HTTP/1.1 301 509 - Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36 show less	Web App Attack
Anonymous	2026-04-23 10:59:26 (2 months ago)	[redacted] 45.133.5.125 - - [23/Apr/2026:12:59:18 +0200] "GET /admin/function.php HTTP/1.1" 404 196 ... show more [redacted] 45.133.5.125 - - [23/Apr/2026:12:59:18 +0200] "GET /admin/function.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" [redacted] 45.133.5.125 - - [23/Apr/2026:12:59:19 +0200] "GET /wp-includes/js/crop/admin.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" [redacted] 45.133.5.125 - - [23/Apr/2026:12:59:19 +0200] "GET /wp-includes/PHPMailer/admin.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" [redacted] 45.133.5.125 - - [23/Apr/2026:12:59:22 +0200] "GET /.well-known/pki-validation/admin.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" [redacted] 45.133.5. ... show less	Hacking Web App Attack
🇺🇸 kosada.com	2026-04-21 08:18:59 (2 months ago)	Web vulnerability probing: /checkbox.php (bogus vhost/SNI)	Web App Attack
🇬🇧 consul.to	2026-04-19 04:15:09 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 Site.eu	2026-04-18 19:45:09 (2 months ago)	Excessive multi-domain requests	Brute-Force
🇺🇸 TPI-Abuse	2026-04-14 08:15:22 (2 months ago)	(mod_security) mod_security (id:240000) triggered by 45.133.5.125 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240000) triggered by 45.133.5.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 14 04:15:17.634796 2026] [security2:error] [pid 622998:tid 622998] [client 45.133.5.125:58333] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|wackywipeouts.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "wackywipeouts.com"] [uri "/images/stories/themes.php"] [unique_id "ad33lZxj44mYd1t7Y1edTQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-04-14 05:21:39 (2 months ago)	Multiple WAF Violations	Web App Attack
🇫🇷 Baking333	2026-04-13 23:03:45 (2 months ago)	[redacted] 45.133.5.125 - - [13/Apr/2026:23:32:19 +0100] "GET /wp-includes/IXR/[redacted] HTTP/1.1" ... show more [redacted] 45.133.5.125 - - [13/Apr/2026:23:32:19 +0100] "GET /wp-includes/IXR/[redacted] HTTP/1.1" 301 568 0/351 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" [redacted] 45.133.5.125 - - [13/Apr/2026:23:32:19 +0100] "GET /wp-admin/js/[redacted] HTTP/1.1" 301 560 0/170 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" show less	Bad Web Bot Web App Attack

Showing 1 to 15 of 196 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 179.61.192.3

🇫🇷 90.84.174.194

🇱🇹 62.60.130.219

🇺🇸 216.180.246.168

🇻🇳 210.86.225.157

🇺🇸 206.221.176.60

🇧🇷 205.210.31.228

🇺🇸 188.213.202.17

🇳🇱 185.89.249.3

🇻🇳 180.93.78.21

🇺🇸 172.210.66.4

🇨🇳 129.211.229.121

🇻🇳 116.110.14.140

🇨🇳 111.53.0.169

🇷🇺 95.215.0.144

🇩🇪 95.90.13.168

🇱🇻 81.30.98.144

🇺🇸 67.207.93.64

🇺🇸 66.132.224.227

🇳🇱 45.148.10.141