JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.133.6.105

45.133.6.105 was found in our database!

This IP was reported 89 times. Confidence of Abuse is 33%: ?

33%

ISP	VPN-Consumer-AU
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	legaconetworks.nl
Country	🇦🇺 Australia
City	Perth, Western Australia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.133.6.105

Whois 45.133.6.105

IP Abuse Reports for 45.133.6.105:

This IP address has been reported a total of 89 times from 49 distinct sources. 45.133.6.105 was first reported on November 14th 2023, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-21 06:37:56 (14 hours ago)	Excessive 404/403 errors	Brute-Force
🇺🇸 TPI-Abuse	2026-06-20 03:33:14 (1 day ago)	(mod_security) mod_security (id:240000) triggered by 45.133.6.105 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240000) triggered by 45.133.6.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 23:33:08.319854 2026] [security2:error] [pid 20977:tid 20977] [client 45.133.6.105:33259] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|darkstarsystems.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "darkstarsystems.net"] [uri "/images/stories/themes.php"] [unique_id "ajYJ9LVQTbVI8c3oLyZUrAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-19 13:08:27 (2 days ago)	Multiple WAF Violations	Web App Attack
🇳🇱 Site.eu	2026-06-18 15:40:53 (3 days ago)	Excessive 404/403 errors	Brute-Force
🇿🇦 Tokolosh Hunters	2026-05-19 00:17:19 (1 month ago)	AutoBlockWindow-Known bad useragent query-2026-05-19 00:17:18	Bad Web Bot
🇩🇪 ghostwarriors	2026-05-18 18:20:15 (1 month ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇵🇱 nfsec.pl	2026-05-18 15:30:26 (1 month ago)	45.133.6.105 - - [18/May/2026:15:30:21 +0000] "GET /libraries/joomla/css.php HTTP/2.0" 404 24633 "ht ... show more 45.133.6.105 - - [18/May/2026:15:30:21 +0000] "GET /libraries/joomla/css.php HTTP/2.0" 404 24633 "http://nfsec.pl//libraries/joomla/css.php" "Go-http-client/2.0" 45.133.6.105 - - [18/May/2026:15:30:22 +0000] "GET /templates/isis/error.php HTTP/2.0" 404 23859 "http://nfsec.pl//templates/isis/error.php" "Go-http-client/2.0" 45.133.6.105 - - [18/May/2026:15:30:23 +0000] "GET /templates/ja-helio-farsi/ HTTP/2.0" 404 23933 "https://nfsec.pl/templates/ja-helio-farsi/index.php" "Go-http-client/2.0" 45.133.6.105 - - [18/May/2026:15:30:24 +0000] "GET /templates/JMart/error.php HTTP/2.0" 404 23943 "http://nfsec.pl//templates/JMart/error.php" "Go-http-client/2.0" 45.133.6.105 - - [18/May/2026:15:30:25 +0000] "GET /modules/scrollbottom/anamama-2.php HTTP/2.0" 404 24052 "http://nfsec.pl//modules/scrollbottom/anamama-2.php" "Go-http-client/2.0" ... show less	Web App Attack Exploited Host
🇫🇷 dynamix	2026-04-21 01:10:37 (2 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 myagent.site	2026-04-03 02:35:26 (2 months ago)	Blocking for trying to access an exploit file: /alfa.php	Hacking
Anonymous	2026-04-02 23:00:02 (2 months ago)	\| [Dangerous/Australia] Aggressive IP 45.133.6.105 (~30 hits). Type: DoS Defender- Web server 400 er ... show more \| [Dangerous/Australia] Aggressive IP 45.133.6.105 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇮🇳 dineshskt4all	2026-04-02 22:32:09 (2 months ago)	[Thu Apr 02 22:32:01.051070 2026] [proxy_fcgi:error] [pid 453120:tid 132699823351488] [client 45.133 ... show more [Thu Apr 02 22:32:01.051070 2026] [proxy_fcgi:error] [pid 453120:tid 132699823351488] [client 45.133.6.105:0] AH01071: Got error 'Primary script unknown' ... show less	Brute-Force
🇨🇭 Origon	2026-03-20 10:55:22 (3 months ago)	http-wordpress-scan - IP: 45.133.6.105 - time="2026-03-20T11:55:22+01:00" level=info msg="(555f66b4 ... show more http-wordpress-scan - IP: 45.133.6.105 - time="2026-03-20T11:55:22+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-wordpress-scan by ip 45.133.6.105 (AU/137409) : 4h ban on Ip 45.133.6.105" module=db show less	Web App Attack
🇦🇹 Erpelstolz	2026-03-18 11:35:25 (3 months ago)	VM 131: 45.133.6.105 - - [18/Mar/2026:12:35:23 +0100] "GET /moon.php HTTP/1.1" 404 590	Web App Attack
🇳🇱 Site.eu	2026-03-18 01:42:20 (3 months ago)	Excessive 404/403 errors	Brute-Force
🇬🇧 consul.to	2026-03-17 13:56:43 (3 months ago)	Web attack/malicious scanning detected	Web App Attack

Showing 1 to 15 of 89 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 170.168.29.212

🇻🇳 180.93.43.225

🇹🇷 78.189.17.35

🇺🇸 44.71.70.215

🇳🇱 5.61.209.92

🇬🇧 195.96.139.164

🇺🇸 172.234.25.243

🇷🇴 80.94.92.177

🇧🇷 45.205.1.240

🇺🇸 44.203.210.134

🇺🇸 44.158.188.83

🇳🇱 185.242.226.33

🇲🇴 182.93.7.194

🇺🇸 152.32.208.9

🇩🇪 87.106.210.86

🇺🇸 66.132.172.202

🇺🇸 44.103.123.92

🇷🇺 31.173.67.115

🇳🇱 5.255.125.64

🇮🇹 5.152.145.203