JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.133.7.6

45.133.7.6 was found in our database!

This IP was reported 77 times. Confidence of Abuse is 46%: ?

46%

ISP	VPN-Consumer-NZ
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	legaconetworks.nl
Country	🇳🇿 New Zealand
City	Auckland, Auckland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.133.7.6

Whois 45.133.7.6

IP Abuse Reports for 45.133.7.6:

This IP address has been reported a total of 77 times from 42 distinct sources. 45.133.7.6 was first reported on September 10th 2023, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-06-21 01:38:08 (1 hour ago)	Multiple WAF Violations	Web App Attack
🇦🇺 Anytech	2026-06-20 10:34:11 (16 hours ago)	Blocked by Conn-Monitor: Automated bot activity	Bad Web Bot Web App Attack
🇩🇪 Admin-Gito	2026-06-19 01:26:03 (2 days ago)	45.133.7.6 - - [19/Jun/2026:03:18:40 +0200] "GET /wp-includes/assets/info.php HTTP/1.1" 404 290740 " ... show more 45.133.7.6 - - [19/Jun/2026:03:18:40 +0200] "GET /wp-includes/assets/info.php HTTP/1.1" 404 290740 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 45.133.7.6 - - [19/Jun/2026:03:18:42 +0200] "GET /wp-includes/class.api.php HTTP/1.1" 404 290702 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 45.133.7.6 - - [19/Jun/2026:03:18:54 +0200] "GET /wp-includes/admin.php HTTP/1.1" 404 290696 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 45.133.7.6 - - [19/Jun/2026:03:19:12 +0200] "GET /wp-includes/rest-api/about.php HTTP/1.1" 404 290712 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 45.133.7.6 - - [19/Jun/2026:03:19:17 +0200] "GET /wp-includes/item.php HTTP/1.1" 404 290695 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.39 ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 00:22:45 (2 days ago)	(mod_security) mod_security (id:240000) triggered by 45.133.7.6 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:240000) triggered by 45.133.7.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 20:22:37.513928 2026] [security2:error] [pid 14400:tid 14400] [client 45.133.7.6:51687] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|simplybrandedllc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "simplybrandedllc.com"] [uri "/images/stories/themes.php"] [unique_id "ajSLzSHLz8mL0tBL9F3PnAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 OceanTreasure	2026-05-26 00:45:17 (3 weeks ago)	tcp/443; Joomla admin access attempt: "GET //administrator/index.php" @ 2026-05-26T00:40:03Z [proxy]	Brute-Force
Anonymous	2026-05-25 23:53:51 (3 weeks ago)	45.133.7.6 - - [26/May/2026:01:53:50 +0200] "GET //templates/BeginDot/ HTTP/1.1" 301 169 "-" "Go-htt ... show more 45.133.7.6 - - [26/May/2026:01:53:50 +0200] "GET //templates/BeginDot/ HTTP/1.1" 301 169 "-" "Go-http-client/1.1" show less	Bad Web Bot
🇳🇱 wlt-blocker	2026-05-23 04:51:57 (4 weeks ago)	Unauthorized access to webpage admin	Web App Attack
🇩🇪 manuelisus	2026-05-22 20:39:21 (4 weeks ago)	Honeypot HTTP: +10: honeypot_connection, +15: short_automated_session, +40: http_scanner_go-http-cli ... show more Honeypot HTTP: +10: honeypot_connection, +15: short_automated_session, +40: http_scanner_go-http-client, +30: subnet_correlation_41_ips show less	Web App Attack Hacking
🇩🇪 BlueWire Hosting	2026-05-22 15:58:09 (4 weeks ago)	Bad bot ignoring robot.txt	Bad Web Bot
🇩🇪 ghostwarriors	2026-05-16 19:50:41 (1 month ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-04-26 11:29:57 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-04-25 06:18:45 (1 month ago)	"GET /wp-content/themes/calmly/issue.php HTTP/1.1"	Hacking Web App Attack
Anonymous	2026-04-25 04:55:12 (1 month ago)	<comment>	Web App Attack
🇺🇸 antlac1	2026-04-13 02:35:29 (2 months ago)	crowdsecurity/http-wordpress-scan	Brute-Force Web App Attack
🇬🇧 consul.to	2026-04-11 10:30:06 (2 months ago)	Web attack/malicious scanning detected	Web App Attack

Showing 1 to 15 of 77 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 142.93.231.179

🇺🇸 50.80.184.78

🇳🇱 45.148.10.141

🇧🇷 2804:29b8:50e4:fafa:d1d6:cc8:9ca3:63d6

🇨🇳 220.180.77.95

🇨🇦 217.181.80.194

🇺🇸 216.25.89.93

🇦🇷 190.229.67.85

🇩🇪 167.233.22.224

🇺🇸 167.148.201.64

🇦🇺 159.196.14.131

🇺🇸 136.0.120.67

🇺🇸 77.91.118.50

🇺🇸 44.195.98.99

🇬🇧 35.203.210.74

🇺🇸 18.97.19.245

🇧🇷 2804:7f0:7c80:71a9:cd6:f8d1:bd1a:a9

🇳🇱 176.65.139.218

🇺🇸 162.216.149.229

🇨🇳 115.227.26.85