JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.133.7.61

45.133.7.61 was found in our database!

This IP was reported 74 times. Confidence of Abuse is 45%: ?

45%

ISP	VPN-Consumer-NZ
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	legaconetworks.nl
Country	🇳🇿 New Zealand
City	Auckland, Auckland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.133.7.61

Whois 45.133.7.61

IP Abuse Reports for 45.133.7.61:

This IP address has been reported a total of 74 times from 43 distinct sources. 45.133.7.61 was first reported on September 13th 2021, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-21 06:59:58 (15 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 dynamix	2026-06-21 06:41:14 (15 hours ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 02:23:13 (20 hours ago)	(mod_security) mod_security (id:240000) triggered by 45.133.7.61 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:240000) triggered by 45.133.7.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 22:23:06.193582 2026] [security2:error] [pid 7014:tid 7014] [client 45.133.7.61:0] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|eddysgroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "eddysgroup.com"] [uri "/images/stories/themes.php"] [unique_id "ajdLCs5aaWLTfJDmLmZfLgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-06-20 03:34:14 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 Site.eu	2026-06-19 22:35:16 (2 days ago)	Excessive 404/403 errors	Brute-Force
Anonymous	2026-06-19 17:14:21 (2 days ago)	45.133.7.61 - - [20/Jun/2026:01:14:18 +0800] "GET /wp-admin/user/network.php HTTP/1.1" 404 196 "-" " ... show more 45.133.7.61 - - [20/Jun/2026:01:14:18 +0800] "GET /wp-admin/user/network.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 45.133.7.61 - - [20/Jun/2026:01:14:19 +0800] "GET /atomlib.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 45.133.7.61 - - [20/Jun/2026:01:14:19 +0800] "GET /wp-includes/js/jquery/bypass.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 45.133.7.61 - - [20/Jun/2026:01:14:19 +0800] "GET /wp-includes/xl2023.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 45.133.7.61 - - [20/Jun/2026:01:14:20 +0800] "GET /wp-includes/certificates/admin.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, lik ... show less	Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-06-18 22:32:36 (3 days ago)		Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2026-06-17 22:31:58 (4 days ago)		Brute-Force Web App Attack
🇳🇱 Site.eu	2026-05-25 15:06:03 (3 weeks ago)	Excessive 404/403 errors	Brute-Force
🇺🇦 URAN Publishing Service	2026-05-07 03:35:57 (1 month ago)	45.133.7.61 - - [07/May/2026:06:30:38 +0300] "GET /wp-content/plugins/semrush/x.php HTTP/1.1" 404 70 ... show more 45.133.7.61 - - [07/May/2026:06:30:38 +0300] "GET /wp-content/plugins/semrush/x.php HTTP/1.1" 404 705 "-" "Go-http-client/1.1" 45.133.7.61 - - [07/May/2026:06:35:56 +0300] "GET /wp-includes/js/tinymce/themes/about.php HTTP/1.1" 404 705 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇫🇷 Octopuce	2026-05-06 18:23:17 (1 month ago)	Aggressive web search of vulnerable pages: /user.php /menu.php /alfa.php /file.php /mini.php /info.p ... show more Aggressive web search of vulnerable pages: /user.php /menu.php /alfa.php /file.php /mini.php /info.php /log.php /wso.php /modules/scrollbottom/ ... show less	Web App Attack
🇬🇧 consul.to	2026-04-25 09:10:46 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-04-21 05:30:38 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 45.133.7.61 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.133.7.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 21 01:30:30.415799 2026] [security2:error] [pid 267478:tid 267478] [client 45.133.7.61:44773] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garretthillary.com"] [uri "/.git/execute.php"] [unique_id "aecLdnfvicaW-z477W8MvAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-21 04:02:35 (2 months ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: NZ, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: NZ, Attack patterns: WordPress scanning, Webshell probing show less	Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-04-16 00:35:52 (2 months ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 15 of 74 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.231

🇧🇪 198.235.24.129

🇨🇳 113.102.78.242

🇨🇭 85.5.157.146

🇹🇭 83.118.107.37

🇪🇸 79.117.174.104

🇳🇱 45.148.10.151

🇷🇺 44.32.144.198

🇸🇬 43.160.253.60

🇬🇧 35.203.210.221

🇺🇸 2607:ff10:c8:594::a

🇨🇭 209.99.184.162

🇷🇺 185.110.45.16

🇨🇳 183.195.135.222

🇺🇸 135.119.88.100

🇮🇷 85.198.19.253

🇧🇾 82.209.239.58

🇺🇸 44.241.218.210

🇺🇸 44.164.71.136

🇪🇸 34.175.118.185