JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.133.7.7

45.133.7.7 was found in our database!

This IP was reported 95 times. Confidence of Abuse is 62%: ?

62%

ISP	VPN-Consumer-NZ
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	legaconetworks.nl
Country	🇳🇿 New Zealand
City	Auckland, Auckland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.133.7.7

Whois 45.133.7.7

IP Abuse Reports for 45.133.7.7:

This IP address has been reported a total of 95 times from 52 distinct sources. 45.133.7.7 was first reported on August 16th 2021, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-06-22 13:41:03 (4 hours ago)	Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-201)	Hacking
🇬🇧 consul.to	2026-06-22 09:27:59 (8 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 threatintelligence_bvc	2026-06-21 20:39:53 (21 hours ago)		Brute-Force
🇫🇷 masterguru	2026-06-21 19:35:07 (22 hours ago)	Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-197)	Hacking
🇫🇷 dynamix	2026-06-21 07:05:12 (1 day ago)	Multiple WAF Violations	Web App Attack
🇬🇧 consul.to	2026-06-21 00:44:32 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 23:30:17 (1 day ago)	(mod_security) mod_security (id:240000) triggered by 45.133.7.7 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:240000) triggered by 45.133.7.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 19:30:11.693316 2026] [security2:error] [pid 24796:tid 24796] [client 45.133.7.7:31685] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|krakowski.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "krakowski.net"] [uri "/images/stories/themes.php"] [unique_id "ajcig6gl2s1Gzoc8z9LDVAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 23:38:31 (2 days ago)	(mod_security) mod_security (id:240000) triggered by 45.133.7.7 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:240000) triggered by 45.133.7.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 19:38:25.131006 2026] [security2:error] [pid 8876:tid 8876] [client 45.133.7.7:32127] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|manb.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "manb.org"] [uri "/images/stories/themes.php"] [unique_id "ajXS8XTe11qvmdVc0GfxFQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 08:45:41 (4 days ago)	(mod_security) mod_security (id:240000) triggered by 45.133.7.7 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:240000) triggered by 45.133.7.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 04:45:35.946988 2026] [security2:error] [pid 28455:tid 28455] [client 45.133.7.7:36465] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|banyonsbookdoctor.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "banyonsbookdoctor.com"] [uri "/images/stories/themes.php"] [unique_id "ajOwL1mJkrmgDVoi2F1hCwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-08 16:30:43 (2 weeks ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
Anonymous	2026-06-07 16:30:11 (2 weeks ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇺🇸 mnogoweb	2026-06-07 13:23:26 (2 weeks ago)	(smtpauth) Failed SMTP AUTH login from 45.133.7.7 (NZ/New Zealand/-): 5 in the last 3600 secs; Ports ... show more (smtpauth) Failed SMTP AUTH login from 45.133.7.7 (NZ/New Zealand/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2026-06-07 06:43:38 plain authenticator failed for ([100.64.100.6]) [45.133.7.7]: 535 Incorrect authentication data ([email protected]) 2026-06-07 06:43:39 login authenticator failed for ([100.64.100.6]) [45.133.7.7]: 535 Incorrect authentication data ([email protected]) 2026-06-07 07:23:19 plain authenticator failed for ([100.64.100.6]) [45.133.7.7]: 535 Incorrect authentication data ([email protected]) 2026-06-07 07:23:20 login authenticator failed for ([100.64.100.6]) [45.133.7.7]: 535 Incorrect authentication data ([email protected]) 2026-06-07 07:23:21 plain authenticator failed for ([100.64.100.6]) [45.133.7.7]: 535 Incorrect authentication data ([email protected]) show less	Port Scan
🇺🇸 OceanTreasure	2026-05-26 00:45:18 (3 weeks ago)	tcp/443; WordPress plugin enumeration: "GET //wp-content/plugins/age-restriction/modules/remote_supp ... show more tcp/443; WordPress plugin enumeration: "GET //wp-content/plugins/age-restriction/modules/remote_support/remote_init.php" @ 2026-05-26T00:40:17Z [proxy] show less	Brute-Force
Anonymous	2026-05-25 23:51:24 (3 weeks ago)	45.133.7.7 - - [26/May/2026:01:51:23 +0200] "GET //templates/RiverS/ HTTP/1.1" 301 169 "-" "Go-http- ... show more 45.133.7.7 - - [26/May/2026:01:51:23 +0200] "GET //templates/RiverS/ HTTP/1.1" 301 169 "-" "Go-http-client/1.1" show less	Bad Web Bot
🇳🇱 wlt-blocker	2026-05-23 04:52:11 (4 weeks ago)	Unauthorized access to webpage admin	Web App Attack

Showing 1 to 15 of 95 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 217.146.80.123

🇺🇸 172.212.174.123

🇦🇺 170.64.226.0

🇰🇷 103.86.47.31

🇺🇸 91.230.168.177

🇺🇸 65.49.1.149

🇬🇧 51.68.200.137

🇭🇰 45.249.247.165

🇺🇸 45.158.44.214

🇫🇷 37.65.20.169

🇫🇮 37.27.197.191

🇨🇳 14.103.114.20

🇺🇸 13.89.125.226

🇺🇸 173.44.180.49

🇩🇪 172.217.33.145

🇫🇮 147.185.133.251

🇯🇵 107.155.15.8

🇺🇸 96.78.175.36

🇫🇷 91.196.152.223

🇳🇱 45.148.10.147