JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.137.201.5

45.137.201.5 was found in our database!

This IP was reported 48 times. Confidence of Abuse is 97%: ?

97%

This address is a Tor exit node. Neither the owner nor the provider are directly behind the offending action.

ISP	Julian Achter
Usage Type	Data Center/Web Hosting/Transit
ASN	AS211507
Hostname(s)	tor-exit.bg.2cb.li
Domain Name	aluy.net
Country	🇧🇬 Bulgaria
City	Sofia, Sofia-Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.137.201.5

Whois 45.137.201.5

IP Abuse Reports for 45.137.201.5:

This IP address has been reported a total of 48 times from 34 distinct sources. 45.137.201.5 was first reported on March 2nd 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-21 07:07:39 (2 days ago)	Blocked by UFW (TCP on 1) Source port: 53962 TTL: 42 Packet length: 60 TOS: 0x08 This report (for 4 ... show more Blocked by UFW (TCP on 1) Source port: 53962 TTL: 42 Packet length: 60 TOS: 0x08 This report (for 45.137.201.5) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-20 02:52:10 (3 days ago)	Attac	Brute-Force
Anonymous	2026-06-17 22:40:51 (5 days ago)	ITDATINE WEBEXPLOIT 45.137.201.5 (tor-exit.bg.2cb.li)	Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-17 16:36:12 (6 days ago)	Blocked by CSF 13 firewall - Rule: XMLRPC DE/Germany/tor-exit.bg.2cb.li	Web App Attack
🇩🇪 LRob.fr	2026-06-16 20:30:07 (1 week ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇩🇪 Vegascosmetics	2026-06-14 19:25:56 (1 week ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after suspicious activity. Vegas Security	DDoS Attack Hacking Exploited Host
🇫🇷 MatStef132	2026-06-12 22:50:31 (1 week ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇩🇪 iNetWorker	2026-06-11 02:43:03 (1 week ago)	trolling for resource vulnerabilities	Web App Attack
🇺🇸 xmission.com	2026-06-10 21:16:19 (1 week ago)	Blocked by UFW (TCP on 18599) Source port: 53570 TTL: 43 Packet length: 60 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 18599) Source port: 53570 TTL: 43 Packet length: 60 TOS: 0x08 This report (for 45.137.201.5) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇷 ICS Labs	2026-06-10 17:41:49 (1 week ago)	ICS Labs identified 45.137.201.5 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇬🇧 consul.to	2026-06-09 10:41:09 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 mnsf	2026-06-09 10:07:36 (2 weeks ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇳🇴 paradoxnetworks	2026-06-06 06:43:30 (2 weeks ago)	2026-06-06T06:38:52.574918+00:00 edge-gig-trf01.int.pdx.net.uk sshd[1266250]: Invalid user ubuntu fr ... show more 2026-06-06T06:38:52.574918+00:00 edge-gig-trf01.int.pdx.net.uk sshd[1266250]: Invalid user ubuntu from 45.137.201.5 port 45932 2026-06-06T06:43:26.495344+00:00 edge-gig-trf01.int.pdx.net.uk sshd[1266591]: Invalid user admin from 45.137.201.5 port 52124 2026-06-06T06:43:30.311211+00:00 edge-gig-trf01.int.pdx.net.uk sshd[1266595]: Invalid user ubuntu from 45.137.201.5 port 52130 ... show less	Brute-Force SSH
🇨🇿 Countryman	2026-06-06 00:10:01 (2 weeks ago)	repeated unauthorized VPN login attempt, user sweep	VPN IP Hacking Brute-Force
🇳🇱 BIV	2026-06-05 18:29:58 (2 weeks ago)	Honeypot multi-source hit. Sources: tpot:Fatt,tpot:P0f,tpot:Suricata. Ports: 443. Automated tiered ( ... show more Honeypot multi-source hit. Sources: tpot:Fatt,tpot:P0f,tpot:Suricata. Ports: 443. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Bad Web Bot

Showing 1 to 15 of 48 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇺 203.185.198.246

🇳🇱 192.253.248.66

🇲🇽 187.190.35.163

🇨🇳 175.17.187.206

🇨🇳 117.81.212.152

🇨🇳 106.13.104.49

🇿🇦 102.64.32.182

🇺🇸 64.23.142.130

🇳🇱 45.148.10.147

🇬🇧 35.203.210.146

🇺🇸 20.169.105.85

🇺🇸 20.168.12.53

🇮🇳 13.203.200.128

🇲🇽 187.216.224.85

🇦🇲 176.32.193.16

🇨🇳 124.221.177.9

🇫🇮 109.204.177.54

🇪🇬 102.41.185.112

🇩🇪 43.228.157.10

🇨🇳 8.134.124.8