JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.147.11.204

45.147.11.204 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 15%: ?

15%

ISP	Atlas Network Holdings LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213954
Domain Name	atlasnetworkholdings.online
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.147.11.204

Whois 45.147.11.204

IP Abuse Reports for 45.147.11.204:

This IP address has been reported a total of 5 times from 4 distinct sources. 45.147.11.204 was first reported on April 27th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-30 04:27:06 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 45.147.11.204 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.147.11.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 00:27:00.693257 2026] [security2:error] [pid 4121:tid 4121] [client 45.147.11.204:38917] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "statebeach.org.mrcd.org"] [uri "/.env"] [unique_id "afLaFDbjEA6r1HvieC-vIgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-04-29 12:32:20 (1 month ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 45.147.11.204 (NL/The Netherlands/-): ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 45.147.11.204 (NL/The Netherlands/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇬🇧 poundawebsiteltd	2026-04-28 10:58:35 (1 month ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 45.147.11.204 - - [28/Apr/2026:1 ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 45.147.11.204 - - [28/Apr/2026:11:58:33 +0100] GET /s3cmd.ini HTTP/1.1 403 2805 - Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:16.0) Gecko/20120813 Firefox/16.0 show less	Web App Attack
🇨🇭 4server	2026-04-27 23:40:34 (1 month ago)	[TueApr2801:40:27.3914462026][security2:error][pid1876017:tid1876222][client45.147.11.204:0]ModSecur ... show more [TueApr2801:40:27.3914462026][security2:error][pid1876017:tid1876222][client45.147.11.204:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.4-server.com\"][uri\"/.aws/credentials\"][unique_id\"ae_z6zgIcnZvirpO7uDQhwAAAQE\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-04-27 02:08:45 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.147.11.204 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.147.11.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 22:08:40.413915 2026] [security2:error] [pid 9244:tid 9244] [client 45.147.11.204:24827] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.aufflammen.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.aufflammen.com"] [uri "/s3cmd.ini"] [unique_id "ae7FKPOk4CPSEr4jEvZ8sAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇭 179.43.163.26

🇩🇪 172.71.144.52

🇻🇳 112.137.143.2

🇩🇪 69.5.169.105

🇺🇸 66.132.172.207

🇺🇸 65.49.1.127

🇨🇳 218.4.156.254

🇩🇪 213.209.159.56

🇩🇪 167.94.146.53

🇩🇪 167.94.145.31

🇺🇸 165.154.173.115

🇺🇸 162.216.150.238

🇺🇸 162.158.63.101

🇳🇱 159.223.226.118

🇩🇪 118.193.59.10

🇺🇸 97.107.141.150

🇩🇪 69.5.169.30

🇺🇸 66.132.172.110

🇺🇸 66.132.172.109

🇬🇧 46.101.86.167