JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.148.126.12

45.148.126.12 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 0%: ?

ISP	TrafficTransitSolution LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	traffictransitsolution.us
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.148.126.12

Whois 45.148.126.12

IP Abuse Reports for 45.148.126.12:

This IP address has been reported a total of 15 times from 9 distinct sources. 45.148.126.12 was first reported on November 1st 2023, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-03-25 23:51:09 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 45.148.126.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.148.126.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 19:51:03.142023 2026] [security2:error] [pid 13003:tid 13003] [client 45.148.126.12:28589] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|rachel-heiko.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rachel-heiko.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acR05_DVG8XEjPibYJnHLQAAAAo"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-25 12:19:36 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 45.148.126.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.148.126.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 08:19:29.152868 2026] [security2:error] [pid 11105:tid 11105] [client 45.148.126.12:22395] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ismaelcavazos.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ismaelcavazos.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acPS0dgAgLwei71qQBjv-AAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-23 20:25:22 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 45.148.126.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.148.126.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 23 16:25:13.722320 2026] [security2:error] [pid 3914332:tid 3914332] [client 45.148.126.12:62645] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|frootloops.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "frootloops.net"] [uri "/wp-json/wp/v2/users"] [unique_id "acGhqZ90B8mWx1Mosc4UwwAAAAc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-22 00:19:22 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 45.148.126.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.148.126.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 20:19:15.242995 2026] [security2:error] [pid 17813:tid 17834] [client 45.148.126.12:30399] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|luckystarscattery.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "luckystarscattery.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ab81g5XS_k7wbKF4nIc3mgAAAVE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-03-21 11:19:29 (2 months ago)	Web password guessing	Brute-Force
🇺🇸 xmission.com	2026-03-04 00:15:40 (3 months ago)	45.148.126.12 - - [03/Mar/2026:17:15:39 -0700] "POST /wp-login.php HTTP/1.1" 200 2333 "https://dooce ... show more 45.148.126.12 - - [03/Mar/2026:17:15:39 -0700] "POST /wp-login.php HTTP/1.1" 200 2333 "https://dooce.com/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" ... show less	Brute-Force
🇳🇱 ipoac.nl	2025-12-27 10:06:32 (5 months ago)	2025-12-27T11:06:31.700142+01:00 ipoac.nl wordpress(-)-: Authentication failure for-from 45.148.126. ... show more 2025-12-27T11:06:31.700142+01:00 ipoac.nl wordpress(-)-: Authentication failure for-from 45.148.126.12 show less	Web App Attack
🇸🇬 Vano Ganzzz	2025-11-29 11:10:22 (6 months ago)	Triggered Cloudflare WAF (ratelimit) from US. Action taken: BLOCK ASN: 35830 (BTTGROUP-AS) Protocol: ... show more Triggered Cloudflare WAF (ratelimit) from US. Action taken: BLOCK ASN: 35830 (BTTGROUP-AS) Protocol: HTTP/2 (GET method) Endpoint: / Timestamp: 2025-11-29T11:10:22Z Ray ID: 9a61a87cbf58efa7 UA: Mozilla/5.0 (iPhone; CPU iPhone OS 17_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/127.0.0.0 Mobile/15E148 Safari/604.1 show less	Bad Web Bot
🇨🇿 lp	2025-05-27 18:20:58 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.148.126.12 2025-05-27T19:16:32+02: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.148.126.12 2025-05-27T19:16:32+02:00 vpn Access-Reject 'acorn' station: 45.148.126.12 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-05-09 13:50:08 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.148.126.12 2025-05-09T14:51:30+02: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.148.126.12 2025-05-09T14:51:30+02:00 vpn Access-Reject 'michaelt' station: 45.148.126.12 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-05-07 01:50:17 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.148.126.12 2025-05-07T02:31:19+02: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.148.126.12 2025-05-07T02:31:19+02:00 vpn Access-Reject 'dryden' station: 45.148.126.12 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-03-02 22:38:41 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 45.148.126.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.148.126.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 02 17:38:34.989019 2025] [security2:error] [pid 6163:tid 6163] [client 45.148.126.12:46661] [client 45.148.126.12] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.glendaleheritage.org"] [uri "/.env"] [unique_id "Z8Td6kdh8P1b2FRKnlZvdwAAAAA"], referer: https://tasamm.com/about/ggg22.html show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 www.unitiz.com	2024-11-07 20:54:22 (1 year ago)	Probing non-existent URLs	Bad Web Bot Web App Attack
🇻🇳 Xuan Can	2024-07-13 02:18:48 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 45.148.126.12 (RU/Russia/-): 1 in the last 3600 ... show more (mod_security) mod_security (id:210492) triggered by 45.148.126.12 (RU/Russia/-): 1 in the last 3600 secs; Ports: 80,443; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 13 09:18:24.004823 2024] [security2:error] [pid 16367:tid 47426829928192] [client 45.148.126.12:47135] [client 45.148.126.12] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kb.pavietnam.vn"] [uri "/wp-config.php.swp"] [unique_id "ZpHj8DogaPDByb2dwKd5ugAAAIs"] show less	Brute-Force SSH
🇵🇱 TI	2023-11-01 01:31:59 (2 years ago)	Scrapping website, using diffrent useragents, not wait for response, #botnet20231026	DDoS Attack Bad Web Bot

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.202.118.11

🇳🇱 91.92.42.133

🇦🇺 27.124.111.122

🇺🇸 20.65.193.108

🇩🇪 13.140.141.126

🇷🇴 2.57.121.112

🇨🇳 2400:7fc0:82c0:800:5695:6ff1:41f4:d88c

🇧🇷 201.17.146.173

🇩🇪 167.94.145.31

🇳🇬 165.154.11.206

🇮🇳 122.187.229.168

🇺🇸 109.105.209.14

🇮🇹 93.92.73.242

🇷🇴 92.118.39.62

🇳🇱 45.148.10.157

🇦🇷 190.221.50.123

🇸🇾 185.216.134.126

🇺🇦 176.98.31.13

🇨🇳 171.104.143.176

🇰🇷 124.153.239.15