JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.154.138.150

45.154.138.150 was found in our database!

This IP was reported 140 times. Confidence of Abuse is 44%: ?

44%

ISP	VPN Consumer Marseille, France
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇫🇷 France
City	Marseille, Provence-Alpes-Cote d'Azur

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.154.138.150

Whois 45.154.138.150

IP Abuse Reports for 45.154.138.150:

This IP address has been reported a total of 140 times from 65 distinct sources. 45.154.138.150 was first reported on April 25th 2023, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Octopuce	2026-06-05 19:53:26 (12 hours ago)	Aggressive web search of vulnerable pages: /wp-content/languages/ /wp-content/themes/ /wp-content/pl ... show more Aggressive web search of vulnerable pages: /wp-content/languages/ /wp-content/themes/ /wp-content/plugins/elementor/ /wp-includes/IXR/ /wp-incl ... show less	Web App Attack
🇬🇧 consul.to	2026-06-05 19:40:24 (13 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 dynamix	2026-06-05 12:00:12 (20 hours ago)	Multiple WAF Violations	Web App Attack
🇩🇪 ghostwarriors	2026-05-17 06:50:48 (2 weeks ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇿🇦 Tokolosh Hunters	2026-05-17 03:47:24 (2 weeks ago)	AutoBlockWindow-Known bad useragent query-2026-05-17 03:47:23	Bad Web Bot
🇧🇾 lns.bz	2026-05-09 19:18:47 (3 weeks ago)	Too many 404 requests [BY]	Web App Attack
🇺🇦 URAN Publishing Service	2026-05-09 15:53:50 (3 weeks ago)	45.154.138.150 - - [09/May/2026:18:53:50 +0300] "GET /wp-includes/js/tinymce/skins/lightgray/img/ind ... show more 45.154.138.150 - - [09/May/2026:18:53:50 +0300] "GET /wp-includes/js/tinymce/skins/lightgray/img/index.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1" 45.154.138.150 - - [09/May/2026:18:53:50 +0300] "GET /wp-content/plugins/wpforms/class-wpforms-update.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇳🇱 Site.eu	2026-04-23 21:04:03 (1 month ago)	Excessive 404/403 errors	Brute-Force
Anonymous	2026-04-23 14:09:11 (1 month ago)	45.154.138.150 - - [23/Apr/2026:16:09:10 +0200] "GET /wp-content/themes/Divi/404.php HTTP/1.0" 404 4 ... show more 45.154.138.150 - - [23/Apr/2026:16:09:10 +0200] "GET /wp-content/themes/Divi/404.php HTTP/1.0" 404 469 "-" "Go-http-client/1.1" 45.154.138.150 - - [23/Apr/2026:16:09:10 +0200] "GET /wp-content/themes/Divi/404.php HTTP/1.1" 404 253 "-" "Go-http-client/1.1" 45.154.138.150 - - [23/Apr/2026:16:09:10 +0200] "GET /wp-content/plugins/ubh/ubh.php HTTP/1.0" 404 469 "-" "Go-http-client/1.1" 45.154.138.150 - - [23/Apr/2026:16:09:10 +0200] "GET /wp-content/plugins/ubh/ubh.php HTTP/1.1" 404 253 "-" "Go-http-client/1.1" 45.154.138.150 - - [23/Apr/2026:16:09:11 +0200] "GET /wp-content/plugins/fix/up.php HTTP/1.0" 404 469 "-" "Go-http-client/1.1" ... show less	Brute-Force Web App Attack
🇨🇦 Mediashaker	2026-04-23 13:51:03 (1 month ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 45.154.138.150 (FR/Franc ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 45.154.138.150 (FR/France/-) show less	Port Scan
🇺🇦 URAN Publishing Service	2026-04-23 03:26:58 (1 month ago)	45.154.138.150 - - [23/Apr/2026:06:26:57 +0300] "GET /wp-admin/maint/about.php HTTP/1.1" 404 712 "-" ... show more 45.154.138.150 - - [23/Apr/2026:06:26:57 +0300] "GET /wp-admin/maint/about.php HTTP/1.1" 404 712 "-" "Go-http-client/1.1" 45.154.138.150 - - [23/Apr/2026:06:26:57 +0300] "GET /wp-admin/maint/index.php HTTP/1.1" 404 712 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇸 jcbriar	2026-04-14 12:10:37 (1 month ago)	Searching for vulnerable scripts	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-04-14 04:03:06 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.154.138.150 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.154.138.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 14 00:03:00.882993 2026] [security2:error] [pid 2627341:tid 2627341] [client 45.154.138.150:0] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|levabet.xyz\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "levabet.xyz"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ad28dN-Xt_i9TR_Gd8kDIAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-04-05 07:40:13 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-04-05 04:53:31 (2 months ago)	(mod_security) mod_security (id:234930) triggered by 45.154.138.150 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:234930) triggered by 45.154.138.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 00:53:24.229891 2026] [security2:error] [pid 18598:tid 18598] [client 45.154.138.150:59047] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/lib\\\\/php\\\\/connector\\\\.minimal\\\\.php$" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6778"] [id "234930"] [rev "2"] [msg "COMODO WAF: File upload vulnerability in the file manager plugin before 6.9 for WordPress (CVE-2020-25213)\|\|www.voodooshop.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "www.voodooshop.com"] [uri "/voodoofest.html/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "adHqxHfzymwnobg3lTT5EwAAAAk"], referer: http://voodoofest.com/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 140 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2a01:4f8:120:2422::10

🇷🇴 2.57.121.112

🇪🇨 181.119.97.71

🇳🇱 176.65.139.246

🇺🇸 146.190.142.189

🇷🇴 92.118.39.236

🇩🇪 89.117.104.28

🇸🇪 81.237.155.113

🇷🇴 80.94.92.184

🇧🇪 34.156.191.5

🇺🇸 3.145.5.160

🇧🇪 198.235.24.192

🇨🇦 85.217.149.73

🇺🇸 67.205.150.204

🇲🇾 47.250.143.46

🇺🇸 17.132.64.7

🇷🇴 2.57.122.177

🇺🇸 216.222.168.70

🇺🇿 213.230.92.247

🇷🇴 193.32.162.80