JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.154.138.235

45.154.138.235 was found in our database!

This IP was reported 125 times. Confidence of Abuse is 51%: ?

51%

ISP	VPN Consumer Marseille, France
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇫🇷 France
City	Marseille, Provence-Alpes-Cote d'Azur

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.154.138.235

Whois 45.154.138.235

IP Abuse Reports for 45.154.138.235:

This IP address has been reported a total of 125 times from 63 distinct sources. 45.154.138.235 was first reported on October 13th 2022, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 sms.ru	2026-06-07 14:12:17 (6 hours ago)	/wp-admin/wso.php	Web App Attack
🇬🇧 consul.to	2026-06-07 04:47:41 (15 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 Octopuce	2026-06-07 03:47:57 (16 hours ago)	Aggressive web search of vulnerable pages: /wp-login.php?action=register /wp-includes/rest-api/about ... show more Aggressive web search of vulnerable pages: /wp-login.php?action=register /wp-includes/rest-api/about.php /css/css.php /init.php /wp-admin/user/ ... show less	Web App Attack
🇳🇱 ConsulHosting	2026-06-07 03:38:15 (16 hours ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
Anonymous	2026-06-06 04:30:32 (1 day ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇬🇧 consul.to	2026-06-05 05:10:44 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 Ba-Yu	2026-06-05 05:03:34 (2 days ago)	WordPress hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇦🇺 oncord	2026-05-14 09:13:57 (3 weeks ago)	Form spam	Web Spam
🇫🇷 masterguru	2026-05-06 05:24:54 (1 month ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-197) show less	Bad Web Bot
🇫🇷 dynamix	2026-04-21 05:01:15 (1 month ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-04-19 09:22:43 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.154.138.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.154.138.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 19 05:22:39.433575 2026] [security2:error] [pid 3604656:tid 3604656] [client 45.154.138.235:0] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|yggdrasil.org\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "yggdrasil.org"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aeSe33PT1mxCbgaRYN9E8QAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-19 00:57:12 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.154.138.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.154.138.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 18 20:57:07.952828 2026] [security2:error] [pid 13826:tid 13826] [client 45.154.138.235:59945] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|postalfables.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "postalfables.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aeQoY0YqCb2txRFvobBMRgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-19 00:10:51 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.154.138.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.154.138.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 18 20:10:48.320812 2026] [security2:error] [pid 3797943:tid 3797943] [client 45.154.138.235:35985] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|opmasterpainter.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "opmasterpainter.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aeQdiHMAxVFXkzwKLvJ1HQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Mundo Bueno	2026-04-17 00:40:44 (1 month ago)	[ISILIA Protection v2.1] Tentative d'accès: /vendor/phpunit/phpunit/phpunit.xsd \| Pays: FR \| UA: Moz ... show more [ISILIA Protection v2.1] Tentative d'accès: /vendor/phpunit/phpunit/phpunit.xsd \| Pays: FR \| UA: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0 show less	Hacking Web App Attack
🇬🇧 consul.to	2026-04-08 10:08:21 (1 month ago)	Web attack/malicious scanning detected	Web App Attack

Showing 1 to 15 of 125 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 137.184.174.170

🇰🇷 119.203.251.187

🇮🇳 117.200.81.111

🇺🇸 46.202.183.86

🇺🇸 20.169.87.124

🇺🇸 20.169.87.123

🇩🇪 212.132.108.200

🇳🇱 155.117.6.32

🇮🇩 103.219.73.193

🇨🇮 102.209.221.229

🇺🇸 47.42.131.93

🇺🇸 20.169.87.120

🇳🇱 176.65.148.229

🇨🇳 175.30.91.86

🇺🇸 138.68.4.170

🇺🇸 108.170.31.39

🇷🇴 92.118.39.62

🇱🇹 45.227.254.170

🇺🇸 20.169.87.119

🇺🇸 20.169.87.117