JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.154.138.30

45.154.138.30 was found in our database!

This IP was reported 140 times. Confidence of Abuse is 43%: ?

43%

ISP	VPN Consumer Marseille, France
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇫🇷 France
City	Marseille, Provence-Alpes-Cote d'Azur

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.154.138.30

Whois 45.154.138.30

IP Abuse Reports for 45.154.138.30:

This IP address has been reported a total of 140 times from 65 distinct sources. 45.154.138.30 was first reported on February 1st 2023, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 sms.ru	2026-06-07 14:12:44 (2 days ago)	/wp-admin/maint/wp-conflg.php	Web App Attack
🇬🇧 consul.to	2026-06-07 04:47:09 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 Octopuce	2026-06-07 03:51:13 (2 days ago)	Aggressive web search of vulnerable pages: /wp-includes/certificates/chosen.php /assets/about.php /w ... show more Aggressive web search of vulnerable pages: /wp-includes/certificates/chosen.php /assets/about.php /wp-admin/js/file/incpb.php /images/stories/t ... show less	Web App Attack
🇫🇷 dynamix	2026-06-07 00:28:22 (2 days ago)	Multiple WAF Violations	Web App Attack
🇩🇪 Ba-Yu	2026-06-05 05:04:10 (4 days ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇬🇧 consul.to	2026-06-05 04:08:49 (4 days ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 mnsf	2026-05-07 01:05:34 (1 month ago)	Too many Status 40X (20)	Brute-Force Web App Attack
🇫🇷 masterguru	2026-05-06 05:33:20 (1 month ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-197) show less	Bad Web Bot
🇺🇸 mnsf	2026-05-06 00:05:22 (1 month ago)	Too many Status 40X (14)	Brute-Force Web App Attack
🇺🇸 mnsf	2026-04-29 21:05:10 (1 month ago)	Too many Status 40X (11)	Brute-Force Web App Attack
🇩🇪 FeG Deutschland	2026-04-19 07:46:16 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-04-19 01:09:05 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.154.138.30 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.154.138.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 18 21:08:58.817545 2026] [security2:error] [pid 10737:tid 10737] [client 45.154.138.30:39069] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|retiredinternationalservice.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "retiredinternationalservice.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aeQrKjYLTGjh6kVdUz2n1wAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-19 00:44:44 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.154.138.30 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.154.138.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 18 20:44:40.505714 2026] [security2:error] [pid 13416:tid 13416] [client 45.154.138.30:24299] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|sanmarinoresidentagent.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "sanmarinoresidentagent.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aeQlePg8Q8KhVm8Lyz8kzgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-19 00:06:27 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.154.138.30 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.154.138.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 18 20:06:19.137141 2026] [security2:error] [pid 3786232:tid 3786232] [client 45.154.138.30:22117] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|stinnetthomeinspection.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "stinnetthomeinspection.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aeQce8ED4sA40tm9T44uvgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Antinson	2026-03-25 04:50:53 (2 months ago)	Scraping with a high error ratio and request rate	Bad Web Bot

Showing 1 to 15 of 140 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 188.215.31.4

🇺🇸 162.216.149.238

🇫🇮 62.238.27.170

🇷🇺 45.144.31.247

🇺🇸 205.210.31.35

🇧🇪 198.235.24.240

🇸🇪 171.25.158.68

🇩🇪 167.94.146.48

🇺🇸 165.227.209.27

🇮🇳 115.187.39.134

🇨🇳 112.123.17.57

🇷🇴 92.118.39.236

🇧🇬 79.124.49.118

🇱🇺 64.89.160.167

🇳🇱 45.148.10.157

🇩🇪 194.88.98.116

🇦🇷 160.238.206.145

🇮🇳 103.248.120.6

🇷🇴 80.94.92.186

🇩🇪 69.5.169.135