JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.154.98.112

45.154.98.112 was found in our database!

This IP was reported 152 times. Confidence of Abuse is 100%: ?

100%

ISP	1337 Services GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS210558
Hostname(s)	45.154.98.112.powered.by.rdp.sh
Domain Name	as210558.net
Country	🇳🇱 Netherlands
City	Lelystad, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.154.98.112

Whois 45.154.98.112

IP Abuse Reports for 45.154.98.112:

This IP address has been reported a total of 152 times from 78 distinct sources. 45.154.98.112 was first reported on May 29th 2023, and the most recent report was 39 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Blexyel	2026-06-29 07:25:30 (39 minutes ago)	45.154.98.112 - - [29/Jun/2026:09:25:29 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 500 2359 ... show more 45.154.98.112 - - [29/Jun/2026:09:25:29 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 500 2359 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "git.fomx.gay" ... show less	Brute-Force Web App Attack
🇩🇪 updown.io	2026-06-29 07:04:51 (1 hour ago)	{"level":"info","ts":1782712851.0496497,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1782712851.0496497,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"45.154.98.112","remote_port":"58648","client_ip":"45.154.98.112","proto":"HTTP/1.1","method":"GET","host":"status.ensoanalytics.com","uri":"/","headers":{"Connection":["keep-alive"],"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"],"Accept-Language":["en-US,en;q=0.5"],"Accept":["text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8"],"Keep-Alive":["300"]}},"bytes_read":0,"user_id":"","duration":0.000063581,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://status.ensoanalytics.com/"],"Content-Type":[]}} {"level":"info","ts":1782712851.0962555,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"45.154.98.112","remote_port":"58705","client_ip":"45.154.98.112","proto":"HTTP/1.1","method":"GET","host":"s ... show less	DDoS Attack Web App Attack
Anonymous	2026-06-29 07:03:06 (1 hour ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: NL, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: NL, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇬🇧 Oakley	2026-06-29 06:26:59 (1 hour ago)	(mod_security) mod_security (id:900191) triggered by 45.154.98.112 (45.154.98.112.powered.by.rdp.sh) ... show more (mod_security) mod_security (id:900191) triggered by 45.154.98.112 (45.154.98.112.powered.by.rdp.sh): 5 in the last 900 secs show less	Web App Attack Hacking
🇩🇪 BlueWire Hosting	2026-06-29 05:23:02 (2 hours ago)	Probing websites for vulnerabilities	Web App Attack SQL Injection
🇬🇧 openstrike.co.uk	2026-06-29 05:14:47 (2 hours ago)	36 attacks on Wordpress URLs, PHP URLs: GET //sito/wp-includes/wlwmanifest.xml HTTP/1.1 GET //xmlrpc ... show more 36 attacks on Wordpress URLs, PHP URLs: GET //sito/wp-includes/wlwmanifest.xml HTTP/1.1 GET //xmlrpc.php?rsd HTTP/1.1 show less	Web App Attack
🇩🇪 raph	2026-06-29 02:29:45 (5 hours ago)	[Wordpress] crawler /wp-admin/, /wp-content/, etc.	Bad Web Bot Web App Attack
🇫🇷 EDSL	2026-06-29 02:18:37 (5 hours ago)	[mail.edsl.fr] Blocked by SysWarden Firewall (Web Attack)	Web App Attack Hacking Port Scan
🇫🇷 Delta-shop	2026-06-29 00:20:43 (7 hours ago)	PrestaShop Security Module: AbuseIPDB high confidence score AND local web-app-attack detected (Abuse ... show more PrestaShop Security Module: AbuseIPDB high confidence score AND local web-app-attack detected (AbuseIPDB score: 100% (cached)) show less	Web App Attack
🇮🇹 mgarofano80	2026-06-28 23:46:23 (8 hours ago)		Brute-Force Web App Attack
🇳🇱 Site.eu	2026-06-28 23:27:14 (8 hours ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
Anonymous	2026-06-28 23:17:34 (8 hours ago)	45.154.98.112 - - [29/Jun/2026:01:17:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 845 "-" "Mozilla/5.0 ... show more 45.154.98.112 - - [29/Jun/2026:01:17:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 845 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 45.154.98.112 - - [29/Jun/2026:01:17:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 655 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 45.154.98.112 - - [29/Jun/2026:01:17:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 845 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 45.154.98.112 - - [29/Jun/2026:01:17:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 655 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 45.154.98.112 - - [29/Jun/2026:01:17:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 845 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0 ... show less	Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2026-06-28 22:29:22 (9 hours ago)		Brute-Force Web App Attack
🇵🇱 strefapi_com	2026-06-28 21:40:50 (10 hours ago)	Brute-force, web ...	Hacking Brute-Force Web App Attack
🇩🇪 webanyone	2026-06-28 21:30:40 (10 hours ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot

Showing 1 to 15 of 152 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 186.96.158.180

🇸🇬 178.128.19.6

🇮🇳 161.123.128.78

🇫🇷 92.62.246.17

🇫🇮 77.105.161.120

🇳🇱 45.142.193.161

🇺🇸 20.75.217.64

🇷🇺 188.65.132.106

🇳🇱 91.92.40.66

🇺🇸 45.156.129.116

🇮🇳 2401:4900:885c:5b7f:f85e:dbda:81a3:24cb

🇨🇳 222.176.200.21

🇧🇩 203.145.36.133

🇬🇧 195.206.182.205

🇧🇷 177.129.221.194

🇺🇸 159.183.66.254

🇨🇳 124.235.251.84

🇱🇻 81.30.98.44

🇮🇳 49.207.10.109

🇻🇳 27.79.44.110