JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.154.98.207

45.154.98.207 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 27%: ?

27%

ISP	1337 Services GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS210558
Hostname(s)	45.154.98.207.powered.by
Domain Name	as210558.net
Country	🇳🇱 Netherlands
City	Lelystad, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.154.98.207

Whois 45.154.98.207

IP Abuse Reports for 45.154.98.207:

This IP address has been reported a total of 20 times from 15 distinct sources. 45.154.98.207 was first reported on January 24th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 el-brujo	2026-06-16 10:08:42 (1 day ago)	06/16/2026-12:08:42.653426 45.154.98.207 Protocol: 6 ET DROP Spamhaus DROP Listed Traffic Inbound gr ... show more 06/16/2026-12:08:42.653426 45.154.98.207 Protocol: 6 ET DROP Spamhaus DROP Listed Traffic Inbound group 8 show less	Hacking
🇹🇷 Domainhizmetleri.com	2026-06-11 21:32:43 (5 days ago)	[honeypot] - MS-SQL-PROBE	Port Scan Hacking
🇨🇭 Elysium Security	2026-06-11 15:15:23 (6 days ago)	Mass port scanning on a whole network	Port Scan
🇷🇺 russian-kurort.ru	2026-06-06 23:01:00 (1 week ago)	SYN flood	DDoS Attack Hacking
🇳🇱 Roderic	2025-02-10 22:10:17 (1 year ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted] from 45.154.98.207 (NL/Th ... show more (apache-useragents) Failed apache-useragents trigger with match [redacted] from 45.154.98.207 (NL/The Netherlands/-) show less	Bad Web Bot
🇧🇪 cmbplf	2025-02-09 02:43:53 (1 year ago)	107 requests to *.env	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2025-02-09 01:17:46 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 45.154.98.207 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.154.98.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 08 20:17:14.566629 2025] [security2:error] [pid 25453:tid 25453] [client 45.154.98.207:56292] [client 45.154.98.207] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.shukrisharawico.com"] [uri "/.env"] [unique_id "Z6gCGgnQAaSJxK6rfB4lXgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-02-09 00:20:17 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 45.154.98.207 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.154.98.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 08 19:20:14.354408 2025] [security2:error] [pid 1945335:tid 1945335] [client 45.154.98.207:50375] [client 45.154.98.207] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.123clearmyticket.com"] [uri "/.env"] [unique_id "Z6f0vvMjUNpVOSf7eG1uvwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 tjs	2025-02-04 23:50:00 (1 year ago)	web attack, SQL injection attempt	Hacking SQL Injection Web App Attack
🇮🇩 Burayot	2025-01-31 22:52:22 (1 year ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 45.154.98.207 (NL/The Netherlands/-) ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 45.154.98.207 (NL/The Netherlands/-): 2 in the last 3600 secs show less	Web App Attack
Anonymous	2025-01-31 22:40:08 (1 year ago)	\| Multiple SQL injection attempts from same source ip.(multiple servers)	Hacking SQL Injection Web App Attack
🇬🇧 Thomas Dilts	2025-01-30 12:57:31 (1 year ago)	Multiple attempts, giving bad URL arguments to crash web app, attemp to gain access	Hacking Web App Attack
🇦🇺 paulshipley.com.au	2025-01-27 11:07:38 (1 year ago)	valueaddedpromotions.com.au:443 45.154.98.207 - - [27/Jan/2025:22:07:12 +1100] "GET /promo/www/produ ... show more valueaddedpromotions.com.au:443 45.154.98.207 - - [27/Jan/2025:22:07:12 +1100] "GET /promo/www/product/productlist.php?category=02343&main-category=confectionery&name=chocolates&page=9 HTTP/1.1" 404 146186 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36" valueaddedpromotions.com.au:443 45.154.98.207 - - [27/Jan/2025:22:07:15 +1100] "GET /promo/www/product/productlist.php?category=02343&main-category=confectionery&name=chocolates&page=9&page=%27 HTTP/1.1" 404 146194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36" valueaddedpromotions.com.au:443 45.154.98.207 - - [27/Jan/2025:22:07:17 +1100] "GET /promo/www/product/productlist.php?category=02343&category=%27&main-category=confectionery&name=chocolates&page=9 HTTP/1.1" 404 146198 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36" valuea ... show less	Web App Attack
🇺🇸 TPI-Abuse	2025-01-27 10:59:29 (1 year ago)	(mod_security) mod_security (id:210350) triggered by 45.154.98.207 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 45.154.98.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 27 05:59:24.531169 2025] [security2:error] [pid 947598:tid 947598] [client 45.154.98.207:65254] [client 45.154.98.207] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.oualierealty.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.oualierealty.com"] [uri "/index.php"] [unique_id "Z5dnDOPE-pYwWBmMZLqTxAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 tjs	2025-01-26 23:25:00 (1 year ago)	web attack, SQL injection attempt	Hacking SQL Injection Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇲 216.10.217.96

🇲🇦 196.64.141.135

🇳🇱 195.178.110.30

🇬🇧 195.96.139.81

🇨🇦 195.63.18.174

🇩🇪 193.124.20.252

🇮🇶 151.244.148.243

🇺🇸 147.182.246.210

🇵🇰 103.19.49.255

🇳🇬 102.92.24.208

🇮🇳 49.43.0.70

🇨🇳 39.101.92.216

🇨🇳 39.101.88.210

🇨🇳 39.101.88.166

🇸🇪 31.59.160.12

🇨🇳 14.212.27.4

🇸🇳 196.207.215.188

🇬🇧 193.176.29.28

🇬🇪 185.15.112.18

🇨🇳 123.145.33.34