JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.157.112.112

45.157.112.112 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 84%: ?

84%

ISP	VPN Consumer Paris, France
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.157.112.112

Whois 45.157.112.112

IP Abuse Reports for 45.157.112.112:

This IP address has been reported a total of 43 times from 37 distinct sources. 45.157.112.112 was first reported on April 6th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-15 12:57:47 (1 day ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇩🇪 expandmade.com	2026-06-15 05:06:49 (1 day ago)	trolling for installation vulnerabilities [15/Jun/2026:05:06:49 "GET /Theme/assets/ueditor/ueditor.c ... show more trolling for installation vulnerabilities [15/Jun/2026:05:06:49 "GET /Theme/assets/ueditor/ueditor.config.js/x.php"] show less	Web App Attack
Anonymous	2026-06-15 00:14:05 (1 day ago)	Bot / scanning and/or hacking attempts: GET /wp-admin/index.php HTTP/1.1, GET /wp-login.php?redirect ... show more Bot / scanning and/or hacking attempts: GET /wp-admin/index.php HTTP/1.1, GET /wp-login.php?redirect_to=https%3A%2F%2Fyannoordwijk.nl%2Fw, POST /wp-login.php HTTP/1.1 show less	Hacking Web App Attack
Anonymous	2026-06-14 09:53:20 (2 days ago)	GET wp-admin \| UA: Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) ... show more GET wp-admin \| UA: Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 \| Time: 2026-06-14 09:53:20 UTC show less	Web App Attack
Anonymous	2026-06-13 00:25:34 (3 days ago)	"GET /wp-login.php HTTP/1.1"	Hacking Web App Attack
🇺🇦 URAN Publishing Service	2026-06-12 13:11:21 (4 days ago)	45.157.112.112 - - [12/Jun/2026:16:11:20 +0300] "GET /wp-admin/profile.php HTTP/1.1" 404 3130 "http: ... show more 45.157.112.112 - - [12/Jun/2026:16:11:20 +0300] "GET /wp-admin/profile.php HTTP/1.1" 404 3130 "http://csctt.kpi.ua/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 45.157.112.112 - - [12/Jun/2026:16:11:21 +0300] "GET /wp-admin/edit.php HTTP/1.1" 404 553 "http://csctt.kpi.ua/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" ... show less	Web App Attack
🇺🇸 nyt	2026-06-12 10:40:39 (4 days ago)	Repeated WordPress login POSTs blocked by WAF (3 in 6h)	Brute-Force Web App Attack
🇨🇦 KIsmay	2026-06-12 01:31:40 (4 days ago)	Jun 11 18:46:32 www4 WPAudit[1410149]: 45.157.112.112 valhallasafety.com "Mozilla/5.0 (Windows NT 10 ... show more Jun 11 18:46:32 www4 WPAudit[1410149]: 45.157.112.112 valhallasafety.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/129.0.0.0 Safari/537.36" sbd-admin:sbd-admin123 FAIL Jun 11 20:18:23 www4 WPAudit[1366411]: 45.157.112.112 valhallasafety.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/129.0.0.0 Safari/537.36" sbd-admin:sbd-admin FAIL Jun 11 21:07:24 www4 WPAudit[1423067]: 45.157.112.112 vhsport.ca "Mozilla/5.0 (Windows NT 10.0; Win64; rv:143.0) Gecko/20100101 Firefox/143.0" vhsport:vhsport1234 FAIL Jun 11 21:13:22 www4 WPAudit[1366411]: 45.157.112.112 valhallasafety.com "Mozilla/5.0 (Windows NT 10.0; Win64; rv:143.0) Gecko/20100101 Firefox/143.0" sbd-admin:https://valhallasafety.com FAIL Jun 11 21:31:40 www4 WPAudit[1410151]: 45.157.112.112 valhallasafety.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/129.0.0.0 Safari/537.36" sbd-admin:sbd-admin1234 FAIL ... show less	Brute-Force Web App Attack
🇬🇷 setupgr	2026-06-11 21:56:47 (4 days ago)	(mod_security) mod_security (id:900001) triggered by 45.157.112.112: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:900001) triggered by 45.157.112.112: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 12 00:56:46.347186 2026] [security2:error] [pid 2151996:tid 2152114] [client 45.157.112.112:45239] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|alloweddomain2\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: villa-izabela.com"] [severity "CRITICAL"] [tag "security"] [hostname "villa-izabela.com"] [uri "/wp-login.php"] [unique_id "aisvHpXfrDoES_Umj1EI1gAAAE4"] show less	Port Scan
🇫🇷 COMAITE	2026-06-11 11:11:21 (5 days ago)	SQL injection attempt from 45.157.112.112.	Web App Attack
Anonymous	2026-06-03 14:12:57 (1 week ago)	Attac	Brute-Force
Anonymous	2026-06-03 07:48:57 (1 week ago)	45.157.112.112 - - [03/Jun/2026:09:48:56 +0200] "POST /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 ... show more 45.157.112.112 - - [03/Jun/2026:09:48:56 +0200] "POST /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 45.157.112.112 - - [03/Jun/2026:09:48:56 +0200] "POST /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 14; SM-S918B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Mobile Safari/537.36" 45.157.112.112 - - [03/Jun/2026:09:48:57 +0200] "POST /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 14; SM-S918B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Mobile Safari/537.36" ... show less	Web App Attack
Anonymous	2026-06-03 06:25:14 (1 week ago)	Blocked: Reason='Suspicious traffic score=60 (review-based detection)'; Requests=36	Hacking
🇫🇷 Kenshin869	2026-06-01 10:34:07 (2 weeks ago)	Wordpress unauthorized access attempt	Brute-Force
🇺🇸 integrantservices.com	2026-06-01 01:27:41 (2 weeks ago)	(wordpress) Failed wordpress login from 45.157.112.112 (FR/France/-)	Brute-Force

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.199

🇧🇷 187.17.228.218

🇸🇬 146.190.110.231

🇮🇳 122.185.237.142

🇩🇪 91.233.10.52

🇺🇸 35.254.232.107

🇺🇸 34.63.170.33

🇮🇳 13.201.42.238

🇬🇧 198.244.240.30

🇲🇱 197.155.176.56

🇨🇳 180.76.134.19

🇪🇨 177.53.215.134

🇯🇵 162.159.108.76

🇮🇳 106.51.92.114

🇫🇮 104.252.53.46

🇬🇧 81.111.223.51

🇨🇦 66.85.30.4

🇺🇸 54.234.208.171

🇭🇰 43.155.125.173

🇩🇪 8.211.43.157