JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.196.125.153

45.196.125.153 was found in our database!

This IP was reported 42 times. Confidence of Abuse is 28%: ?

28%

ISP	IT_HOST_BKPL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS44559
Domain Name	blsync.com
Country	🇷🇺 Russian Federation
City	Moscow, Moscow

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.196.125.153

Whois 45.196.125.153

IP Abuse Reports for 45.196.125.153:

This IP address has been reported a total of 42 times from 31 distinct sources. 45.196.125.153 was first reported on December 3rd 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 volcaryx	2026-05-25 12:02:29 (3 weeks ago)	Cloudflare detected an L7 DDoS attack (l7ddos) from RU. Action: BLOCK \| Protocol: HTTP/2 (GET) \| End ... show more Cloudflare detected an L7 DDoS attack (l7ddos) from RU. Action: BLOCK \| Protocol: HTTP/2 (GET) \| Endpoint: / \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	DDoS Attack Bad Web Bot
🇨🇦 leithzz	2026-05-25 11:51:03 (3 weeks ago)	Report by Cloudflare.Time: 2026-05-25T11:50:22Z	DDoS Attack
🇩🇪 BestFans.com	2026-05-22 17:25:07 (4 weeks ago)	Credential brute-force attacks on webpage logins	Brute-Force
🇫🇷 MatStef132	2026-05-22 14:04:40 (4 weeks ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇨🇿 lp	2026-05-19 07:52:30 (1 month ago)	Email account brute force: 1 attempts were recorded from 45.196.125.153 2026-05-19T08:17:28+02:00 wa ... show more Email account brute force: 1 attempts were recorded from 45.196.125.153 2026-05-19T08:17:28+02:00 warning: unknown[45.196.125.153]: SASL PLAIN authentication failed: authentication failure, [email protected] show less	Brute-Force
🇷🇴 Fn4ticHz	2026-05-09 14:13:13 (1 month ago)	Repeated DDoS targeted -- ZeroGuard X ManagedSRV	DDoS Attack Exploited Host
🇺🇸 COMPLEX	2026-05-08 15:49:19 (1 month ago)	Triggered Cloudflare WAF (l7ddos) from RU. Action taken: MANAGED_CHALLENGE ASN: undefined (undefined ... show more Triggered Cloudflare WAF (l7ddos) from RU. Action taken: MANAGED_CHALLENGE ASN: undefined (undefined) Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:149.0) Gecko/20100101 Firefox/149.0 show less	DDoS Attack Bad Web Bot
🇭🇺 Lacika555	2026-05-01 06:11:40 (1 month ago)	RdpGuard detected brute-force attempt on SMTP	Brute-Force
🇮🇹 VHosting	2026-04-30 06:18:20 (1 month ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇪🇸 el-brujo	2026-04-14 13:42:39 (2 months ago)	Cloudflare WAF: Request Path: /geolocalizacion.html Request Query: ?host=reskrimpolrestasorongkota.c ... show more Cloudflare WAF: Request Path: /geolocalizacion.html Request Query: ?host=reskrimpolrestasorongkota.com%2Fnode%2F234726 Host: elhacker.net userAgent: Mozilla/5.0 (X11; Linux aarch64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36 Action: block Source: firewallCustom ASN Description: ITHOSTLINE Country: RU Method: GET Timestamp: 2026-04-14T13:42:39Z ruleId: 0790448dec17408ab1c6e5035985d61c. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇩🇪 NoaQT	2026-04-05 14:34:56 (2 months ago)	45.196.125.153 - - [05/Apr/2026:16:30:41 +0200] "GET /web/login HTTP/1.1" 499 0 "https://app.topmode ... show more 45.196.125.153 - - [05/Apr/2026:16:30:41 +0200] "GET /web/login HTTP/1.1" 499 0 "https://app.topmodern.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 45.196.125.153 - - [05/Apr/2026:16:30:41 +0200] "GET /web/login HTTP/1.1" 499 0 "https://blog.cloud-app.com/home" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 45.196.125.153 - - [05/Apr/2026:16:30:41 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.wikipedia.org/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 45.196.125.153 - - [05/Apr/2026:16:30:41 +0200] "GET /web/login HTTP/1.1" 499 0 "https://blog.pro28.biz/blog" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 45.196.125.153 - - [05/Apr/2026:16:30:41 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.instagr ... show less	DDoS Attack
🇪🇸 el-brujo	2026-04-03 18:53:28 (2 months ago)	Cloudflare WAF: Request Path: / Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Macintosh ... show more Cloudflare WAF: Request Path: / Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.3 Safari/605.1.15 Action: block Source: ratelimit ASN Description: ITHOSTLINE Country: RU Method: GET Timestamp: 2026-04-03T18:53:28Z ruleId: c0c2d5c2a7024f7fbdba4d0f7a002ea8. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 quilla	2026-03-30 20:13:00 (2 months ago)	Botnet infected device observed in honeypot (Vector: TCP HANDSHAKE ATTACK)	DDoS Attack
🇮🇹 IRT@Unisi	2026-03-28 10:19:07 (2 months ago)	anomaly:tcp_dst_session,1001>threshold1000,repeats7733timessincelastlog	DDoS Attack
🇨🇴 conexcol	2026-03-18 03:33:33 (3 months ago)	45.196.125.153 (RU/Russia/-), 5 distributed smtpauth attacks on account [[email protected]] i ... show more 45.196.125.153 (RU/Russia/-), 5 distributed smtpauth attacks on account [[email protected]] in the last 3600 secs show less	Brute-Force

Showing 1 to 15 of 42 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.148.84

🇺🇸 152.32.150.26

🇰🇷 112.216.129.27

🇦🇺 89.41.62.174

🇭🇰 47.238.188.245

🇧🇪 34.34.176.194

🇺🇸 20.169.106.171

🇨🇳 218.205.95.162

🇺🇸 216.180.246.121

🇬🇧 188.240.59.41

🇬🇧 185.216.145.186

🇳🇱 176.65.148.4

🇫🇷 173.212.225.27

🇺🇸 162.216.149.125

🇮🇩 110.239.95.16

🇬🇧 89.37.172.149

🇬🇧 81.19.219.231

🇺🇸 69.164.217.245

🇬🇧 35.203.211.253

🇰🇪 197.254.56.50