JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.252.248.111

45.252.248.111 was found in our database!

This IP was reported 116 times. Confidence of Abuse is 100%: ?

100%

ISP	AZDIGI Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS63760
Domain Name	azdigi.com
Country	🇻🇳 Viet Nam
City	Ho Chi Minh City, Ho Chi Minh City (HCMC)

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.252.248.111

Whois 45.252.248.111

IP Abuse Reports for 45.252.248.111:

This IP address has been reported a total of 116 times from 69 distinct sources. 45.252.248.111 was first reported on September 10th 2023, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 dbmwebdesign	2026-05-31 12:40:18 (3 days ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇨🇦 KIsmay	2026-05-31 12:24:51 (3 days ago)	May 31 05:47:05 www4 WPAudit[144919]: 45.252.248.111 katharinedickerson.com "Mozilla/5.0 (Windows NT ... show more May 31 05:47:05 www4 WPAudit[144919]: 45.252.248.111 katharinedickerson.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" katharine:katharine FAIL May 31 05:48:13 www4 WPAudit[144952]: 45.252.248.111 www.amandasrestaurant.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" sbd-admin:sbd-admin FAIL May 31 07:51:18 www4 WPAudit[155169]: 45.252.248.111 katharinedickerson.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" sbd:sbd12345 FAIL May 31 08:19:27 www4 WPAudit[154702]: 45.252.248.111 siscobc.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" sbd-admin:pass FAIL May 31 08:24:50 www4 WPAudit[157778]: 45.252.248.111 katharinedickerson.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chr ... show less	Brute-Force Web App Attack
Anonymous	2026-05-31 11:51:26 (3 days ago)	(wordpress) Failed wordpress login from 45.252.248.111 (VN/Vietnam/-)	Brute-Force
🇩🇪 F242	2026-05-31 11:39:20 (3 days ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇫🇷 SpaceHost-Server	2026-05-31 11:37:25 (3 days ago)	45.252.248.111 - - [31/May/2026:13:35:56 +0200] "POST /wp-login.php HTTP/1.1" 200 12723 "https://tax ... show more 45.252.248.111 - - [31/May/2026:13:35:56 +0200] "POST /wp-login.php HTTP/1.1" 200 12723 "https://taxifisch.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 45.252.248.111 - - [31/May/2026:13:36:48 +0200] "POST /wp-login.php HTTP/1.1" 200 14137 "https://wethinking.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 45.252.248.111 - - [31/May/2026:13:37:23 +0200] "POST /wp-login.php HTTP/1.1" 200 15949 "https://weiber.wp-knowhow.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇬🇧 Greg Poulson	2026-05-31 11:33:47 (3 days ago)	Our website was hit by this DDOS at a rate of 6 in 5 minutes.	DDoS Attack Web Spam Brute-Force
🇦🇺 FSB.ru - Is it?	2026-05-31 11:24:03 (3 days ago)	Brute force login for honeypot user accounts	Brute-Force Web App Attack
🇨🇦 1gz	2026-05-31 11:02:31 (3 days ago)	Triggered Cloudflare WAF (firewallCustom) from VN. Action taken: BLOCK Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallCustom) from VN. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /wp-login.php UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 mind5t0rm	2026-05-31 10:49:02 (3 days ago)	(WPLOGIN) WP Login Attack 45.252.248.111 (VN/Vietnam/-): 3 in the last 3600 secs; Ports: ; Directio ... show more (WPLOGIN) WP Login Attack 45.252.248.111 (VN/Vietnam/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 45.252.248.111 - - [31/May/2026:17:10:21 +0700] "GET /wp-login.php HTTP/2.0" 200 1747 "https://www.inthepursuitstudio.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 45.252.248.111 - - [31/May/2026:17:10:22 +0700] "GET /wp-login.php HTTP/2.0" 200 1747 "https://www.inthepursuitstudio.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 45.252.248.111 - - [31/May/2026:17:49:00 +0700] "GET /wp-login.php HTTP/2.0" 200 3127 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" show less	Port Scan
🇺🇸 TAY	2026-05-31 10:32:40 (3 days ago)	45.252.248.111 - - [31/May/2026:18:25:27 +0800] "POST /wp-login.php HTTP/1.1" 200 2707 "https://litt ... show more 45.252.248.111 - - [31/May/2026:18:25:27 +0800] "POST /wp-login.php HTTP/1.1" 200 2707 "https://littleprairie.com.my/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 45.252.248.111 - - [31/May/2026:18:30:56 +0800] "POST /wp-login.php HTTP/1.1" 200 2677 "https://littleprairie.com.my/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 45.252.248.111 - - [31/May/2026:18:32:39 +0800] "POST /wp-login.php HTTP/1.1" 200 2676 "https://littleprairie.com.my/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Brute-Force
🇺🇸 TPI-Abuse	2026-05-31 10:32:30 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 45.252.248.111 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.252.248.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 06:32:21.577645 2026] [security2:error] [pid 24042:tid 24042] [client 45.252.248.111:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|avaliantlife.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "avaliantlife.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ahwONcwmXJq_peawAW1taAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-05-31 10:02:44 (3 days ago)	45.252.248.111 - - [31/May/2026:12:01:32 +0200] "POST /wp-login.php HTTP/1.1" 200 11481 "https://sta ... show more 45.252.248.111 - - [31/May/2026:12:01:32 +0200] "POST /wp-login.php HTTP/1.1" 200 11481 "https://staging.taxifisch.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 45.252.248.111 - - [31/May/2026:12:02:01 +0200] "POST /wp-login.php HTTP/1.1" 200 11489 "https://staging.taxifisch.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 45.252.248.111 - - [31/May/2026:12:02:43 +0200] "POST /wp-login.php HTTP/1.1" 200 15936 "https://weiber.wp-knowhow.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇩🇪 london2038.com	2026-05-31 09:57:09 (3 days ago)	Attacking WordPress 45.252.248.111 - - [31/May/2026:11:57:06 +0200] "POST /wp-login.php HTTP/2.0" 50 ... show more Attacking WordPress 45.252.248.111 - - [31/May/2026:11:57:06 +0200] "POST /wp-login.php HTTP/2.0" 503 19289 "https://<REDACTED>/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Brute-Force Web App Attack
🇬🇧 consul.to	2026-05-31 09:53:58 (3 days ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 masterguru	2026-05-31 09:08:29 (3 days ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 45.252.248.111 (VN/Vietnam/-): 1 in the last ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 45.252.248.111 (VN/Vietnam/-): 1 in the last 3600 secs (0-193) show less	Hacking

Showing 46 to 60 of 116 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇸 213.94.63.134

🇺🇸 184.105.139.125

🇮🇳 139.59.37.39

🇹🇿 41.93.32.88

🇨🇳 14.103.159.154

🇨🇳 183.162.100.18

🇺🇸 157.245.229.198

🇷🇺 128.14.231.118

🇺🇸 104.234.53.11

🇷🇴 102.129.186.123

🇷🇴 80.94.92.171

🇺🇸 66.132.172.135

🇫🇷 51.210.79.90

🇫🇷 51.68.226.87

🇧🇪 35.195.84.127

🇮🇳 223.235.100.63

🇬🇧 216.226.76.30

🇩🇪 192.109.200.220

🇮🇩 180.247.56.119

🇺🇸 162.216.149.224