JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.43.166.13

45.43.166.13 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 69%: ?

69%

ISP	LUMADOCK LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS203919
Domain Name	lifeincloud.com
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	Harrow, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.43.166.13

Whois 45.43.166.13

IP Abuse Reports for 45.43.166.13:

This IP address has been reported a total of 15 times from 12 distinct sources. 45.43.166.13 was first reported on June 5th 2026, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 thetomtaylor.co.uk	2026-06-12 14:06:02 (8 hours ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01]	Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-12 13:08:01 (9 hours ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice02,mx01,mx02,mx03,wa ... show more Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice02,mx01,mx02,mx03,wa01] show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 10:58:43 (12 hours ago)	(mod_security) mod_security (id:210492) triggered by 45.43.166.13 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 45.43.166.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 06:58:37.074365 2026] [security2:error] [pid 29174:tid 29174] [client 45.43.166.13:41896] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "toastergraphics.com"] [uri "/.git/HEAD"] [unique_id "aivmXZc-gZW9G4_e-d2_JgAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-12 10:53:32 (12 hours ago)	302 requests with url.path .env 194 requests with url.path .git/* 100 requests with url.path c ... show more 302 requests with url.path .env 194 requests with url.path .git/ 100 requests with url.path *config.json show less	Brute-Force Bad Web Bot
🇬🇧 consul.to	2026-06-12 10:26:37 (12 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-12 10:23:47 (12 hours ago)	45.43.166.13 - - [12/Jun/2026:13:23:45 +0300] "GET /.env HTTP/1.1" 404 731 "-" "Mozilla/5.0 (Macinto ... show more 45.43.166.13 - - [12/Jun/2026:13:23:45 +0300] "GET /.env HTTP/1.1" 404 731 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15" 45.43.166.13 - - [12/Jun/2026:13:23:45 +0300] "GET /backend/.env HTTP/1.1" 404 3295 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" ... show less	Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-12 10:07:01 (12 hours ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 09:47:11 (13 hours ago)	(mod_security) mod_security (id:210492) triggered by 45.43.166.13 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 45.43.166.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 05:47:03.938086 2026] [security2:error] [pid 18105:tid 18105] [client 45.43.166.13:55500] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thishouserestored.leonardodecaprio.com"] [uri "/.git/HEAD"] [unique_id "aivVl0aThWm-UYata_1JHAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Matthew Ping	2026-06-12 09:45:02 (13 hours ago)	ModSecurity rule 949110 triggered on d865. Web application attack blocked by CSF/LFD.	Web App Attack Hacking
🇪🇸 Francisco Vallejo	2026-06-12 09:42:44 (13 hours ago)	[Fri Jun 12 11:42:43.752432 2026] [authz_core:error] [pid 3622358:tid 130566049486528] [client 45.43 ... show more [Fri Jun 12 11:42:43.752432 2026] [authz_core:error] [pid 3622358:tid 130566049486528] [client 45.43.166.13:42462] AH01630: client denied by server configuration: proxy:http://localhost:9091/ [Fri Jun 12 11:42:43.839815 2026] [authz_core:error] [pid 3622358:tid 130566057879232] [client 45.43.166.13:42462] AH01630: client denied by server configuration: proxy:http://localhost:9091/, referer: http://torrent.franvallejo.es [Fri Jun 12 11:42:43.910988 2026] [authz_core:error] [pid 3622358:tid 130566041093824] [client 45.43.166.13:42462] AH01630: client denied by server configuration: proxy:http://localhost:9091/ [Fri Jun 12 11:42:43.968207 2026] [authz_core:error] [pid 3622358:tid 130566032701120] [client 45.43.166.13:42462] AH01630: client denied by server configuration: proxy:http://localhost:9091/.git/HEAD [Fri Jun 12 11:42:44.033308 2026] [authz_core:error] [pid 3622358:tid 130566024308416] [client 45.43.166.13:42462] AH01630: client denied by server configuration: proxy:http://localho ... show less	Brute-Force SSH
🇳🇱 homeshowdomain.nl	2026-06-05 21:59:04 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-05	Web App Attack SSH Hacking
Anonymous	2026-06-05 20:06:14 (1 week ago)	Blocked: Reason='Suspicious traffic score=75 (review-based detection)'; Requests=122	Hacking
🇺🇸 mnsf	2026-06-05 20:06:02 (1 week ago)	Abuse Detected (2)	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-05 20:04:05 (1 week ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-195)	Hacking Web App Attack
🇫🇷 dynamix	2026-06-05 19:05:56 (1 week ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.29

🇮🇹 188.152.238.126

🇮🇳 103.159.180.102

🇷🇺 93.183.83.145

🇮🇷 78.109.200.147

🇮🇩 182.253.79.195

🇱🇹 81.30.98.44

🇦🇲 45.129.185.4

🇺🇸 44.215.6.24

🇺🇸 44.166.222.49

🇩🇪 8.211.25.159

🇳🇱 5.187.35.26

🇩🇪 217.154.1.156

🇺🇸 166.88.231.5

🇮🇩 163.7.11.155

🇫🇮 157.22.101.135

🇺🇸 147.185.132.134

🇺🇸 108.61.94.63

🇳🇱 91.92.40.10

🇱🇹 45.227.254.170