JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.76.149.105

45.76.149.105 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 49%: ?

49%

ISP	Vultr Holdings, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS20473
Hostname(s)	45.76.149.105.vultrusercontent.com
Domain Name	vultr.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.76.149.105

Whois 45.76.149.105

IP Abuse Reports for 45.76.149.105:

This IP address has been reported a total of 35 times from 9 distinct sources. 45.76.149.105 was first reported on July 5th 2025, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-23 13:11:46 (22 hours ago)	(mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.c ... show more (mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 09:11:39.422430 2026] [security2:error] [pid 25359:tid 25359] [client 45.76.149.105:36502] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.nypatriotcards.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.nypatriotcards.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajqGC8oKXIhu-ejbQCXDkQAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-06-22 22:33:01 (1 day ago)		Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 22:32:22 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.c ... show more (mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 18:32:13.874961 2026] [security2:error] [pid 12672:tid 12672] [client 45.76.149.105:44802] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.hotpay.co\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.hotpay.co"] [uri "/wp-json/wp/v2/users"] [unique_id "ajm37bE5KK16OaQ0Z6vrQQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 00:35:25 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.c ... show more (mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 20:35:19.534043 2026] [security2:error] [pid 25600:tid 25600] [client 45.76.149.105:33230] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.wholesalelivelobsters.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.wholesalelivelobsters.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajcxx5sR91sUf1Cvo7fLUAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-06-20 22:31:03 (3 days ago)		Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 12:07:11 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.c ... show more (mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 08:07:06.063260 2026] [security2:error] [pid 25604:tid 25604] [client 45.76.149.105:58716] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.67ronin.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.67ronin.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajUw6vCvh448Y6L7wLuYlAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 00:45:18 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.c ... show more (mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 20:45:11.958523 2026] [security2:error] [pid 29016:tid 29016] [client 45.76.149.105:42522] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.hawaiireservations.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.hawaiireservations.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajSRF_vBMnBb1T8PiZgcOAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-18 20:46:39 (5 days ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-06-18 13:09:56 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.c ... show more (mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 09:09:50.040388 2026] [security2:error] [pid 9261:tid 9261] [client 45.76.149.105:52092] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|sharawi-gum.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sharawi-gum.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajPuHuv-64xCjlfsI3CM_wAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-17 07:14:35 (1 week ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 01:37:18 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.c ... show more (mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 21:37:14.424070 2026] [security2:error] [pid 10021:tid 10021] [client 45.76.149.105:59376] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.crep-psych.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.crep-psych.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajH6SqQz0euP0A-3P_wxfwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Mangelot Hosting	2026-06-16 13:22:31 (1 week ago)	(wp_login_try) srv102 WP Login Attempt 45.76.149.105 (SG/Singapore/45.76.149.105.vultrusercontent.co ... show more (wp_login_try) srv102 WP Login Attempt 45.76.149.105 (SG/Singapore/45.76.149.105.vultrusercontent.com): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 22:58:59 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.c ... show more (mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 18:58:53.630501 2026] [security2:error] [pid 12650:tid 12650] [client 45.76.149.105:52608] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.doctorbalog.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.doctorbalog.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajCDraS3ulQERPJSjYlboQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 19:31:12 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.c ... show more (mod_security) mod_security (id:225170) triggered by 45.76.149.105 (45.76.149.105.vultrusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 15:31:07.365496 2026] [security2:error] [pid 1316:tid 1316] [client 45.76.149.105:58696] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.thingstodonude.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.thingstodonude.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajBS-7RjPmzpznHU2L8VYgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 Dolphi	2026-06-15 07:00:08 (1 week ago)	Excessive POST /wp-login.php requests	Brute-Force Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 59.120.181.134

🇳🇱 45.198.224.233

🇨🇦 207.219.221.53

🇫🇮 178.20.210.152

🇳🇵 118.91.162.146

🇺🇸 91.230.168.141

🇩🇪 45.43.62.37

🇺🇸 18.116.101.220

🇩🇪 77.22.211.47

🇺🇸 74.114.28.219

🇺🇸 66.132.195.102

🇺🇸 66.132.195.33

🇨🇳 42.51.41.137

🇺🇸 35.86.96.217

🇹🇼 211.22.166.107

🇺🇦 194.42.205.100

🇨🇳 120.48.32.130

🇰🇷 115.91.48.142

🇬🇧 81.19.219.216

🇱🇹 77.90.185.78