JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.8.68.196

45.8.68.196 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 32%: ?

32%

ISP	VPN Consumer Berlin, Germany
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.8.68.196

Whois 45.8.68.196

IP Abuse Reports for 45.8.68.196:

This IP address has been reported a total of 10 times from 8 distinct sources. 45.8.68.196 was first reported on May 3rd 2026, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 BlueWire Hosting	2026-06-23 12:15:32 (13 hours ago)	Bad bot ignoring robot.txt	Bad Web Bot
Anonymous	2026-06-23 10:44:39 (14 hours ago)	"GET /wp-content/plugins/wp-cache-sys/index.php HTTP/1.1"	Hacking Web App Attack
🇩🇪 pltcldvlpr	2026-06-17 05:26:45 (6 days ago)	CMS/framework probe: 45.8.68.196 - - [17/Jun/2026:07:26:44 +0200] "GET /wp-includes/woocommerce-call ... show more CMS/framework probe: 45.8.68.196 - - [17/Jun/2026:07:26:44 +0200] "GET /wp-includes/woocommerce-call.php HTTP/1.1" 301 178 "-" "Go-http-client/1.1" asn=206092 org="F.N.S. HOLDINGS LIMITED" country=DE ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-07 10:44:13 (1 month ago)	(mod_security) mod_security (id:234930) triggered by 45.8.68.196 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:234930) triggered by 45.8.68.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 06:44:06.912468 2026] [security2:error] [pid 14374:tid 14374] [client 45.8.68.196:46783] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/lib\\\\/php\\\\/connector\\\\.minimal\\\\.php$" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6778"] [id "234930"] [rev "2"] [msg "COMODO WAF: File upload vulnerability in the file manager plugin before 6.9 for WordPress (CVE-2020-25213)\|\|www.ccbank.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "www.ccbank.net"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "afxs9rGCE5qRG90GcyUmPAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-05-07 10:00:05 (1 month ago)	45.8.68.196 - - [07/May/2026:13:00:03 +0300] "GET /wp-content/themes/theme-check/theme-check.php HTT ... show more 45.8.68.196 - - [07/May/2026:13:00:03 +0300] "GET /wp-content/themes/theme-check/theme-check.php HTTP/1.1" 404 710 "-" "Go-http-client/1.1" 45.8.68.196 - - [07/May/2026:13:00:04 +0300] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 404 710 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇸 mnsf	2026-05-06 22:05:53 (1 month ago)	Too many Status 40X (12)	Brute-Force Web App Attack
🇳🇱 WinnieHoneypots	2026-05-04 15:48:27 (1 month ago)	Aggressive web scan	Port Scan Bad Web Bot Web App Attack
🇫🇷 Octopuce	2026-05-04 01:41:19 (1 month ago)	Aggressive web search of vulnerable pages: /wp-content/plugins/shell/noimg.php /wp-content/plugins/p ... show more Aggressive web search of vulnerable pages: /wp-content/plugins/shell/noimg.php /wp-content/plugins/pwnd-2/pwnd.php /wp-content/plugins/schema/y ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-03 23:12:10 (1 month ago)	(mod_security) mod_security (id:234930) triggered by 45.8.68.196 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:234930) triggered by 45.8.68.196 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 03 19:12:02.777953 2026] [security2:error] [pid 18552:tid 18552] [client 45.8.68.196:64393] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/lib\\\\/php\\\\/connector\\\\.minimal\\\\.php$" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6778"] [id "234930"] [rev "2"] [msg "COMODO WAF: File upload vulnerability in the file manager plugin before 6.9 for WordPress (CVE-2020-25213)\|\|www.crypto-stamps.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "www.crypto-stamps.com"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "affWQrsChOQJdMKCgyl5zwAAAAM"], referer: http://bitcoincollection.org/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-05-03 22:05:54 (1 month ago)	Too many Status 40X (11)	Brute-Force Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 207.180.233.231

🇺🇸 195.184.76.133

🇨🇳 113.206.176.42

🇺🇸 64.62.156.103

🇳🇱 31.42.176.142

🇺🇸 2607:f8b0:4001:c61::12e

🇮🇩 182.253.64.11

🇨🇳 180.76.244.13

🇺🇸 147.185.132.22

🇨🇳 123.113.15.74

🇵🇭 122.3.16.99

🇨🇳 112.86.225.200

🇺🇸 104.243.42.167

🇳🇱 93.174.93.12

🇺🇸 66.132.224.16

🇸🇬 47.128.33.191

🇭🇰 45.142.154.32

🇺🇸 45.130.83.15

🇨🇳 27.19.217.68

🇩🇪 18.184.24.22