JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.86.202.166

45.86.202.166 was found in our database!

This IP was reported 325 times. Confidence of Abuse is 83%: ?

83%

ISP	VPN Consumer Frankfurt, Germany
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.86.202.166

Whois 45.86.202.166

IP Abuse Reports for 45.86.202.166:

This IP address has been reported a total of 325 times from 123 distinct sources. 45.86.202.166 was first reported on May 7th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-06-07 18:30:10 (1 day ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
🇩🇪 LRob.fr	2026-06-07 12:00:16 (1 day ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
Anonymous	2026-06-07 01:37:22 (2 days ago)	45.86.202.166 - - [07/Jun/2026:03:36:40 +0200] "GET /wp-content/languages/plugins.php HTTP/1.1" 404 ... show more 45.86.202.166 - - [07/Jun/2026:03:36:40 +0200] "GET /wp-content/languages/plugins.php HTTP/1.1" 404 495 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 45.86.202.166 - - [07/Jun/2026:03:36:40 +0200] "GET /shell.php HTTP/1.1" 404 495 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 45.86.202.166 - - [07/Jun/2026:03:36:40 +0200] "GET /wp-includes/Text/about.php HTTP/1.1" 404 495 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 45.86.202.166 - - [07/Jun/2026:03:36:40 +0200] "GET /wp-admin/network/atomlib.php HTTP/1.1" 404 495 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 45.86.202.166 - - [07/Jun/2026:03:36:40 +0200] "GET /hehe.php HTTP/1.1" 404 495 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 45.86.202.166 - - ... show less	DDoS Attack
🇺🇦 URAN Publishing Service	2026-06-06 22:56:17 (2 days ago)	45.86.202.166 - - [07/Jun/2026:01:56:16 +0300] "GET /wp-includes/js/tinymce/skins/lightgray/img/ HTT ... show more 45.86.202.166 - - [07/Jun/2026:01:56:16 +0300] "GET /wp-includes/js/tinymce/skins/lightgray/img/ HTTP/1.1" 404 706 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 45.86.202.166 - - [07/Jun/2026:01:56:16 +0300] "GET /wp-content/themes/twentytwentytwo/assets/fonts/ HTTP/1.1" 404 706 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" ... show less	Web App Attack
🇬🇧 consul.to	2026-06-06 08:49:42 (3 days ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 Site.eu	2026-06-06 08:11:47 (3 days ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-06-06 00:05:37 (3 days ago)	Blocked: Reason='Suspicious traffic score=75 (review-based detection)'; Requests=239	Hacking
🇫🇷 Octopuce	2026-06-05 23:41:30 (3 days ago)	Aggressive web search of vulnerable pages: /update/ /themes/zMousse/ /wp-content/plugins/ubh/ /wp-co ... show more Aggressive web search of vulnerable pages: /update/ /themes/zMousse/ /wp-content/plugins/ubh/ /wp-content/plugins/seoplugins/ /wp-content/theme ... show less	Web App Attack
🇬🇧 consul.to	2026-06-03 10:25:41 (6 days ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 interbiznw.com	2026-06-01 06:50:10 (1 week ago)	malicious-web-requests-vulnerability-scanning	Hacking Brute-Force Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-05-29 04:43:35 (1 week ago)	(mod_security) mod_security (id:240000) triggered by 45.86.202.166 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240000) triggered by 45.86.202.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 00:43:27.666422 2026] [security2:error] [pid 4249:tid 4249] [client 45.86.202.166:0] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "87"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|mail.cloudbursttechnologies.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "mail.cloudbursttechnologies.com"] [uri "/images/stories/themes.php"] [unique_id "ahkZb6Tw8OWDu3f8gkFgMAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇬 Cloudkul Cloudkul	2026-05-28 20:30:28 (1 week ago)	Attempted Brute Force on our application	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-23 06:54:25 (2 weeks ago)	(mod_security) mod_security (id:240000) triggered by 45.86.202.166 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240000) triggered by 45.86.202.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 23 02:54:20.493115 2026] [security2:error] [pid 5258:tid 5258] [client 45.86.202.166:34279] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|digitaltom.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "digitaltom.com"] [uri "/images/stories/themes.php"] [unique_id "ahFPHNI2P-TMQXyKrrhKyQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 A000Z	2026-05-22 04:27:07 (2 weeks ago)	Fail2Ban: 45.86.202.166 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5. ... show more Fail2Ban: 45.86.202.166 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36 show less	Bad Web Bot
🇳🇱 Site.eu	2026-05-06 02:35:41 (1 month ago)	Excessive multi-domain requests	Brute-Force

Showing 1 to 15 of 325 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇿 145.249.227.150

🇱🇹 141.98.11.117

🇮🇹 89.46.70.20

🇺🇸 2607:f8b0:4001:c6a::12b

🇰🇷 222.239.251.12

🇱🇦 183.182.111.93

🇭🇰 165.154.60.76

🇯🇲 104.244.231.108

🇬🇧 87.236.176.204

🇷🇴 80.94.92.186

🇺🇸 69.164.212.60

🇳🇱 45.148.10.147

🇷🇺 45.147.179.48

🇸🇬 43.159.48.91

🇨🇴 38.156.13.6

🇬🇧 35.203.211.99

🇦🇺 34.151.167.11

🇩🇪 2a0e:7b84:4f45:b250:259e:d951:4c67:35c8

🇧🇷 205.210.31.195

🇻🇳 160.191.54.23