JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.92.229.189

45.92.229.189 was found in our database!

This IP was reported 209 times. Confidence of Abuse is 96%: ?

96%

ISP	VPN Consumer New York City, United States of America
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.92.229.189

Whois 45.92.229.189

IP Abuse Reports for 45.92.229.189:

This IP address has been reported a total of 209 times from 96 distinct sources. 45.92.229.189 was first reported on November 5th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2024-01-07 18:58:22 (2 years ago)	WordPress admin/config access attempt: 45.92.229.189 - - [07/Jan/2024:18:58:22 +0000] "GET /wp-admi ... show more WordPress admin/config access attempt: 45.92.229.189 - - [07/Jan/2024:18:58:22 +0000] "GET /wp-admin/shell20211028.php HTTP/1.1" 200 234 "http://[sub domain]//wp-admin/shell20211028.php" "Go-http-client/1.1" show less	Hacking Web App Attack
🇫🇮 Christopher Hughes	2024-01-07 16:20:38 (2 years ago)	[Sun Jan 07 16:20:37.640775 2024] [proxy_fcgi:error] [pid 3124597:tid 140297472284224] [client 45.92 ... show more [Sun Jan 07 16:20:37.640775 2024] [proxy_fcgi:error] [pid 3124597:tid 140297472284224] [client 45.92.229.189:61775] AH01071: Got error 'Primary script unknown' [Sun Jan 07 16:20:38.013309 2024] [proxy_fcgi:error] [pid 3124597:tid 140298025940544] [client 45.92.229.189:61775] AH01071: Got error 'Primary script unknown' [Sun Jan 07 16:20:38.381262 2024] [proxy_fcgi:error] [pid 3124597:tid 140297522640448] [client 45.92.229.189:61775] AH01071: Got error 'Primary script unknown' [Sun Jan 07 16:20:38.564788 2024] [proxy_fcgi:error] [pid 3124597:tid 140298051118656] [client 45.92.229.189:61775] AH01071: Got error 'Primary script unknown' [Sun Jan 07 16:20:38.748857 2024] [proxy_fcgi:error] [pid 3124597:tid 140297505855040] [client 45.92.229.189:61775] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
🇩🇪 Mr-Money	2024-01-07 14:45:22 (2 years ago)	45.92.229.189 - - [07/Jan/2024:15:45:21 +0100] "GET /wp-content/plugins/Cache/dropdown.php HTTP/2.0" ... show more 45.92.229.189 - - [07/Jan/2024:15:45:21 +0100] "GET /wp-content/plugins/Cache/dropdown.php HTTP/2.0" 404 70685 "http://www.versicherungsvergleich.versicherung/wp-content/plugins/Cache/dropdown.php" "Go-http-client/2.0" ... show less	Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
Anonymous	2024-01-06 21:07:02 (2 years ago)	WordPress plugin direct access attempt: 45.92.229.189 - - [06/Jan/2024:21:07:02 +0000] "GET /wp-con ... show more WordPress plugin direct access attempt: 45.92.229.189 - - [06/Jan/2024:21:07:02 +0000] "GET /wp-content/plugins/dzs-zoomsounds/1877.php HTTP/1.1" 200 234 "http://bestlineofdefence.net//wp-content/plugins/dzs-zoomsounds/1877.php" "Go-http-client/1.1" show less	Hacking Web App Attack
Anonymous	2024-01-06 14:27:18 (2 years ago)	[14:27:18] 0*: Scanning for exploits - /pi.php	Web App Attack
Anonymous	2024-01-05 17:23:52 (2 years ago)	Malicious activity detected Bot disrespecting robots.txt	Bad Web Bot
🇩🇪 ps-center	2024-01-05 01:59:40 (2 years ago)	C1: Web Attack GET //wp-content/plugins/instabuilder2/cache/plugins/moon.php	Web Spam Hacking Bad Web Bot Web App Attack
Anonymous	2024-01-05 01:29:56 (2 years ago)	scanning for potential vulnerable apps (wordpress etc.) and database accesses. Requested URI: /byp.p ... show more scanning for potential vulnerable apps (wordpress etc.) and database accesses. Requested URI: /byp.php show less	Web App Attack
🇩🇪 ps-center	2024-01-04 15:29:09 (2 years ago)	MYH: Web Attack GET //shell.php	Web Spam Hacking Bad Web Bot Web App Attack
🇩🇪 _ArminS_	2023-12-28 02:23:21 (2 years ago)	SP-Scan 53495:3389 detected 2023.12.28 03:23:21 blocked until 2024.02.15 20:26:08	Port Scan
🇺🇸 TPI-Abuse	2023-12-17 15:01:09 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 45.92.229.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.92.229.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 17 10:01:03.744486 2023] [security2:error] [pid 23976] [client 45.92.229.189:37655] [client 45.92.229.189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "savingspools.com"] [uri "/.env"] [unique_id "ZX8NL0o1tQPj-m4--ZqQvAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2023-12-17 10:32:10 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 45.92.229.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.92.229.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 17 05:32:04.949032 2023] [security2:error] [pid 13222] [client 45.92.229.189:2227] [client 45.92.229.189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fatcaverecords.com"] [uri "/.env"] [unique_id "ZX7OJFNc8e8pRcyBcOxrVgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2023-12-17 07:43:55 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 45.92.229.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.92.229.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 17 02:43:49.135946 2023] [security2:error] [pid 23643] [client 45.92.229.189:16391] [client 45.92.229.189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thenewplantation.org"] [uri "/.env"] [unique_id "ZX6mtcgwznt0sMlUGwSxnwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2023-12-17 07:11:07 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 45.92.229.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.92.229.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 17 02:11:05.058180 2023] [security2:error] [pid 1589] [client 45.92.229.189:53179] [client 45.92.229.189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bikiniadvice.com"] [uri "/.env"] [unique_id "ZX6fCf5TKSfKglCrCvbujQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2023-12-17 05:07:49 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 45.92.229.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.92.229.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 17 00:07:44.140536 2023] [security2:error] [pid 20195] [client 45.92.229.189:14115] [client 45.92.229.189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dianedanielsmanning.com"] [uri "/.env"] [unique_id "ZX6CICXs1wkJhWFhKvFT8wAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 181 to 195 of 209 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 217.216.59.228

🇧🇪 198.235.24.171

🇷🇴 93.114.194.159

🇰🇷 58.224.62.29

🇺🇦 31.42.184.158

🇺🇸 216.133.145.160

🇰🇷 211.106.54.198

🇺🇸 174.35.25.177

🇩🇪 167.94.146.45

🇩🇪 162.158.110.64

🇺🇸 147.185.132.231

🇺🇸 136.109.198.118

🇱🇹 45.227.254.170

🇳🇱 45.148.10.151

🇮🇩 36.78.97.156

🇺🇸 216.25.89.122

🇹🇼 198.235.24.116

🇨🇳 180.105.9.136

🇺🇸 172.96.182.111

🇩🇪 167.94.146.50