JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.95.243.117

45.95.243.117 was found in our database!

This IP was reported 125 times. Confidence of Abuse is 31%: ?

31%

ISP	VPN Consumer Vienna, Austria
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	vpnconsumer.com
Country	🇦🇹 Austria
City	Vienna, State of Vienna

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.95.243.117

Whois 45.95.243.117

IP Abuse Reports for 45.95.243.117:

This IP address has been reported a total of 125 times from 47 distinct sources. 45.95.243.117 was first reported on January 11th 2023, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Octopuce	2026-06-06 06:11:09 (2 days ago)	Aggressive web search of vulnerable pages: /wp-includes/IXR/ /wp-includes/widgets/ /wp-includes/imag ... show more Aggressive web search of vulnerable pages: /wp-includes/IXR/ /wp-includes/widgets/ /wp-includes/images/smilies/ /wp-includes/js/crop/ /wp-inclu ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-06 02:02:55 (2 days ago)	45.95.243.117 - - [06/Jun/2026:05:02:55 +0300] "GET /wp-includes/Text/Diff/Engine/ HTTP/1.1" 404 478 ... show more 45.95.243.117 - - [06/Jun/2026:05:02:55 +0300] "GET /wp-includes/Text/Diff/Engine/ HTTP/1.1" 404 478 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 45.95.243.117 - - [06/Jun/2026:05:02:55 +0300] "GET /wp-admin/css/colors/coffee/ HTTP/1.1" 404 478 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" ... show less	Web App Attack
🇬🇧 consul.to	2026-06-05 21:02:00 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 maxxsense	2026-05-26 12:42:12 (1 week ago)	(wordpress) Failed wordpress login from 45.95.243.117 (AT/Austria/-)	Brute-Force
🇯🇵 S.O.B.A. Dev.	2026-04-19 20:47:45 (1 month ago)	Web vulnerability scanning	Brute-Force Web Spam Web App Attack
🇳🇱 Savvii	2026-03-30 02:16:21 (2 months ago)	10 attempts against mh-misc-ban on eris	Web App Attack
🇩🇪 bryth	2026-03-05 02:12:49 (3 months ago)	Wordpress login/xmlrpc abuse (Thu Mar 5 01:59:26 AM UTC 2026)	Hacking Web App Attack
🇦🇺 nzhost.co.nz	2026-03-05 01:04:12 (3 months ago)	$f2bV_matches	Hacking Brute-Force
🇸🇪 vaia.cloud	2026-03-03 05:03:13 (3 months ago)	trying wp-login.php/xmlrpc.php 126 times in 1 minutes	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-27 00:50:06 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 45.95.243.117 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.95.243.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 26 19:49:55.872656 2026] [security2:error] [pid 7558:tid 7733] [client 45.95.243.117:52323] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|siestakeybch.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "siestakeybch.com"] [uri "/sql.sql"] [unique_id "aaDqM8Lffs5P_XPShJaLvQAAAIA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 07:35:36 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 45.95.243.117 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.95.243.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 02:35:32.079497 2026] [security2:error] [pid 27133:tid 27133] [client 45.95.243.117:52949] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|phantomquailkennel.com\|F\|2"] [data ".dat"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "phantomquailkennel.com"] [uri "/back/wallet.dat"] [unique_id "aY2CxN9WwJdT3k2LELAmAwAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-02-12 03:21:11 (3 months ago)	Excessive 404/403 errors	Brute-Force
🇬🇧 spamverify.com	2026-02-12 02:56:50 (3 months ago)	Honeypot Hit: Port Scan (80) HTTP	Web Spam Blog Spam Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-02-12 00:29:54 (3 months ago)	224 requests with url.path /.well-known/acme-challenge/.php 204 requests with url.path /.well-k ... show more 224 requests with url.path /.well-known/acme-challenge/.php 204 requests with url.path /.well-known/pki-validation/*.php show less	Brute-Force Bad Web Bot
🇺🇦 URAN Publishing Service	2026-02-10 00:19:52 (3 months ago)	45.95.243.117 - - [10/Feb/2026:02:19:16 +0200] "GET //wp-content/plugins/advanced-llms-txt-generator ... show more 45.95.243.117 - - [10/Feb/2026:02:19:16 +0200] "GET //wp-content/plugins/advanced-llms-txt-generator/assets/css/css_json.php HTTP/1.1" 404 277 "-" "Go-http-client/1.1" 45.95.243.117 - - [10/Feb/2026:02:19:51 +0200] "GET //wp-content/themes/admin.php HTTP/1.1" 404 277 "-" "Go-http-client/1.1" ... show less	Web App Attack

Showing 1 to 15 of 125 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.11.111.141

🇬🇧 217.154.38.181

🇳🇱 159.223.213.49

🇧🇷 131.108.162.24

🇨🇳 103.91.208.101

🇮🇩 103.41.247.76

🇳🇱 88.210.63.126

🇩🇪 34.185.227.51

🇷🇺 2a0b:7ec0:1320:2::f8

🇺🇸 2a04:c603:409:91:9999::134

🇦🇪 152.32.180.138

🇷🇺 94.251.5.51

🇫🇷 91.231.89.67

🇧🇪 87.65.220.82

🇷🇴 80.94.95.242

🇬🇧 78.153.140.43

🇫🇷 51.159.149.103

🇩🇪 213.209.159.56

🇸🇬 138.2.98.41

🇦🇺 104.194.135.103