JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.95.243.151

45.95.243.151 was found in our database!

This IP was reported 126 times. Confidence of Abuse is 24%: ?

24%

ISP	VPN Consumer Vienna, Austria
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	vpnconsumer.com
Country	🇦🇹 Austria
City	Vienna, State of Vienna

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.95.243.151

Whois 45.95.243.151

IP Abuse Reports for 45.95.243.151:

This IP address has been reported a total of 126 times from 52 distinct sources. 45.95.243.151 was first reported on December 21st 2022, and the most recent report was 45 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Octopuce	2026-06-06 05:23:06 (45 minutes ago)	Aggressive web search of vulnerable pages: /update/ /wp-content/ /wp-admin/maint/ /themes/zMousse/ / ... show more Aggressive web search of vulnerable pages: /update/ /wp-content/ /wp-admin/maint/ /themes/zMousse/ /wp-content/plugins/ubh/ /wp-admin/images/ / ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-06 02:01:29 (4 hours ago)	45.95.243.151 - - [06/Jun/2026:05:01:28 +0300] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 404 478 "-" ... show more 45.95.243.151 - - [06/Jun/2026:05:01:28 +0300] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 404 478 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 45.95.243.151 - - [06/Jun/2026:05:01:28 +0300] "GET /wp-admin/css/colors/light/ HTTP/1.1" 404 478 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" ... show less	Web App Attack
🇯🇵 demonsword	2026-05-13 13:30:15 (3 weeks ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: cute-potato.com:80 show less	Open Proxy Port Scan
Anonymous	2026-05-04 12:00:14 (1 month ago)	[redacted] 45.95.243.151 - - [04/May/2026:13:55:54 +0200] "GET /wp-admin/chosen.php HTTP/1.1" 404 19 ... show more [redacted] 45.95.243.151 - - [04/May/2026:13:55:54 +0200] "GET /wp-admin/chosen.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" [redacted] 45.95.243.151 - - [04/May/2026:13:55:54 +0200] "GET /images/admin.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" [redacted] 45.95.243.151 - - [04/May/2026:13:55:54 +0200] "GET /db.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" [redacted] 45.95.243.151 - - [04/May/2026:13:55:55 +0200] "GET /wp-includes/admin.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" [redacted] 45.95.243.151 - - [04/May/2026:13:55:55 +0200] "GET /wp-admin/function.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, li ... show less	Hacking Web App Attack
🇯🇵 S.O.B.A. Dev.	2026-03-15 14:01:37 (2 months ago)	Web vulnerability scanning	Brute-Force Web Spam Web App Attack
🇩🇪 Skyrider	2026-03-05 05:07:46 (3 months ago)	crowdsecurity/http-probing	Hacking
🇸🇪 vaia.cloud	2026-03-03 05:03:09 (3 months ago)	trying wp-login.php/xmlrpc.php 262 times in 1 minutes	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-27 00:50:04 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 45.95.243.151 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.95.243.151 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 26 19:49:54.657782 2026] [security2:error] [pid 29389:tid 29407] [client 45.95.243.151:55121] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|siestakeybch.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "siestakeybch.com"] [uri "/bak/mysql.sql"] [unique_id "aaDqMh4A0Et6FNSFfmWwOQAAAY4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 COMPLEX	2026-02-12 10:36:47 (3 months ago)	Triggered Cloudflare WAF (firewallCustom) from AT. Action taken: MANAGED_CHALLENGE ASN: undefined (u ... show more Triggered Cloudflare WAF (firewallCustom) from AT. Action taken: MANAGED_CHALLENGE ASN: undefined (undefined) Protocol: HTTP/1.1 (GET method) Endpoint: /.well-known/acme-challenge/atomlib.php UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3 show less	Bad Web Bot
🇬🇧 openstrike.co.uk	2026-02-12 06:14:51 (3 months ago)	4 attacks on ACME URLs: GET /.well-known/acme-challenge/about.php HTTP/1.1	Web App Attack
🇬🇧 spamverify.com	2026-02-12 02:57:08 (3 months ago)	Honeypot Hit: Port Scan (80) HTTP	Web Spam Blog Spam Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-11 01:05:29 (3 months ago)	Too many Status 40X (12)	Brute-Force Web App Attack
🇺🇦 URAN Publishing Service	2026-02-10 00:18:58 (3 months ago)	45.95.243.151 - - [10/Feb/2026:02:18:57 +0200] "GET //wp-includes/js/index.php HTTP/1.1" 404 277 "-" ... show more 45.95.243.151 - - [10/Feb/2026:02:18:57 +0200] "GET //wp-includes/js/index.php HTTP/1.1" 404 277 "-" "Go-http-client/1.1" 45.95.243.151 - - [10/Feb/2026:02:18:57 +0200] "GET //wp-content/admin.php HTTP/1.1" 404 277 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇸 mnsf	2026-02-10 00:05:12 (3 months ago)	Too many Status 40X (11)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 19:50:56 (3 months ago)	(mod_security) mod_security (id:240000) triggered by 45.95.243.151 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240000) triggered by 45.95.243.151 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 14:50:49.528103 2026] [security2:error] [pid 19066:tid 19066] [client 45.95.243.151:58037] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|www.bhsp.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "www.bhsp.org"] [uri "/images/stories/themes.php"] [unique_id "aYo6mab6jjQsroe5ejKKxgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 126 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇴 190.181.27.27

🇳🇱 176.65.148.243

🇧🇷 152.250.40.116

🇺🇸 147.185.132.38

🇧🇪 104.199.42.126

🇵🇰 103.186.23.107

🇮🇷 94.74.176.42

🇺🇸 2604:a940:301:225:0:15::

🇧🇷 200.149.213.242

🇺🇸 199.231.163.19

🇯🇵 153.246.223.95

🇦🇷 128.254.190.217

🇮🇳 122.187.230.130

🇭🇰 43.99.73.86

🇺🇸 34.96.47.218

🇨🇳 218.21.37.250

🇰🇷 211.63.214.90

🇲🇽 209.178.159.59

🇧🇷 179.51.153.37

🇺🇸 162.216.149.168