JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 165.245.185.54

165.245.185.54 was found in our database!

This IP was reported 163 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 165.245.185.54

Whois 165.245.185.54

IP Abuse Reports for 165.245.185.54:

This IP address has been reported a total of 163 times from 70 distinct sources. 165.245.185.54 was first reported on May 19th 2026, and the most recent report was 12 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tecnicorioja	2026-06-11 22:01:33 (12 minutes ago)	wp-login attack [11/Jun/2026:07:33:55	Brute-Force Web App Attack
🇺🇸 ambor	2026-06-11 20:26:24 (1 hour ago)	Honeypot triggered on tcpdata.com - Attempted to access /wp-login.php (wordpress_login). User-Agent: ... show more Honeypot triggered on tcpdata.com - Attempted to access /wp-login.php (wordpress_login). User-Agent: Mozilla/5.0 (X11; Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 show less	Web App Attack
Anonymous	2026-06-11 20:15:22 (1 hour ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇩🇪 FeG Deutschland	2026-06-11 19:15:53 (2 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack
🇺🇸 factor1	2026-06-11 18:22:41 (3 hours ago)	Fail2ban at saturn Reports Abuse.	Brute-Force Web App Attack
🇩🇪 london2038.com	2026-06-11 17:26:44 (4 hours ago)	Attacking WordPress 165.245.185.54 - - [11/Jun/2026:19:26:42 +0200] "POST /wp-login.php HTTP/2.0" 50 ... show more Attacking WordPress 165.245.185.54 - - [11/Jun/2026:19:26:42 +0200] "POST /wp-login.php HTTP/2.0" 503 19291 "https://<REDACTED>/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" show less	Brute-Force Web App Attack
🇫🇷 LRob.fr	2026-06-11 16:30:03 (5 hours ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇩🇪 F242	2026-06-11 16:14:05 (5 hours ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇲🇹 Malta	2026-06-11 15:57:44 (6 hours ago)	165.245.185.54 - - [11/Jun/2026:17:57:43 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 165.245.185.54 - - [11/Jun/2026:17:57:43 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇵🇱 bmino.pl	2026-06-11 15:31:42 (6 hours ago)	Autoban IP(2): 165.245.185.54 - Hostname: DigitalOcean, LLC - City: Singapore - Region: South West - ... show more Autoban IP(2): 165.245.185.54 - Hostname: DigitalOcean, LLC - City: Singapore - Region: South West - Country: Singapore - Location: 1.32123,103.695 - Organization: DigitalOcean, LLC - failed attempts. show less	Web App Attack
🇪🇸 masterguru	2026-06-11 12:42:38 (9 hours ago)	(wplogin) Failed WordPress login from 165.245.185.54 (SG/Singapore/-): 5 in the last 3600 secs (0-12 ... show more (wplogin) Failed WordPress login from 165.245.185.54 (SG/Singapore/-): 5 in the last 3600 secs (0-122) show less	Hacking
🇺🇸 TAY	2026-06-11 11:27:36 (10 hours ago)	165.245.185.54 - - [11/Jun/2026:19:25:39 +0800] "POST /wp-login.php HTTP/1.1" 200 2676 "https://litt ... show more 165.245.185.54 - - [11/Jun/2026:19:25:39 +0800] "POST /wp-login.php HTTP/1.1" 200 2676 "https://littleprairie.com.my/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 165.245.185.54 - - [11/Jun/2026:19:26:10 +0800] "POST /wp-login.php HTTP/1.1" 200 2979 "https://mail.autism-cvc.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 165.245.185.54 - - [11/Jun/2026:19:27:36 +0800] "POST /wp-login.php HTTP/1.1" 200 2978 "https://mail.autism-cvc.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Brute-Force
🇩🇪 4server	2026-06-11 11:27:27 (10 hours ago)	[ThuJun1113:27:23.1421522026][security2:error][pid1948616:tid1948684][client165.245.185.54:0]ModSecu ... show more [ThuJun1113:27:23.1421522026][security2:error][pid1948616:tid1948684][client165.245.185.54:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"mgevents.ch\"][uri\"/wp-login.php\"][unique_id\"aiqbm9tdK-st41fxfhfECAAAAEo\"]\,referer:https://mgevents.ch/wp-login.php show less	Port Scan Brute-Force Web App Attack
🇲🇾 Rizzy	2026-06-11 10:36:26 (11 hours ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇳🇱 tmiland	2026-06-11 09:37:18 (12 hours ago)	(wordpress_login) WordPress Login Attack 165.245.185.54 (SG/Singapore/-): 3 in the last 3600 secs; I ... show more (wordpress_login) WordPress Login Attack 165.245.185.54 (SG/Singapore/-): 3 in the last 3600 secs; IP: 165.245.185.54; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 165.245.185.54 - - [11/Jun/2026:11:37:14 +0200] "GET /wp-login.php HTTP/1.1" 200 1936 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 165.245.185.54 - - [11/Jun/2026:11:37:15 +0200] "GET /wp-login.php HTTP/1.1" 200 1936 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 165.245.185.54 - - [11/Jun/2026:11:37:16 +0200] "POST /wp-login.php HTTP/1.1" 200 2069 "https://.*/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Brute-Force

Showing 1 to 15 of 163 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2620:171:fe:f0:9999::243

🇸🇪 185.246.128.133

🇧🇷 168.196.144.234

🇺🇸 150.107.38.131

🇬🇧 35.203.211.53

🇳🇱 176.65.139.254

🇫🇷 173.212.228.191

🇺🇸 162.216.149.234

🇵🇪 149.34.48.186

🇺🇸 140.82.3.231

🇫🇷 88.161.32.239

🇨🇦 85.217.149.34

🇨🇭 20.203.156.168

🇹🇼 198.235.24.116

🇸🇪 195.178.191.5

🇸🇬 148.66.142.37

🇰🇷 118.218.219.250

🇬🇧 51.89.192.92

🇭🇰 47.242.77.133

🇳🇱 45.148.10.147