JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 145.223.55.163

145.223.55.163 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 0%: ?

ISP	Brander Group Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS29802
Domain Name	brandergroup.net
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 145.223.55.163

Whois 145.223.55.163

IP Abuse Reports for 145.223.55.163:

This IP address has been reported a total of 10 times from 4 distinct sources. 145.223.55.163 was first reported on June 1st 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Hiigara	2026-03-29 08:00:59 (2 months ago)	connection attempt : 145.223.55.163 on port : tcp/8080 (HTTP-alt)	Port Scan
🇺🇸 TPI-Abuse	2026-02-01 11:52:34 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 06:52:28.143062 2026] [security2:error] [pid 16720:tid 16856] [client 145.223.55.163:49181] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htpasswd" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.kettlehill.com"] [uri "/.htpasswd"] [unique_id "aX8-fHgN2ebRaezbXtJJlgAAAVc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-01 06:16:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 01:16:50.744124 2025] [security2:error] [pid 8488:tid 8561] [client 145.223.55.163:37999] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettlehill.com"] [uri "/api/.env"] [unique_id "aS0y0tZHHfu_5jcVG6pkzAAAAYY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-29 01:12:09 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Oct 28 21:12:03.779233 2025] [security2:error] [pid 10301:tid 10301] [client 145.223.55.163:38387] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mail.nbcnewsradio.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.nbcnewsradio.com"] [uri "/admin/error.log"] [unique_id "aQFp43C9GCKlCBf3iazpHgAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-01 15:02:55 (8 months ago)	(mod_security) mod_security (id:210492) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 01 11:02:46.182429 2025] [security2:error] [pid 9487:tid 9518] [client 145.223.55.163:53287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettlehill.com"] [uri "/wp-config.php.save"] [unique_id "aN1ClkvyOqnYEaX7Ie4a4wAAAMk"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇬 raramos	2025-08-07 19:00:07 (10 months ago)	[SMB remote code execution attempt: port tcp/445] in blocklist.de:'listed [pop3]' in SpamCop:'listed ... show more [SMB remote code execution attempt: port tcp/445] in blocklist.de:'listed [pop3]' in SpamCop:'listed' in sorbs:'listed [web], [spam]' in Unsubscore:'listed' *(RWIN=8192)(04:10) show less	Web Spam Email Spam Port Scan Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-08-05 23:39:22 (10 months ago)	(mod_security) mod_security (id:210730) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 05 19:39:18.453658 2025] [security2:error] [pid 3062:tid 3062] [client 145.223.55.163:44825] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.nbcnewsradio.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.nbcnewsradio.com"] [uri "/..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\windows\\\\win.ini"] [unique_id "aJKWJq9o9pQjs92DRR64iwAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-01 06:43:28 (10 months ago)	(mod_security) mod_security (id:210730) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 01 02:43:21.951716 2025] [security2:error] [pid 3331447:tid 3331451] [client 145.223.55.163:58557] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kettlehill.net\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kettlehill.net"] [uri "/kettlehill.db"] [unique_id "aIxiCVSZjg6lcpTf51ZdFAAAAYA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-06-01 16:10:04 (1 year ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-06-01 06:55:54 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 145.223.55.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 01 02:55:48.826095 2025] [security2:error] [pid 2762044:tid 2762050] [client 145.223.55.163:33855] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.kettlehill.net"] [uri "/wp-config.php.bak"] [unique_id "aDv5dAlM7g4oxUkvwMwElQAAAMQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 171.244.39.95

🇷🇺 128.1.46.183

🇮🇹 209.227.244.120

🇺🇸 207.90.244.19

🇧🇷 205.210.31.171

🇳🇱 195.178.110.30

🇧🇷 177.92.162.244

🇰🇷 175.206.1.60

🇮🇩 103.147.237.208

🇮🇹 93.92.72.143

🇺🇸 74.208.140.41

🇱🇹 62.60.130.210

🇳🇱 45.156.87.34

🇳🇱 45.148.10.141

🇨🇦 35.183.130.230

🇦🇺 34.40.140.149

🇮🇪 3.253.43.227

🇪🇸 213.60.255.181

🇨🇴 186.31.95.163

🇨🇳 175.12.108.55