JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.147.232.214

45.147.232.214 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 11%: ?

11%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.147.232.214

Whois 45.147.232.214

IP Abuse Reports for 45.147.232.214:

This IP address has been reported a total of 12 times from 11 distinct sources. 45.147.232.214 was first reported on June 25th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-05-19 06:57:00 (2 weeks ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇦🇺 MAGIC	2026-05-15 05:15:34 (3 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇨🇭 backslash	2026-04-17 00:42:03 (1 month ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇩🇪 Spiderpiggy	2026-04-09 03:16:05 (1 month ago)	Automatically reported via Blackhole honeypot on games4you.be. Attempted access to restricted endpoi ... show more Automatically reported via Blackhole honeypot on games4you.be. Attempted access to restricted endpoint: /xmlrpc.php show less	Brute-Force Bad Web Bot SSH
Anonymous	2026-04-05 00:50:30 (2 months ago)	"POST /xmlrpc.php HTTP/1.1"	Hacking Web App Attack
🇪🇸 el-brujo	2026-02-24 12:10:47 (3 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWe ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWebKit/534.34 (KHTML, like Gecko111) Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: POST Timestamp: 2026-02-24T12:10:47Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 island-freaks.com	2026-02-19 23:58:29 (3 months ago)	Attack Type: WordPress Exploit Bot attempt on /xmlrpc.php \| DNS 45.147.232.214 \| Agent: AppleWebKit/ ... show more Attack Type: WordPress Exploit Bot attempt on /xmlrpc.php \| DNS 45.147.232.214 \| Agent: AppleWebKit/532.32 (KHTML, like Gecko111) show less	Port Scan Hacking Bad Web Bot Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2025-12-23 17:59:39 (5 months ago)	(mod_security) mod_security (id:210350) triggered by 45.147.232.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 45.147.232.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 23 12:59:32.136074 2025] [security2:error] [pid 11200:tid 11200] [client 45.147.232.214:37447] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|goglobex.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "goglobex.com"] [uri "/"] [unique_id "aUrYhDSyP8ph7oD5C0ghXwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2025-12-23 11:07:02 (5 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 45.147.232.214 (US/United States/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 45.147.232.214 (US/United States/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇺🇸 fbarela	2025-11-11 10:00:44 (6 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇺🇸 xmission.com	2025-08-26 18:10:11 (9 months ago)	45.147.232.214 - - [26/Aug/2025:12:10:11 -0600] "POST /wp-login.php HTTP/1.1" 200 2334 "https://dooc ... show more 45.147.232.214 - - [26/Aug/2025:12:10:11 -0600] "POST /wp-login.php HTTP/1.1" 200 2334 "https://dooce.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36 Edg/115.0.1901.203" ... show less	Brute-Force
Anonymous	2025-06-25 12:09:00 (11 months ago)	Message meets Alert condition The following critical firewall event was detected: SSL VPN login fai ... show more Message meets Alert condition The following critical firewall event was detected: SSL VPN login fail. date=2025-06-24 time=17:07:02 devname=FortiGate-200F devid=FG200FT922906136 eventtime=1750802822082055804 tz="-0500" logid="0101039426" type="event" subtype="vpn" level="alert" vd="root" logdesc="SSL VPN login fail" action="ssl-login-fail" tunneltype="ssl-web" tunnelid=0 remip=45.147.232.214 srccountry="United States" user="temp" group="N/A" dst_host="N/A" reason="sslvpn_login_unknown_user" msg="SSL user failed to logged in" show less	VPN IP

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 185.247.137.66

🇨🇳 115.190.151.242

🇷🇺 81.177.101.45

🇬🇧 45.89.63.39

🇺🇸 45.33.14.5

🇿🇦 173.194.171.221

🇺🇸 142.93.207.16

🇫🇷 104.28.164.250

🇳🇱 93.174.95.106

🇩🇪 64.89.163.164

🇮🇪 54.78.41.240

🇸🇬 47.128.55.56

🇳🇱 45.148.10.152

🇦🇹 45.137.172.116

🇺🇸 45.130.83.75

🇺🇸 43.166.245.172

🇸🇬 43.163.90.141

🇺🇸 17.246.23.249

🇯🇵 8.216.47.210

🇺🇸 2607:f8b0:4001:c56::124