JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.147.233.152

45.147.233.152 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.147.233.152

Whois 45.147.233.152

IP Abuse Reports for 45.147.233.152:

This IP address has been reported a total of 10 times from 9 distinct sources. 45.147.233.152 was first reported on August 27th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇭🇺 kranem	2026-04-03 06:00:31 (2 months ago)	Triggered Cloudflare WAF from US. Action taken: BLOCK ASN: 26548 (PUREVOLTAGE-INC - PureVoltage Host ... show more Triggered Cloudflare WAF from US. Action taken: BLOCK ASN: 26548 (PUREVOLTAGE-INC - PureVoltage Hosting Inc.) Protocol: HTTP/1.1 (GET method) Endpoint: /wp-login.php Timestamp: 2026-04-03T04:46:12Z User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 show less	Bad Web Bot
🇩🇪 John Chrys.	2026-04-01 21:58:49 (2 months ago)	45.147.233.152 - - [02/Apr/2026:00:55:27 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "curl/8.6.0 ... show more 45.147.233.152 - - [02/Apr/2026:00:55:27 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "curl/8.6.0" 45.147.233.152 - - [02/Apr/2026:00:55:28 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "curl/8.6.0" 45.147.233.152 - - [02/Apr/2026:00:55:29 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "Wget/1.21.4" 45.147.233.152 - - [02/Apr/2026:00:55:31 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "curl/7.88.1" 45.147.233.152 - - [02/Apr/2026:00:55:32 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "curl/7.88.1" 45.147.233.152 - - [02/Apr/2026:00:55:33 +0300] "POST /xmlrpc.php HTTP/1.1" 403 3448 "-" "Wget/1.21.4" ... show less	Brute-Force Web App Attack
🇺🇸 mind5t0rm	2026-03-17 11:43:12 (2 months ago)	(XMLRPC) WP XMLPRC Attack 45.147.233.152 (US/United States/-): 3 in the last 3600 secs; Ports: ; Di ... show more (XMLRPC) WP XMLPRC Attack 45.147.233.152 (US/United States/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 45.147.233.152 - - [17/Mar/2026:18:43:08 +0700] "POST /xmlrpc.php HTTP/2.0" 403 154 "-" "curl/7.88.1" 45.147.233.152 - - [17/Mar/2026:18:43:09 +0700] "POST /xmlrpc.php HTTP/2.0" 403 154 "-" "curl/7.88.1" 45.147.233.152 - - [17/Mar/2026:18:43:10 +0700] "POST /xmlrpc.php HTTP/2.0" 403 154 "-" "Wget/1.21.4" show less	Port Scan
Anonymous	2026-01-05 03:24:26 (5 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇨🇿 lp	2025-12-05 08:51:01 (6 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.147.233.152 2025-12-05T08:29:32+01 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.147.233.152 2025-12-05T08:29:32+01:00 vpn Access-Reject 'vwcat4' station: 45.147.233.152 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
Anonymous	2025-12-01 05:28:48 (6 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.12.01 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.12.01 is noted in report timestamp show less	Hacking Brute-Force
🇨🇿 lp	2025-11-30 22:23:23 (6 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.147.233.152 2025-11-30T22:30:13+01 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.147.233.152 2025-11-30T22:30:13+01:00 vpn Access-Reject 'ldebruin' station: 45.147.233.152 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇦 wil.com	2025-11-25 20:37:18 (6 months ago)	GlobalProtect login attempts with user hale.	VPN IP Brute-Force
🇺🇸 TPI-Abuse	2025-09-17 19:45:52 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 45.147.233.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 45.147.233.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 17 15:45:48.195639 2025] [security2:error] [pid 9996:tid 9996] [client 45.147.233.152:44575] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|allisonstiles.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "allisonstiles.org"] [uri "/gwnet/"] [unique_id "aMsP7IK-kjeH7Q4szHscegAAAA0"], referer: http://allisonstiles.org/gwnet/profile/jeffersonj show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-08-27 16:26:03 (9 months ago)	IM360 WAF: Attempt to upload malware	Hacking

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.34.131.182

🇩🇪 134.209.244.185

🇨🇳 49.52.5.53

🇳🇱 45.148.10.152

🇺🇸 45.79.104.47

🇨🇳 183.23.53.142

🇺🇸 172.190.89.127

🇸🇬 165.154.200.48

🇨🇳 101.126.129.179

🇮🇹 79.3.96.178

🇯🇵 43.165.190.208

🇧🇬 5.188.206.34

🇹🇼 198.235.24.107

🇬🇧 195.206.182.206

🇳🇱 193.176.31.151

🇭🇰 124.156.129.246

🇨🇳 106.75.144.202

🇮🇩 103.154.231.122

🇺🇦 93.170.188.86

🇳🇱 45.142.193.53