JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.147.234.209

45.147.234.209 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.147.234.209

Whois 45.147.234.209

IP Abuse Reports for 45.147.234.209:

This IP address has been reported a total of 11 times from 8 distinct sources. 45.147.234.209 was first reported on June 2nd 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-27 08:49:33 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 45.147.234.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.147.234.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 27 04:49:27.346898 2026] [security2:error] [pid 1452:tid 1452] [client 45.147.234.209:12997] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|eye7graphics.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "eye7graphics.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ae8jFxMRjHX8LbTH-pwqiAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-24 22:41:37 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 45.147.234.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.147.234.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 24 18:41:31.327159 2026] [security2:error] [pid 6576:tid 6576] [client 45.147.234.209:33377] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|zackfranz.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "zackfranz.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aevxm2IkVD8habGRBzYQWwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-16 01:51:14 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.147.234.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.147.234.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 15 21:51:09.364134 2026] [security2:error] [pid 2259331:tid 2259331] [client 45.147.234.209:43171] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Kendall 4733/Thumbs.db"] [unique_id "aeBAjVhbB1zYYgkz9DZX-QAAABI"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Kendall%204733/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 HandyTreff.de	2026-03-16 08:02:22 (2 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -46.373 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -46.373 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.2659.4 show less	Web App Attack Bad Web Bot
🇨🇭 backslash	2026-02-27 03:33:01 (3 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇺🇸 nodepile	2026-02-11 05:53:19 (3 months ago)	Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/orion-v2-led-angel-eyes-rings-only ... show more Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/orion-v2-led-angel-eyes-rings-only-p-5986.html ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.3132.1 Safari/537.36') show less	Open Proxy VPN IP
🇮🇩 BPS-StatisticsIndonesia	2026-01-01 03:38:05 (5 months ago)	WP Login Scan Activities	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-12-31 22:53:53 (5 months ago)	WP Login Scan Activities	Web App Attack
🇲🇹 Malta	2025-12-31 11:33:26 (5 months ago)	45.147.234.209 - - [31/Dec/2025:12:33:26 +0100] "GET /wp-json/wp/v2/users HTTP/1.1" "Mozilla/5.0 (X1 ... show more 45.147.234.209 - - [31/Dec/2025:12:33:26 +0100] "GET /wp-json/wp/v2/users HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	VPN IP Hacking Web App Attack
🇨🇦 wil.com	2025-11-26 05:40:22 (6 months ago)	GlobalProtect login attempts with user destinymartin.	VPN IP Brute-Force
Anonymous	2025-06-02 11:54:00 (1 year ago)	Message meets Alert condition The following critical firewall event was detected: SSL VPN login fai ... show more Message meets Alert condition The following critical firewall event was detected: SSL VPN login fail. date=2025-05-31 time=19:21:08 devname=FortiGate-200F devid=FG200FT922906136 eventtime=1748737268558139211 tz="-0500" logid="0101039426" type="event" subtype="vpn" level="alert" vd="root" logdesc="SSL VPN login fail" action="ssl-login-fail" tunneltype="ssl-web" tunnelid=0 remip=45.147.234.209 srccountry="United States" user="Kevin" group="N/A" dst_host="N/A" reason="sslvpn_login_unknown_user" msg="SSL user failed to logged in" show less	VPN IP

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇺🇸 198.46.166.149

🇰🇪 197.248.8.33

🇨🇳 180.95.238.33

🇨🇳 124.117.195.121

🇮🇳 122.177.246.203

🇷🇴 92.223.15.15

🇷🇴 80.94.95.242

🇺🇸 64.94.159.252

🇧🇷 45.234.214.83

🇬🇧 35.203.211.214

🇨🇳 221.229.220.180

🇧🇷 201.74.226.243

🇳🇱 185.223.235.13

🇮🇳 103.180.212.135

🇫🇷 86.217.21.47

🇨🇦 54.39.192.183

🇺🇸 50.184.90.89

🇷🇺 46.188.119.26

🇺🇸 43.153.96.79