JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.147.235.165

45.147.235.165 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 26%: ?

26%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.147.235.165

Whois 45.147.235.165

IP Abuse Reports for 45.147.235.165:

This IP address has been reported a total of 8 times from 5 distinct sources. 45.147.235.165 was first reported on October 9th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 voormedia	2026-06-03 19:36:52 (3 days ago)	Accessed trap at '/wp-login.php'	Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 04:48:19 (4 days ago)	(mod_security) mod_security (id:210730) triggered by 45.147.235.165 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.147.235.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 00:48:15.280572 2026] [security2:error] [pid 7002:tid 7002] [client 45.147.235.165:58823] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Laguna 3036/Thumbs.db"] [unique_id "ah-yD2Ksksg08-GC_HxQMgAAABw"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Laguna%203036/ show less	Brute-Force Bad Web Bot Web App Attack
🇲🇹 Malta	2026-05-22 12:28:06 (2 weeks ago)	45.147.235.165 - - [22/May/2026:14:28:06 +0200] "GET /wp-json/wp/v2/users HTTP/1.1" "Mozilla/5.0 (X1 ... show more 45.147.235.165 - - [22/May/2026:14:28:06 +0200] "GET /wp-json/wp/v2/users HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Hacking Web App Attack VPN IP
🇨🇭 backslash	2026-05-18 09:27:02 (2 weeks ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇨🇭 backslash	2026-04-17 02:21:05 (1 month ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-22 06:37:37 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 45.147.235.165 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.147.235.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 01:37:34.227007 2026] [security2:error] [pid 11647:tid 11647] [client 45.147.235.165:25585] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|danharrisphotoart.com\|F\|2"] [data ".dpreview.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "danharrisphotoart.com"] [uri "/www.dpreview.com"] [unique_id "aZqkLvL1_tNa6Jkj6fRZRQAAABw"], referer: http://danharrisphotoart.com/checklist.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-11 21:33:24 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 45.147.235.165 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 45.147.235.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 11 16:33:21.123238 2026] [security2:error] [pid 1547799:tid 1547799] [client 45.147.235.165:9651] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.nancyscafeandcatering.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.nancyscafeandcatering.com"] [uri "/contact-us/"] [unique_id "aWQXITXwJD-AjmjFAFvPtAAAABo"], referer: http://www.nancyscafeandcatering.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 polycoda	2025-10-09 12:10:49 (7 months ago)	🔑 Wordpress login brute force attempt	Hacking Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 187.140.5.12

🇧🇷 177.36.214.46

🇧🇪 34.76.188.90

🇿🇦 20.87.219.67

🇫🇮 147.185.133.227

🇨🇳 119.41.150.184

🇨🇳 110.249.202.31

🇺🇸 20.65.195.38

🇬🇧 185.247.137.11

🇨🇭 85.5.148.125

🇺🇸 64.62.197.144

🇺🇸 2604:a880:400:d1:0:4:8bf1:5001

🇭🇰 199.45.154.118

🇦🇷 186.148.224.183

🇺🇸 157.245.1.7

🇩🇪 150.241.76.42

🇧🇩 123.49.60.158

🇺🇿 95.46.211.142

🇳🇱 94.102.49.125

🇺🇸 66.132.172.230