JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.147.235.189

45.147.235.189 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 11%: ?

11%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.147.235.189

Whois 45.147.235.189

IP Abuse Reports for 45.147.235.189:

This IP address has been reported a total of 30 times from 13 distinct sources. 45.147.235.189 was first reported on August 21st 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 relianoid.com	2026-06-18 21:28:57 (2 days ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇱🇻 garmtech.com	2026-05-15 23:38:54 (1 month ago)	Attempted access to sensitive endpoint (/wp-login.php) detected. Automated scan or unauthorized prob ... show more Attempted access to sensitive endpoint (/wp-login.php) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2026-04-15 07:55:21 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 45.147.235.189 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.147.235.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 15 03:55:13.223821 2026] [security2:error] [pid 449745:tid 449755] [client 45.147.235.189:45583] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|transitionalcareservices.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "transitionalcareservices.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ad9EYSoPvirlJC8HyZgtoAAAAEc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-09 16:42:55 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 45.147.235.189 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.147.235.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 09 12:42:49.457292 2026] [security2:error] [pid 691026:tid 691026] [client 45.147.235.189:10291] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|sharonmauldin.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sharonmauldin.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adfXCaqz6sqa7SFDVNsPXwAAAAg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-03-31 22:42:43 (2 months ago)	[Firewall Canary] Temporary ban due to firewall rule match [URI:*/xmlrpc.php]	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-03-22 20:59:49 (2 months ago)	XML RPC Scan Activities: "2026-03-23T03:59:49.770+07:00" "/xmlrpc.php" "45.147.235.189" "AppleWebKit ... show more XML RPC Scan Activities: "2026-03-23T03:59:49.770+07:00" "/xmlrpc.php" "45.147.235.189" "AppleWebKit/533.33 (KHTML, like Gecko111)" show less	Web App Attack Brute-Force
🇩🇪 MusicLibrary	2026-03-21 12:55:29 (2 months ago)	Attempted access to non existent wordpress urls	Bad Web Bot
Anonymous	2026-03-20 21:52:52 (3 months ago)	[Firewall Canary] Temporary ban due to firewall rule match [URI canary:*/xmlrpc.php]	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-03-19 10:23:18 (3 months ago)	XML RPC Scan Activities: "2026-03-19T17:23:18.886+07:00" "/xmlrpc.php" "45.147.235.189" "Chrome/95.5 ... show more XML RPC Scan Activities: "2026-03-19T17:23:18.886+07:00" "/xmlrpc.php" "45.147.235.189" "Chrome/95.5 Safari/535.55" show less	Web App Attack Brute-Force
🇪🇸 el-brujo	2026-02-24 12:10:48 (3 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWe ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWebKit/535.35 (KHTML, like Gecko111) Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: POST Timestamp: 2026-02-24T12:10:48Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇩🇪 london2038.com	2026-02-20 22:04:02 (4 months ago)	Detected by WP fail2ban 2026-02-20T23:04:01.232007+01:00 wordpress: Authentication attempt from 45.1 ... show more Detected by WP fail2ban 2026-02-20T23:04:01.232007+01:00 wordpress: Authentication attempt from 45.147.235.189 show less	Brute-Force Web App Attack
🇧🇪 voormedia	2026-02-18 02:56:20 (4 months ago)	Accessed trap at '/xmlrpc.php'	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-10 14:37:40 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-11-18 10:53:25 (7 months ago)	wordpress-trap	Web App Attack
🇨🇭 backslash	2025-11-07 19:45:02 (7 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.90.235.154

🇺🇸 209.141.43.146

🇫🇮 147.185.133.65

🇺🇸 142.93.117.112

🇷🇺 95.220.204.16

🇷🇺 92.100.16.74

🇫🇷 81.51.45.72

🇺🇸 72.240.125.133

🇺🇸 72.207.33.65

🇺🇸 54.164.145.163

🇧🇪 35.233.3.79

🇺🇸 18.119.209.50

🇺🇸 192.81.245.126

🇨🇭 179.43.146.227

🇭🇰 156.245.246.50

🇨🇳 116.204.23.49

🇸🇦 77.31.254.121

🇺🇸 72.195.114.182

🇮🇶 65.20.204.179

🇮🇳 61.0.52.222