JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.147.235.208

45.147.235.208 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 16%: ?

16%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.147.235.208

Whois 45.147.235.208

IP Abuse Reports for 45.147.235.208:

This IP address has been reported a total of 19 times from 12 distinct sources. 45.147.235.208 was first reported on August 19th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-20 12:48:45 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 45.147.235.208 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.147.235.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 08:48:38.385894 2026] [security2:error] [pid 31143:tid 31143] [client 45.147.235.208:39837] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.iconbizpromo.com\|F\|2"] [data ".inc"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.iconbizpromo.com"] [uri "/wp-config.inc"] [unique_id "ag2tpqcdlv6WyMsHhvDb4wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 00:28:59 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.147.235.208 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.147.235.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 19 20:28:50.525633 2026] [security2:error] [pid 25304:tid 25304] [client 45.147.235.208:25965] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "activethinkers.net"] [uri "/wp-config.php.orig"] [unique_id "ag0AQnGEXzUCpzCwiGLv9QAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 tjs	2026-05-12 13:15:00 (1 month ago)	web attack	Hacking Web App Attack
Anonymous	2026-04-20 14:12:15 (1 month ago)	45.147.235.208 - - [20/Apr/2026:14:12:13 +0000] "GET /.env.save HTTP/1.1" 404 41953 "-" "Mozilla/5.0 ... show more 45.147.235.208 - - [20/Apr/2026:14:12:13 +0000] "GET /.env.save HTTP/1.1" 404 41953 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-16 01:52:01 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.147.235.208 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.147.235.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 15 21:51:54.998016 2026] [security2:error] [pid 2259331:tid 2259331] [client 45.147.235.208:34737] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Barrington/Thumbs.db"] [unique_id "aeBAulhbB1zYYgkz9DZYBgAAABI"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Barrington/ show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-04-14 23:52:27 (1 month ago)	URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .b ... show more URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .backup/ .bak/ .bck/ .bk/ .bkp/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .cnf/ .com/ .compositefont/ .config/ .conf/ .copy/ .crt/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dist/ .dll/ .dos/ .dpkg-dist/ .drv/ .gadget/ .hta/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .inf/ .ini/ .jse/ .key/ .licx/ .lnk/ .log/ .mdb/ .msc/ .ocx/ .old/ .pass/ .pdb/ .pfx/ .pif/ .pem/ .pol/ .prf/ .printer/ .pwd/ .rdb/ .rdp/ .reg/ .resources/ .resx/ .sav/ .save/ .scr/ .sct/ .sh/ .shs/ .sql/ .sqlite/ .sqlite3/ .swp/ .sys/ .temp/ .tlb/ .tmp/ .vb/ .vbe/ .vbs/ .vbproj/ .vsdisco/ .vxd/ .webinfo/ .ws/ .wsc/ .wsf/ .wsh/ .xsd/ .xsx/" at TX:extension. (920440-201) show less	Hacking
🇩🇪 HandyTreff.de	2026-03-17 13:51:21 (2 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -46.151 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -46.151 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.4270.1 show less	Web App Attack Bad Web Bot
🇨🇭 backslash	2026-02-10 02:40:08 (4 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇺🇸 inspectorgdgt	2025-12-26 22:00:33 (5 months ago)	Credential brute-force login attempts observed (e.g., SSLVPN/auth failures).	Brute-Force
🇺🇸 inspectorgdgt	2025-12-24 22:00:00 (5 months ago)	VPN brute-force login attempts observed (bulk report).	Brute-Force
Anonymous	2025-12-21 13:56:15 (5 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.21 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.21 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-18 15:25:39 (5 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.18 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.18 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 inspectorgdgt	2025-12-18 01:06:06 (5 months ago)	Failed login invalid user bruteforce attempt	Brute-Force SSH
🇺🇸 smithclass.net	2025-12-15 03:53:06 (5 months ago)	Dec 15 03:53:06 gravy wordpress(lallygag.net)[511285]: Authentication attempt for unknown user samue ... show more Dec 15 03:53:06 gravy wordpress(lallygag.net)[511285]: Authentication attempt for unknown user samuel from 45.147.235.208 ... show less	Hacking Brute-Force
🇨🇭 backslash	2025-12-13 02:20:21 (6 months ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 193.176.31.225

🇳🇱 193.176.31.202

🇩🇪 193.124.20.254

🇵🇱 151.115.76.119

🇧🇷 148.227.123.39

🇫🇷 82.123.73.102

🇨🇦 16.52.35.174

🇦🇷 200.32.52.150

🇩🇪 185.231.59.141

🇳🇱 176.65.148.244

🇲🇾 175.143.56.84

🇺🇸 166.88.34.158

🇺🇸 165.154.36.150

🇬🇧 35.203.211.84

🇮🇳 4.240.39.197

🇳🇱 4.180.183.241

🇭🇰 220.246.66.209

🇳🇱 204.76.203.219

🇧🇪 198.235.24.181

🇧🇾 178.120.6.245