JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.148.232.183

45.148.232.183 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 21%: ?

21%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.148.232.183

Whois 45.148.232.183

IP Abuse Reports for 45.148.232.183:

This IP address has been reported a total of 18 times from 13 distinct sources. 45.148.232.183 was first reported on December 7th 2020, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Paul Smith	2026-05-20 12:47:25 (3 weeks ago)	Email Auth Brute force attack 6/1 in last day	Brute-Force
🇬🇧 cg-design.co.uk	2026-05-19 23:53:10 (3 weeks ago)	45.148.232.183 (IL/Israel/-), 10 distributed imapd attacks on account [redacted]	Brute-Force
🇩🇪 Paul Smith	2026-05-19 12:47:08 (3 weeks ago)	Email Auth Brute force attack 1/1 in last day	Brute-Force
🇺🇸 TPI-Abuse	2026-05-06 22:22:23 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 45.148.232.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.148.232.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 06 18:22:15.714584 2026] [security2:error] [pid 17897:tid 17897] [client 45.148.232.183:30723] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|gre-home.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gre-home.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afu_F9JDWW3TRSjiuRiv-AAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-29 07:04:22 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 45.148.232.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.148.232.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 03:04:14.661617 2026] [security2:error] [pid 17551:tid 17551] [client 45.148.232.183:64191] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|goodpage.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "goodpage.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afGtbp1tKYrV7N53YgjiFgAAAAc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-27 22:30:47 (1 month ago)	FPROCO WEBEXPLOIT 45.148.232.183 (45.148.232.183)	Web App Attack
🇨🇿 ptlab	2026-04-21 00:47:46 (1 month ago)	Detected wp_login attack from WP-host.	Hacking Web App Attack
🇺🇸 nationaleventpros.com	2026-04-17 11:36:21 (1 month ago)	WordPress login attempt	Brute-Force
🇷🇺 cleanweb	2026-04-02 05:15:34 (2 months ago)	Looking for /natflora.ru.tar, Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (K ... show more Looking for /natflora.ru.tar, Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0 Safari/537.36 show less	Brute-Force Phishing
🇺🇸 TPI-Abuse	2026-03-26 03:44:03 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 45.148.232.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.148.232.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 23:43:57.140168 2026] [security2:error] [pid 5917:tid 5917] [client 45.148.232.183:53077] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|firstunitedreserve.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "firstunitedreserve.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acSrfTkBKzhsaJjSI4OkSAAAABI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-25 08:58:05 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 45.148.232.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.148.232.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 04:58:01.084961 2026] [security2:error] [pid 9651:tid 9651] [client 45.148.232.183:22633] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|elfinforest.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "elfinforest.net"] [uri "/wp-json/wp/v2/users"] [unique_id "acOjmZDruQPSqhnszK3tUAAAAAo"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ambor	2026-03-06 02:22:28 (3 months ago)	Honeypot triggered on tcpdata.com - Attempted to access /wp-login.php (wordpress_login). User-Agent: ... show more Honeypot triggered on tcpdata.com - Attempted to access /wp-login.php (wordpress_login). User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 show less	Web App Attack
🇨🇭 backslash	2026-02-12 23:00:09 (4 months ago)	block ruleset AA06B7315BA6AEB6421B52F0B32E14B509FD5FF0	SQL Injection
Anonymous	2024-10-28 02:37:35 (1 year ago)	Ports: 2077,2078,2082,2083,2086,2087,2095,2096; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
🇺🇸 VSM Networks	2024-02-29 03:42:52 (2 years ago)	Credential Stuffing	Brute-Force

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 208.84.101.55

🇨🇳 120.35.97.200

🇿🇲 102.23.122.235

🇩🇪 69.5.169.254

🇯🇵 34.180.113.158

🇭🇰 23.249.28.115

🇩🇪 2a06:8ac0:0:103::4

🇬🇧 213.166.84.58

🇵🇱 194.180.49.220

🇺🇸 136.109.234.209

🇺🇸 135.237.127.207

🇹🇼 111.70.22.153

🇻🇳 103.61.122.197

🇨🇦 85.217.149.69

🇴🇲 78.111.46.16

🇺🇸 65.49.20.113

🇩🇪 64.226.124.37

🇯🇵 61.197.129.48

🇦🇺 58.111.97.94

🇱🇹 45.227.254.170