JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.148.233.17

45.148.233.17 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 40%: ?

40%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.148.233.17

Whois 45.148.233.17

IP Abuse Reports for 45.148.233.17:

This IP address has been reported a total of 20 times from 14 distinct sources. 45.148.233.17 was first reported on February 15th 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-06-25 17:28:07 (1 day ago)	Fail2Ban banned 45.148.233.17 for security violations in jail wp-armour. Log: 2026/06/25 17:28:06 [e ... show more Fail2Ban banned 45.148.233.17 for security violations in jail wp-armour. Log: 2026/06/25 17:28:06 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 45.148.233.17 \| Target: wplogin" , client: 45.148.233.17, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇨🇿 ptlab	2026-06-25 12:47:17 (1 day ago)	Detected wp_login attack from WP-host.	Hacking Web App Attack
🇪🇸 librebit	2026-06-25 02:12:05 (1 day ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2026-06-21 00:26:47 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 45.148.233.17 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.148.233.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 20:26:41.908514 2026] [security2:error] [pid 3994:tid 3994] [client 45.148.233.17:60039] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|budinger.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "budinger.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajcvwepxQuOlKwLBsrqlVQAAAAU"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-06-18 13:45:20 (1 week ago)	Brute force	Brute-Force
🇬🇧 relianoid.com	2026-06-16 05:46:40 (1 week ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
Anonymous	2026-05-28 12:41:52 (4 weeks ago)	SQL injection, multiple attempts.	SQL Injection
🇺🇸 TPI-Abuse	2026-05-16 00:14:04 (1 month ago)	(mod_security) mod_security (id:218580) triggered by 45.148.233.17 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:218580) triggered by 45.148.233.17 (-): 1 in the last 300 secs; Ports: ; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 20:13:57.773370 2026] [security2:error] [pid 23768:tid 23768] [client 45.148.233.17:65063] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:\\\\/\\\\[!+](?:[\\\\w\\\\s=_\\\\-()]+)?\\\\*\\\\/)" at ARGS:/category/339/start-216. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/22_SQL_SQLi.conf"] [line "76"] [id "218580"] [rev "1"] [msg "COMODO WAF: MySQL in-line comment detected.\|\|www.genesis-castle.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "SQLi"] [hostname "www.genesis-castle.com"] [uri "/gallery/index.php"] [unique_id "age2xWxTgcehSTbd4IhiIgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-05-07 10:25:15 (1 month ago)	IM360 WAF: SQL Injection via WordPress Link functionality MV:1\\" AND EXTRACTVALUE(8003,CONCAT(0x7e, ... show more IM360 WAF: SQL Injection via WordPress Link functionality MV:1\\" AND EXTRACTVALUE(8003,CONCAT(0x7e,(SELECT/**/(ELT(8003=8003,1))),0x7e))-- - show less	SQL Injection
🇦🇺 oncord	2026-05-05 03:59:48 (1 month ago)	Form spam	Web Spam
🇩🇪 kjaerulff	2026-04-10 06:48:11 (2 months ago)	Failed Wordpress login using wp-login.php	Web App Attack
🇺🇸 TPI-Abuse	2024-08-07 07:29:32 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.148.233.17 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.148.233.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 07 03:29:27.491407 2024] [security2:error] [pid 20978:tid 20978] [client 45.148.233.17:19911] [client 45.148.233.17] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|vanmeer.info\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "vanmeer.info"] [uri "/wp-json/wp/v2/users"] [unique_id "ZrMiV0Ei8oAy2eJcjCT7HQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-08-05 11:11:03 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.148.233.17 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.148.233.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 07:10:55.870411 2024] [security2:error] [pid 1672632:tid 1672632] [client 45.148.233.17:63557] [client 45.148.233.17] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|whatyouhear.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "whatyouhear.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZrCzP3WCgq3xYieh7z7MuQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-08-05 10:09:28 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.148.233.17 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.148.233.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 05 06:09:20.738040 2024] [security2:error] [pid 8341:tid 8341] [client 45.148.233.17:50273] [client 45.148.233.17] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|joeordie.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "joeordie.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZrCk0OV9GQq7aM1aLBkb9AAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-08-03 05:36:53 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.81

🇩🇪 64.89.163.89

🇺🇸 46.8.227.45

🇺🇸 2620:171:12:f003:9999::114

🇧🇷 190.115.196.211

🇨🇳 183.199.195.28

🇸🇬 178.128.51.84

🇫🇮 147.185.133.147

🇫🇮 147.185.133.103

🇧🇬 78.128.112.215

🇩🇪 69.5.169.114

🇱🇹 62.60.130.219

🇸🇬 188.166.183.133

🇺🇸 172.239.64.86

🇫🇮 147.185.133.250

🇪🇬 62.193.91.121

🇸🇬 51.79.177.223

🇬🇧 35.203.210.231

🇫🇷 178.18.250.64

🇩🇪 128.14.225.164