JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.159.20.81

45.159.20.81 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.159.20.81

Whois 45.159.20.81

IP Abuse Reports for 45.159.20.81:

This IP address has been reported a total of 14 times from 10 distinct sources. 45.159.20.81 was first reported on September 4th 2022, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 ketovoila.pl	2026-01-22 15:33:52 (4 months ago)	ketovoila.pl HONEYPOT traffic: count=1, paths=1; sample_path=ketovoila.pl/; UA=Mozilla/5.0 (X11; Lin ... show more ketovoila.pl HONEYPOT traffic: count=1, paths=1; sample_path=ketovoila.pl/; UA=Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36; window=2026-01-22T15:02:11Z..2026-01-22T15:02:11Z show less	Port Scan Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-01-01 14:10:18 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 45.159.20.81 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 45.159.20.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 01 09:10:13.604601 2026] [security2:error] [pid 6384:tid 6384] [client 45.159.20.81:16647] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bernsteinip.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bernsteinip.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aVaARTyJRHlg9aPHw1k1_QAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-28 11:25:05 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇩🇪 ps-center	2025-12-27 21:37:30 (5 months ago)	ABV: Web Attack GET /ch-links-verlag/wp-login.php	Web Spam Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-25 00:23:00 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 45.159.20.81 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 45.159.20.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 24 19:22:54.372048 2025] [security2:error] [pid 3956:tid 3956] [client 45.159.20.81:60029] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|areafinancieratf.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "areafinancieratf.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aUyD3stDd-zLb3IoHWhRrQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-06-18 05:30:06 (11 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-05-26 08:55:25 (1 year ago)	Failed Wordpress Logins	Web App Attack
🇺🇸 TPI-Abuse	2025-02-23 13:24:25 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 45.159.20.81 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 45.159.20.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 23 08:24:19.386536 2025] [security2:error] [pid 17461:tid 17461] [client 45.159.20.81:14811] [client 45.159.20.81] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deltasouls.com"] [uri "/.env"] [unique_id "Z7shg2txybJNsUJ5ggDvZgAAAA8"], referer: https://tasamm.com/about/ddd34.html show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 lp	2025-02-11 17:50:14 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.20.81 2025-02-11T18:30:56+01:0 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.20.81 2025-02-11T18:30:56+01:00 vpn Access-Reject 'buck' station: 45.159.20.81 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-02-06 19:21:26 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.20.81 2025-02-06T19:22:25+01:0 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.20.81 2025-02-06T19:22:25+01:00 vpn Access-Reject 'bell' station: 45.159.20.81 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇷🇺 sms.ru	2024-09-23 19:10:07 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
🇸🇪 Lemmy	2023-04-22 22:17:38 (3 years ago)	SQL Injection	SQL Injection
🇹🇼 kk_it_man	2022-09-04 15:06:02 (3 years ago)	hack	Hacking
🇹🇼 kk_it_man	2022-09-04 14:20:03 (3 years ago)		Hacking

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 165.154.218.201

🇺🇸 57.141.16.53

🇮🇷 37.202.178.146

🇺🇦 194.42.205.100

🇧🇷 179.184.160.50

🇮🇳 154.221.35.72

🇺🇸 136.144.33.100

🇨🇳 61.178.24.146

🇺🇸 9.234.10.188

🇺🇸 2607:f8b0:4003:c1c::122

🇧🇷 205.210.31.168

🇨🇳 183.197.172.104

🇻🇺 138.226.239.10

🇨🇳 115.191.79.153

🇺🇸 64.224.72.62

🇫🇷 51.159.125.208

🇺🇸 34.74.148.213

🇺🇸 20.168.122.83

🇧🇷 201.71.192.108

🇨🇷 186.177.87.254