JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.159.20.83

45.159.20.83 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 12%: ?

12%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.159.20.83

Whois 45.159.20.83

IP Abuse Reports for 45.159.20.83:

This IP address has been reported a total of 10 times from 7 distinct sources. 45.159.20.83 was first reported on February 16th 2022, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 kosada.com	2026-05-01 11:34:53 (1 month ago)	Web password guessing	Brute-Force
🇺🇸 NicoID	2026-05-01 00:15:06 (1 month ago)	45.159.20.83 - - [30/Apr/2026:15:39:05 -0600] "GET /wp-login.php HTTP/1.1" 200 4882 "https://www.goo ... show more 45.159.20.83 - - [30/Apr/2026:15:39:05 -0600] "GET /wp-login.php HTTP/1.1" 200 4882 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" ... show less	Brute-Force
🇺🇸 TPI-Abuse	2026-04-28 10:46:10 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 45.159.20.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 45.159.20.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 06:46:04.059188 2026] [security2:error] [pid 30175:tid 30175] [client 45.159.20.83:18879] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|moellerlaw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "moellerlaw.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afCP7FIVZ5WsojH-9TFDawAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-13 22:08:55 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 45.159.20.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 45.159.20.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 18:08:48.824289 2026] [security2:error] [pid 4116148:tid 4116148] [client 45.159.20.83:36335] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|geriking.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "geriking.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ad1pcEfSU8JvKBFrP3IM0AAAAAU"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 OnTheEdge	2025-02-14 23:38:49 (1 year ago)	Password spraying. Multiple unauthorized login attempts	Hacking Web App Attack
🇷🇺 sms.ru	2024-09-23 04:55:07 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
🇺🇸 TPI-Abuse	2024-03-05 13:45:09 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 45.159.20.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 45.159.20.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 05 08:44:59.799831 2024] [security2:error] [pid 30705] [client 45.159.20.83:11897] [client 45.159.20.83] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kingstoneproperties.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kingstoneproperties.com"] [uri "/[email protected]"] [unique_id "Zech24b-Vi7I1BZ5Oa7naQAAAAY"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Sklurk	2023-12-29 23:15:03 (2 years ago)	Web App Attack	Web App Attack
🇬🇧 headwall	2022-02-16 20:04:56 (4 years ago)	Attempted WordPress user enumeration by client 45.159.20.83	Web App Attack
🇬🇧 headwall	2022-02-16 20:04:56 (4 years ago)	Attempted WordPress user enumeration by client 45.159.20.83	Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.239.251.12

🇻🇳 116.110.219.247

🇺🇸 2602:fb54:1400::1d6

🇵🇰 2404:3100:1823:6ce1:8934:45b0:9c18:a319

🇺🇸 209.141.36.175

🇻🇳 203.171.29.193

🇬🇧 195.206.182.203

🇺🇸 192.3.218.12

🇩🇪 185.201.0.39

🇩🇪 178.27.90.142

🇰🇷 175.119.225.68

🇺🇸 173.244.60.241

🇳🇱 172.211.56.214

🇺🇸 172.210.53.193

🇺🇸 167.172.223.162

🇧🇷 144.22.238.238

🇺🇸 143.42.164.204

🇺🇸 142.248.80.174

🇮🇳 128.185.197.42

🇮🇳 123.58.203.202