JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.159.21.134

45.159.21.134 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 14%: ?

14%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46475
Domain Name	finegroupservers.com
Country	🇵🇱 Poland
City	Gdansk, Pomerania

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.159.21.134

Whois 45.159.21.134

IP Abuse Reports for 45.159.21.134:

This IP address has been reported a total of 13 times from 9 distinct sources. 45.159.21.134 was first reported on March 19th 2022, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 paulshipley.com.au	2026-06-26 00:14:25 (4 days ago)	[Fri Jun 26 10:14:24.761061 2026] [security2:error] [pid 593445] [client 45.159.21.134:42341] [clien ... show more [Fri Jun 26 10:14:24.761061 2026] [security2:error] [pid 593445] [client 45.159.21.134:42341] [client 45.159.21.134] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "levellapromotions.com.au"] [uri "/xmlrpc.php"] [unique_id "aj3EYP64tKVFbTzFCz5N6wAAAAw"] ... show less	Web App Attack
🇩🇪 LRob.fr	2026-06-25 15:15:22 (4 days ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
Anonymous	2026-03-30 17:38:00 (2 months ago)	45.159.21.134 - - [30/Mar/2026:19:37:53 +0200] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.goog ... show more 45.159.21.134 - - [30/Mar/2026:19:37:53 +0200] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" ... show less	Web App Attack
🇨🇭 backslash	2026-03-21 12:03:00 (3 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2026-03-14 16:30:48 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 45.159.21.134 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.21.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 12:30:41.921158 2026] [security2:error] [pid 1913:tid 1913] [client 45.159.21.134:33705] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|desdier.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "desdier.com"] [uri "/wp-json/wp/v2/users"] [unique_id "abWNMUbwtGfSoSOkYNU82QAAABQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 lp	2025-03-19 19:21:41 (1 year ago)	Unauthorized VPN login attempts: 4 attempts were recorded from 45.159.21.134 2025-03-19T19:13:35+01: ... show more Unauthorized VPN login attempts: 4 attempts were recorded from 45.159.21.134 2025-03-19T19:13:35+01:00 vpn Access-Reject 'ciriaco' station: 45.159.21.134 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-03-19T19:14:02+01:00 vpn Access-Reject 'nonazotized' station: 45.159.21.134 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-03-19T19:28:38+01:00 vpn Access-Reject 'lagging' station: 45.159.21.134 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-03-19T19:58:52+01:00 vpn Access-Reject 'coby' station: 45.159.21.134 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-03-12 04:22:31 (1 year ago)	Unauthorized VPN login attempts: 2 attempts were recorded from 45.159.21.134 2025-03-12T03:48:10+01: ... show more Unauthorized VPN login attempts: 2 attempts were recorded from 45.159.21.134 2025-03-12T03:48:10+01:00 vpn Access-Reject 'marker' station: 45.159.21.134 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-03-12T04:43:29+01:00 vpn Access-Reject 'boatman' station: 45.159.21.134 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-03-10 01:21:16 (1 year ago)	Unauthorized VPN login attempts: 4 attempts were recorded from 45.159.21.134 2025-03-10T00:55:41+01: ... show more Unauthorized VPN login attempts: 4 attempts were recorded from 45.159.21.134 2025-03-10T00:55:41+01:00 vpn Access-Reject 'serge' station: 45.159.21.134 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-03-10T00:56:58+01:00 vpn Access-Reject 'boys' station: 45.159.21.134 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-03-10T01:49:19+01:00 vpn Access-Reject 'kipper' station: 45.159.21.134 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-03-10T01:52:37+01:00 vpn Access-Reject 'ANDREW' station: 45.159.21.134 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-03-08 14:49:36 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.21.134 2025-03-08T14:53:08+01: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.21.134 2025-03-08T14:53:08+01:00 vpn Access-Reject 'fmale' station: 45.159.21.134 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-03-06 07:22:15 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.21.134 2025-03-06T07:20:05+01: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.21.134 2025-03-06T07:20:05+01:00 vpn Access-Reject 'qiang' station: 45.159.21.134 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇸🇪 OnTheEdge	2025-02-27 18:41:59 (1 year ago)	Password spraying. Multiple unauthorized login attempts	Hacking Web App Attack
🇳🇱 Linuxmalwarehuntingnl	2024-07-02 07:08:42 (1 year ago)	Unauthorized connection attempt	Brute-Force
Anonymous	2022-03-19 22:30:00 (4 years ago)	Password Spary Attack	Brute-Force Exploited Host

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 191.102.179.197

🇺🇸 191.102.179.39

🇺🇸 191.102.174.89

🇧🇷 187.34.66.141

🇰🇷 175.207.254.233

🇻🇳 171.231.182.115

🇺🇸 162.216.149.194

🇺🇸 146.88.240.136

🇨🇳 122.230.51.88

🇨🇳 121.89.86.241

🇳🇱 91.92.40.10

🇧🇬 79.124.49.174

🇺🇸 71.27.86.44

🇺🇸 64.62.197.100

🇧🇷 45.205.1.206

🇺🇸 45.194.67.29

🇻🇳 14.226.219.176

🇺🇸 2a03:2880:f806:4c::

🇬🇧 217.146.80.114

🇺🇸 191.102.174.221