JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.159.21.142

45.159.21.142 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	finegroupservers.com
Country	🇫🇮 Finland
City	Vantaa, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.159.21.142

Whois 45.159.21.142

IP Abuse Reports for 45.159.21.142:

This IP address has been reported a total of 10 times from 6 distinct sources. 45.159.21.142 was first reported on August 31st 2023, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇿 lp	2026-03-12 07:41:56 (2 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.21.142 2026-03-12T08:17:06+01: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.21.142 2026-03-12T08:17:06+01:00 vpn Access-Reject 'ruppert' station: 45.159.21.142 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2026-03-10 07:40:27 (2 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.21.142 2026-03-10T07:08:34+01: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.21.142 2026-03-10T07:08:34+01:00 vpn Access-Reject 'mitsu' station: 45.159.21.142 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2026-02-27 12:04:07 (3 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.21.142 2026-02-27T12:06:52+01: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.21.142 2026-02-27T12:06:52+01:00 vpn Access-Reject 'mattylad10' station: 45.159.21.142 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇩🇪 stinpriza	2025-11-08 11:27:16 (6 months ago)	Web App Attack	Web App Attack
🇺🇸 octageeks.com	2025-03-29 04:06:40 (1 year ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇺🇸 TPI-Abuse	2025-03-22 15:53:12 (1 year ago)	(mod_security) mod_security (id:211120) triggered by 45.159.21.142 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:211120) triggered by 45.159.21.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 22 11:53:06.463125 2025] [security2:error] [pid 7600:tid 7600] [client 45.159.21.142:26797] [client 45.159.21.142] ModSecurity: Access denied with code 403 (phase 2). Match of "endsWith /modules/paypal/express_checkout/payment.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "29"] [id "211120"] [rev "12"] [msg "COMODO WAF: Remote File Inclusion Attack\|\|bamedica.com\|F\|2"] [data "Matched Data: http://adguard.digital/payload/index.php? found within REQUEST_FILENAME: /wp-content/plugins/w3-total-cache/lib/w3/pager.class.php"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bamedica.com"] [uri "/wp-content/plugins/w3-total-cache/lib/W3/Pager.class.php"] [unique_id "Z97c4j14cay4vIjBAvMbVgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nationaleventpros.com	2025-03-09 02:30:37 (1 year ago)	vulnerability scan	Web App Attack
🇺🇸 TPI-Abuse	2025-03-08 14:46:40 (1 year ago)	(mod_security) mod_security (id:211120) triggered by 45.159.21.142 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:211120) triggered by 45.159.21.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 08 09:46:34.701953 2025] [security2:error] [pid 26344:tid 26344] [client 45.159.21.142:56763] [client 45.159.21.142] ModSecurity: Access denied with code 403 (phase 2). Match of "endsWith /modules/paypal/express_checkout/payment.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "29"] [id "211120"] [rev "12"] [msg "COMODO WAF: Remote File Inclusion Attack\|\|36sovereignchambers.com\|F\|2"] [data "Matched Data: http://adguard.digital/payload/index.php? found within REQUEST_FILENAME: /wp-content/plugins/wp-super-cache/js/cache-loader.php"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "36sovereignchambers.com"] [uri "/wp-content/plugins/wp-super-cache/js/cache-loader.php"] [unique_id "Z8xYSj1kW7CNuaNs_V0LfQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-02-27 17:46:45 (1 year ago)	(mod_security) mod_security (id:211120) triggered by 45.159.21.142 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:211120) triggered by 45.159.21.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 12:46:41.301238 2025] [security2:error] [pid 20875:tid 20875] [client 45.159.21.142:46405] [client 45.159.21.142] ModSecurity: Access denied with code 403 (phase 2). Match of "endsWith /modules/paypal/express_checkout/payment.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "29"] [id "211120"] [rev "12"] [msg "COMODO WAF: Remote File Inclusion Attack\|\|www.valuecenteredleadership.com\|F\|2"] [data "Matched Data: http://adguard.digital/payload/index.php? found within REQUEST_FILENAME: /wp-content/plugins/canto/includes/lib/download.php"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.valuecenteredleadership.com"] [uri "/wp-content/plugins/canto/includes/lib/download.php"] [unique_id "Z8ClAQSw_VH0STRzKFHQTwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇷 Staging	2023-08-31 05:23:22 (2 years ago)	constant visits	Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 202.9.122.110

🇮🇹 185.208.104.24

🇨🇭 179.43.163.26

🇺🇸 168.203.43.248

🇬🇧 81.19.219.243

🇩🇪 46.101.107.202

🇺🇸 20.172.240.136

🇸🇬 212.73.148.34

🇲🇽 207.248.113.55

🇳🇱 156.255.1.208

🇺🇸 144.172.94.169

🇩🇪 130.61.152.179

🇨🇳 124.117.193.142

🇨🇳 120.53.228.231

🇨🇳 116.207.109.217

🇷🇴 80.94.92.187

🇩🇪 49.13.222.98

🇨🇳 36.189.207.209

🇯🇵 202.225.27.166

🇧🇷 152.67.46.203