JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.159.22.103

45.159.22.103 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.159.22.103

Whois 45.159.22.103

IP Abuse Reports for 45.159.22.103:

This IP address has been reported a total of 17 times from 10 distinct sources. 45.159.22.103 was first reported on November 1st 2023, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-22 22:09:22 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.103 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 17:09:16.629168 2026] [security2:error] [pid 22622:tid 22622] [client 45.159.22.103:28279] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|havenlaneministries.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "havenlaneministries.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXKgDKVvHaPKtlfaoJ8OVQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 16:26:32 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.103 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 11:26:28.877878 2026] [security2:error] [pid 22960:tid 22960] [client 45.159.22.103:29111] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|rblep.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rblep.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXJPtCCzr7uwo5FK2NAq-gAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 15:45:17 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.103 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 10:45:13.630743 2026] [security2:error] [pid 10820:tid 10820] [client 45.159.22.103:61893] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|grabagame.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "grabagame.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXJGCenxNFXTF0d0-NCpHAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 stinpriza	2025-12-27 14:51:22 (5 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2025-12-26 16:14:40 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.103 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 26 11:14:34.666088 2025] [security2:error] [pid 25796:tid 25796] [client 45.159.22.103:10387] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|salernospizza.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "salernospizza.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aU60akHe9WrSBX2FkSbT1QAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Steve	2025-12-24 21:41:02 (5 months ago)	Attempts against non-existent wordpress site	Brute-Force Web App Attack
🇳🇿 Tripwire	2025-12-13 20:52:55 (5 months ago)	Wordpress login scanning	Brute-Force Web App Attack
🇨🇳 ThreatBook.io	2025-04-27 01:02:43 (1 year ago)	ThreatBook Intelligence: Brute Force more details on http://threatbook.io/ip/45.159.22.103 2025-04-2 ... show more ThreatBook Intelligence: Brute Force more details on http://threatbook.io/ip/45.159.22.103 2025-04-26 01:00:26 /+CSCOE+/logon.html 2025-04-26 23:10:57 /+CSCOE+/logon.html show less	Web App Attack
🇺🇸 TPI-Abuse	2025-04-16 00:44:16 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.103 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 15 20:44:09.313835 2025] [security2:error] [pid 2428722:tid 2428722] [client 45.159.22.103:60883] [client 45.159.22.103] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|armorcorp.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "armorcorp.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z_79WQU4jFKo6s3SBEB5-AAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-12 11:25:33 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.12 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.12 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-10 14:26:47 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.10 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.10 is noted in report timestamp show less	Hacking Brute-Force
🇨🇭 backslash	2025-03-30 23:45:05 (1 year ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇳🇿 Tripwire	2025-03-30 17:19:34 (1 year ago)	Wordpress login attempts	Brute-Force Web App Attack
🇸🇪 OnTheEdge	2025-02-11 09:06:10 (1 year ago)	Password spraying. Multiple unauthorized login attempts	Hacking Web App Attack
🇸🇪 OnTheEdge	2025-02-03 18:39:52 (1 year ago)	Password spraying. Multiple unauthorized login attempts	Hacking Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.95.174.18

🇨🇭 179.43.168.58

🇺🇸 172.191.178.196

🇨🇦 162.156.232.119

🇮🇳 106.51.143.36

🇫🇷 91.231.89.158

🇫🇷 91.231.89.136

🇫🇷 85.217.140.25

🇺🇸 52.15.75.161

🇨🇳 36.154.237.94

🇧🇪 34.78.162.85

🇺🇸 2607:f8b0:4004:c23::120

🇨🇳 182.119.229.206

🇫🇷 91.196.152.176

🇱🇹 81.30.98.44

🇺🇸 75.7.136.36

🇺🇸 74.235.185.122

🇺🇸 65.49.1.71

🇺🇸 64.62.156.216

🇦🇺 34.40.179.169