JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.159.22.129

45.159.22.129 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 18%: ?

18%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46475
Domain Name	finegroupservers.com
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.159.22.129

Whois 45.159.22.129

IP Abuse Reports for 45.159.22.129:

This IP address has been reported a total of 20 times from 8 distinct sources. 45.159.22.129 was first reported on February 23rd 2023, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-22 15:02:15 (15 hours ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 11:02:07.904320 2026] [security2:error] [pid 25152:tid 25152] [client 45.159.22.129:63111] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|wilsontribe.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wilsontribe.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajlOb92Nu_w3dZvXYtJcRgAAAAE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 05:31:09 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 01:31:02.415675 2026] [security2:error] [pid 13211:tid 13211] [client 45.159.22.129:15989] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|method-one.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "method-one.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajYlllEopHYg_5Lw7POf9wAAABE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 22:10:45 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 18:10:41.620374 2026] [security2:error] [pid 14314:tid 14314] [client 45.159.22.129:34323] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|wickedworks.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wickedworks.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajW-YdPRcDOF4TdHSjCPOwAAAAI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 21:40:32 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 17:40:26.306384 2026] [security2:error] [pid 7038:tid 7038] [client 45.159.22.129:47421] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|salernospizza.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "salernospizza.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai3OSv0Myc0X3Dwrblt3ZwAAABg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 19:35:33 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 15:35:29.832950 2026] [security2:error] [pid 14367:tid 14367] [client 45.159.22.129:39469] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|larsholm.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "larsholm.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aihrAc6TU4yrWImqsjeVSAAAAHI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-05-24 13:04:18 (4 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 kosada.com	2026-05-22 15:52:03 (1 month ago)	Web password guessing	Brute-Force
🇺🇸 TPI-Abuse	2026-05-21 12:17:01 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 08:16:53.706567 2026] [security2:error] [pid 18694:tid 18694] [client 45.159.22.129:58641] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|puoci.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "puoci.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ag73tc3I9Mr_63XRnt3GkwAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-21 01:26:52 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 21:26:44.886148 2026] [security2:error] [pid 4797:tid 4797] [client 45.159.22.129:38837] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|vidalwrightlaw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "vidalwrightlaw.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ag5fVNXUV9p3UG0HcroluQAAAA8"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-18 13:37:25 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 09:37:21.491508 2026] [security2:error] [pid 28711:tid 28711] [client 45.159.22.129:47895] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fisseq.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fisseq.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agsWEa7terVWy4BGBM_RrAAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 wil.com	2025-03-28 08:43:39 (1 year ago)	GlobalProtect login attempts with user VMIGEARBOX.	VPN IP Brute-Force
🇸🇪 OnTheEdge	2025-03-16 13:46:39 (1 year ago)	Password spraying. Multiple unauthorized login attempts	Hacking Web App Attack
🇸🇪 OnTheEdge	2025-03-16 13:46:39 (1 year ago)	Password spraying. Multiple unauthorized login attempts	Hacking Web App Attack
🇸🇪 OnTheEdge	2025-03-14 15:14:13 (1 year ago)	Password spraying. Multiple unauthorized login attempts	Hacking Web App Attack
🇨🇿 lp	2025-03-05 07:22:05 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.22.129 2025-03-05T07:48:27+01: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.159.22.129 2025-03-05T07:48:27+01:00 vpn Access-Reject 'nue' station: 45.159.22.129 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.197.85.17

🇳🇱 176.65.148.242

🇮🇳 172.83.83.194

🇩🇪 104.248.21.74

🇨🇳 101.42.41.164

🇨🇦 85.217.149.7

🇺🇸 64.62.197.178

🇬🇧 35.203.210.211

🇺🇸 35.130.111.146

🇻🇳 14.231.235.119

🇺🇸 13.220.111.43

🇧🇷 192.141.106.136

🇺🇸 173.61.229.160

🇲🇦 160.179.9.99

🇨🇦 147.182.156.161

🇿🇦 102.33.36.254

🇫🇷 85.217.140.6

🇱🇻 81.30.98.158

🇺🇸 65.25.203.255

🇳🇱 50.7.230.5