JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.159.22.220

45.159.22.220 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.159.22.220

Whois 45.159.22.220

IP Abuse Reports for 45.159.22.220:

This IP address has been reported a total of 20 times from 8 distinct sources. 45.159.22.220 was first reported on April 28th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 voormedia	2026-01-26 12:35:29 (4 months ago)	Accessed trap at '/wp-login.php'	Web App Attack
🇨🇭 backslash	2026-01-25 16:15:05 (4 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-28 00:21:48 (6 months ago)	(mod_security) mod_security (id:210350) triggered by 45.159.22.220 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 45.159.22.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 19:21:44.998697 2025] [security2:error] [pid 2372:tid 2548] [client 45.159.22.220:24167] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|tomskrodzki.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "tomskrodzki.com"] [uri "/"] [unique_id "aSjrGEPmBQ2lARE_LT0uiwAAAMY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-09-19 22:45:28 (8 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-05-23 09:10:15 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 45.159.22.220 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.159.22.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 23 05:10:07.919351 2025] [security2:error] [pid 2913943:tid 2913943] [client 45.159.22.220:53517] [client 45.159.22.220] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.txt" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "theavgroup.com"] [uri "/1/wp-config.txt"] [unique_id "aDA7b8ZhqOervY-cjDyPIwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇼 nansen su	2024-08-09 18:59:59 (1 year ago)	Firewall Web Interface Login fail: remip="45.159.22.220" user=admin	Brute-Force Exploited Host
Anonymous	2024-06-16 03:15:04 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-06-14 07:13:20 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-06-13 04:43:53 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-06-12 02:39:29 (2 years ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇦🇺 MAGIC	2024-06-06 02:16:40 (2 years ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2024-06-05 02:31:51 (2 years ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.220 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 04 22:31:48.570120 2024] [security2:error] [pid 24599] [client 45.159.22.220:19265] [client 45.159.22.220] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|porscifantart.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "porscifantart.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zl_OFO9uDFeQtvS8bmmqzgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-06-04 01:56:37 (2 years ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.220 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 03 21:56:34.378562 2024] [security2:error] [pid 22034:tid 47556798682880] [client 45.159.22.220:16947] [client 45.159.22.220] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|killasgarage.bike\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "killasgarage.bike"] [uri "/wp-json/wp/v2/users"] [unique_id "Zl50Uu1w2YmQb3BV9jkzGgAAAIY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-06-02 14:43:21 (2 years ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.220 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 02 10:43:15.414286 2024] [security2:error] [pid 22049] [client 45.159.22.220:63303] [client 45.159.22.220] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|eileensharaga.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "eileensharaga.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZlyFA-sq87B4aeDMfQHF-QAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-06-02 09:44:23 (2 years ago)	(mod_security) mod_security (id:225170) triggered by 45.159.22.220 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.159.22.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 02 05:44:12.549170 2024] [security2:error] [pid 15983] [client 45.159.22.220:35301] [client 45.159.22.220] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|drendels.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "drendels.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zlw-7Edc55gkcqo9zXj0JwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 180.127.253.167

🇧🇷 179.185.18.67

🇩🇪 164.92.161.148

🇺🇸 162.216.150.76

🇺🇸 162.199.29.81

🇱🇹 141.98.9.60

🇺🇸 129.153.31.0

🇮🇪 128.251.36.118

🇬🇭 102.221.30.186

🇫🇷 85.217.140.20

🇱🇻 80.89.73.91

🇧🇬 79.124.62.122

🇺🇸 68.235.62.179

🇺🇸 67.220.180.90

🇧🇷 45.205.1.245

🇺🇸 45.77.149.21

🇬🇧 35.203.211.97

🇬🇧 217.146.80.125

🇬🇧 216.226.76.30

🇮🇩 210.210.155.71