JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.202.79.159

45.202.79.159 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 0%: ?

ISP	Cloud Innovation Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS17561
Domain Name	cloudinnovation.org
Country	🇮🇹 Italy
City	Rome, Lazio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.202.79.159

Whois 45.202.79.159

IP Abuse Reports for 45.202.79.159:

This IP address has been reported a total of 10 times from 6 distinct sources. 45.202.79.159 was first reported on November 2nd 2024, and the most recent report was 8 months ago.

Old Reports: The most recent abuse report for this IP address is from 8 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-09-29 16:29:30 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 45.202.79.159 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.202.79.159 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 29 12:29:24.418860 2025] [security2:error] [pid 1881306:tid 1881306] [client 45.202.79.159:14565] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|wonboyn.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wonboyn.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aNqz5ASbi0CNUxsxpUu3rAAAABs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-03-31 02:45:02 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.202.79.159 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.202.79.159 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 30 22:44:56.844739 2025] [security2:error] [pid 25856:tid 25856] [client 45.202.79.159:53733] [client 45.202.79.159] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|zodiacwin.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "zodiacwin.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z-oBqNgD4f8TREJTJ-9EkgAAAAw"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-12-30 08:27:51 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2024.12.30 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2024.12.30 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2024-12-29 22:39:30 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2024.12.29 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2024.12.29 is noted in report timestamp show less	Hacking Brute-Force
🇦🇺 MAGIC	2024-12-17 09:04:57 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇪🇸 librebit	2024-11-17 07:07:32 (1 year ago)	RDWeb scan	Web App Attack
🇺🇸 TPI-Abuse	2024-11-17 06:59:35 (1 year ago)	(mod_security) mod_security (id:210740) triggered by 45.202.79.159 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210740) triggered by 45.202.79.159 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 17 01:59:31.758884 2024] [security2:error] [pid 1658986:tid 1658986] [client 45.202.79.159:36361] [client 45.202.79.159] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy\|\|alohaarts.com\|F\|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "alohaarts.com"] [uri "/"] [unique_id "ZzmUUzgJspjyBkrgyO_tPwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2024-11-12 08:26:56 (1 year ago)	RDWeb scan	Web App Attack
Anonymous	2024-11-04 15:20:11 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
🇺🇸 hostseries	2024-11-02 03:55:00 (1 year ago)	Trigger: LF_DISTATTACK	Brute-Force

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 74.50.216.149

🇨🇦 71.17.114.220

🇺🇸 206.189.192.135

🇲🇽 187.212.10.12

🇺🇸 135.237.125.213

🇺🇸 65.49.1.85

🇳🇱 45.148.10.151

🇮🇳 35.244.8.86

🇨🇦 35.203.57.85

🇺🇸 35.185.9.168

🇩🇪 34.40.94.76

🇬🇧 213.166.84.39

🇫🇷 195.154.112.90

🇬🇧 195.96.139.212

🇨🇭 185.211.94.76

🇨🇦 172.105.5.212

🇨🇦 159.203.0.216

🇨🇳 124.227.31.26

🇨🇳 124.117.195.201

🇨🇳 111.228.13.226