JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.66.210.228

45.66.210.228 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.66.210.228

Whois 45.66.210.228

IP Abuse Reports for 45.66.210.228:

This IP address has been reported a total of 12 times from 9 distinct sources. 45.66.210.228 was first reported on December 7th 2020, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-03-23 13:52:15 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 45.66.210.228 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.66.210.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 23 09:52:09.722738 2026] [security2:error] [pid 3483719:tid 3483719] [client 45.66.210.228:62733] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|frootloops.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "frootloops.net"] [uri "/wp-json/wp/v2/users"] [unique_id "acFFiWKJ3fnCYXyhL9HUbwAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-03-21 11:13:37 (2 months ago)	Web password guessing	Brute-Force
Anonymous	2026-01-20 19:11:25 (4 months ago)	wordpress-trap	Web App Attack
🇳🇱 i-turnradio.nl	2026-01-15 01:46:45 (4 months ago)	2026-01-15 @ 02:46:42 (CET) ~ Blocked for trying to access: /erker/wp/wp-login.php	Web App Attack
🇺🇸 TPI-Abuse	2025-12-22 22:29:00 (5 months ago)	(mod_security) mod_security (id:210350) triggered by 45.66.210.228 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 45.66.210.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 22 17:28:52.541040 2025] [security2:error] [pid 25197:tid 25197] [client 45.66.210.228:34179] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|tactara.net\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "tactara.net"] [uri "/"] [unique_id "aUnGJHEtMlNwe_XAuea37gAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-20 14:57:03 (5 months ago)	(mod_security) mod_security (id:211700) triggered by 45.66.210.228 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:211700) triggered by 45.66.210.228 (-): 1 in the last 300 secs; Ports: ; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 20 09:56:37.383915 2025] [security2:error] [pid 12331:tid 12331] [client 45.66.210.228:47265] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:[ ()]case ?\\\\(\|\\\\) ?like ?\\\\(\|\\\\bhaving ?[^\\\\s]+ ?[^\\\\w ]\|\\\\bif ?\\\\([\\\\d\\\\w] ?[=<>~])" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/22_SQL_SQLi.conf"] [line "33"] [id "211700"] [rev "8"] [msg "COMODO WAF: Detects conditional SQL injection attempts\|\|www.kountz.org\|F\|2"] [data "Matched Data: having found within MATCHED_VAR: kountz)))AND1GROUPBYCONCAT(0x42705952,(SELECT(ELT(2836=2836,1))),0x54574933,FLOOR(RAND(0)2))HAVINGMIN(0)"] [severity "CRITICAL"] [tag "CWAF"] [tag "SQLi"] [hostname "www.kountz.org"] [uri "/showrepo.php"] [unique_id "aUa5JZh99oyNeT-2S7mnCAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-05-05 06:37:35 (1 year ago)	WP Login Scan Activities	Web App Attack
Anonymous	2024-11-01 01:55:47 (1 year ago)	This IP was involved in an brute force and password spray attack on 2024/10/31 20:53:15	Port Scan Brute-Force Exploited Host Web App Attack
🇷🇺 sms.ru	2024-09-25 14:10:07 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
🇺🇸 TPI-Abuse	2024-07-26 16:12:42 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.66.210.228 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.66.210.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 26 12:12:36.677412 2024] [security2:error] [pid 17683:tid 17683] [client 45.66.210.228:24555] [client 45.66.210.228] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|nekstlevel.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "nekstlevel.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZqPK9Acf8LWqCgvEzJouyAAAAAE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2021-05-28 15:45:00 (5 years ago)	Credential Stuffing	Brute-Force
Anonymous	2020-12-07 03:58:18 (5 years ago)	botnet web app atack	Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 185.216.145.179

🇺🇸 34.53.94.8

🇸🇬 20.6.35.235

🇬🇧 213.171.208.62

🇨🇭 179.43.163.26

🇺🇸 172.172.237.185

🇺🇸 172.56.95.66

🇨🇳 117.34.85.169

🇮🇪 108.129.173.33

🇨🇳 106.53.10.16

🇸🇪 81.237.155.113

🇺🇸 65.49.1.103

🇺🇸 34.238.227.154

🇺🇸 138.197.34.107

🇰🇷 119.200.229.33

🇸🇬 118.139.164.171

🇺🇸 100.55.73.145

🇫🇷 91.231.89.207

🇫🇷 85.204.70.96

🇺🇸 64.62.197.57