JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.80.106.159

45.80.106.159 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 1%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.80.106.159

Whois 45.80.106.159

IP Abuse Reports for 45.80.106.159:

This IP address has been reported a total of 18 times from 12 distinct sources. 45.80.106.159 was first reported on September 19th 2023, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-05-08 10:24:38 (4 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 13-24.45.80.106.159.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 13-24.45.80.106.159.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
Anonymous	2025-08-21 12:44:10 (9 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇲🇽 licjperezl	2025-06-05 18:03:46 (11 months ago)	Ataque de diccionario o DDoS en nuestros servicios en linea	Brute-Force
🇮🇳 wizard1411	2025-05-31 15:06:40 (1 year ago)	DDoS and brute force activity detected	Brute-Force SSH
🇮🇳 wizard1411	2025-05-31 15:06:40 (1 year ago)	DDoS and brute force activity detected	Brute-Force SSH
🇮🇳 wizard1411	2025-05-31 15:06:40 (1 year ago)	DDoS and brute force activity detected	Brute-Force SSH
🇮🇳 wizard1411	2025-05-31 15:06:40 (1 year ago)	DDoS and brute force activity detected	Brute-Force SSH
Anonymous	2024-12-09 18:55:07 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-12-03 06:43:14 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.80.106.159 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.80.106.159 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 03 01:43:10.041576 2024] [security2:error] [pid 27977:tid 27977] [client 45.80.106.159:27857] [client 45.80.106.159] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|anus.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "anus.net"] [uri "/wp-json/wp/v2/users"] [unique_id "Z06ofqIx0o7saRVcNk9T-AAAAAI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-11-12 04:24:30 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.80.106.159 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.80.106.159 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 11 23:24:24.145469 2024] [security2:error] [pid 31294:tid 31294] [client 45.80.106.159:29735] [client 45.80.106.159] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|sahinozalit.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sahinozalit.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZzLYeA05ShQI4QGggyEcVAAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 wil.com	2024-09-24 01:44:31 (1 year ago)	GlobalProtect login attempts with user tmoon.	VPN IP Brute-Force
🇬🇧 essinghigh	2024-08-06 09:39:33 (1 year ago)	1722937172 # Service_probe # SIGNATURE_SEND # source_ip:45.80.106.159 # dst_port:3553 ...	Port Scan
🇬🇧 essinghigh	2024-07-30 18:22:42 (1 year ago)	1722363760 # Service_probe # SIGNATURE_SEND # source_ip:45.80.106.159 # dst_port:1605 ...	Port Scan
🇩🇪 Admins@FBN	2024-04-10 04:25:22 (2 years ago)	VPN Logon Failed: AAA user authentication Rejected user = <test.user>	Brute-Force Exploited Host
🇺🇸 VSM Networks	2024-02-29 06:47:04 (2 years ago)	Credential Stuffing	Brute-Force

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇿 213.230.88.179

🇧🇴 200.110.60.197

🇹🇿 196.249.98.178

🇲🇽 189.219.225.37

🇺🇿 188.113.201.141

🇪🇨 186.4.240.226

🇳🇱 185.242.226.67

🇽🇰 178.175.10.182

🇷🇺 176.115.125.221

🇺🇸 162.243.147.237

🇺🇸 162.216.150.5

🇩🇿 154.250.208.254

🇩🇿 154.121.101.32

🇰🇿 149.27.11.1

🇺🇸 147.185.132.159

🇨🇳 117.175.69.6

🇨🇳 110.249.202.20

🇨🇮 105.235.97.6

🇲🇷 102.216.218.221

🇰🇿 95.82.88.24