JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.80.106.179

45.80.106.179 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 24%: ?

24%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.80.106.179

Whois 45.80.106.179

IP Abuse Reports for 45.80.106.179:

This IP address has been reported a total of 39 times from 17 distinct sources. 45.80.106.179 was first reported on November 6th 2021, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Oakley	2026-06-02 16:58:30 (1 week ago)	(mod_security) mod_security (id:900177) triggered by 45.80.106.179 (IL/Israel/-): 5 in the last 900 ... show more (mod_security) mod_security (id:900177) triggered by 45.80.106.179 (IL/Israel/-): 5 in the last 900 secs show less	Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-05-20 20:36:01 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.80.106.179 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.80.106.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 16:35:54.842124 2026] [security2:error] [pid 22557:tid 22557] [client 45.80.106.179:35331] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stationrestaurant.ca"] [uri "/wp-config.php.bak"] [unique_id "ag4bKlPdGfthEO_7nlKHhwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 19:16:38 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.80.106.179 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.80.106.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 15:16:32.798589 2026] [security2:error] [pid 28917:tid 28917] [client 45.80.106.179:9027] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.bak" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mosheimlib.org"] [uri "/wp-config.bak"] [unique_id "ag4IkLOoXBdqMxFb6SIW9gAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 18:53:16 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.80.106.179 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.80.106.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 14:53:12.790070 2026] [security2:error] [pid 5427:tid 5564] [client 45.80.106.179:45395] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.east-lease.fibertechsystems.com"] [uri "/.wp-config.php.swp"] [unique_id "ag4DGEzVzfLdesdpwKoE7AAAAlU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 13:01:02 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 45.80.106.179 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.80.106.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 09:00:58.499531 2026] [security2:error] [pid 23022:tid 23022] [client 45.80.106.179:33415] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.dixiegeek.cosentient.com\|F\|2"] [data ".inc"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.dixiegeek.cosentient.com"] [uri "/wp-config.inc"] [unique_id "ag2wissjVcVkGnCFWSeh5AAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Lino Project	2026-05-16 14:11:05 (4 weeks ago)	45.80.106.179 - - [16/May/2026:16:11:04 +0200] "GET /.env.local HTTP/1.1" 403 3610 "-" "Mozilla/5.0 ... show more 45.80.106.179 - - [16/May/2026:16:11:04 +0200] "GET /.env.local HTTP/1.1" 403 3610 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-05-06 14:17:54 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 17-17.45.80.106.179.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 17-17.45.80.106.179.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-05-06 08:39:21 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 11-39.45.80.106.179.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 11-39.45.80.106.179.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇨🇭 4server	2026-04-30 20:09:37 (1 month ago)	[ThuApr3022:09:32.9976372026][security2:error][pid4107206:tid4107961][client45.80.106.179:0]ModSecur ... show more [ThuApr3022:09:32.9976372026][security2:error][pid4107206:tid4107961][client45.80.106.179:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\^/wp-content/plugins/[\^/] /\(readme\\\\\\\\.txt\\|changelog\\\\\\\\.txt\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"381\"][id\"960828\"][msg\"WordPresspluginenumerationblocked\"][hostname\"mondo-it.ch\"][uri\"/wp-content/plugins/acf-to-rest-api/readme.txt\"][unique_id\"afO2_JbaoKfgp5qd3XlNBQAAAEY\"] show less	Hacking Web App Attack
🇩🇪 stinpriza	2026-04-16 01:43:41 (1 month ago)	WP Authentication attempt for unknown user	Brute-Force Web App Attack
🇬🇧 relianoid.com	2026-01-16 04:35:59 (4 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇱🇻 garmtech.com	2026-01-15 13:43:00 (4 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 15-42.45.80.106.179.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 15-42.45.80.106.179.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:00:56 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 [email protected]	2025-10-27 00:05:44 (7 months ago)	Fail2Ban jail apache-json-scanners detected activity on 2025-10-27T00:05:44Z	Brute-Force
🇬🇧 relianoid.com	2025-10-02 19:27:51 (8 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇭 209.99.184.143

🇧🇷 205.210.31.195

🇺🇸 138.197.200.106

🇺🇸 100.26.144.232

🇶🇦 2600:1900:4260:40e::126

🇯🇵 222.224.231.243

🇩🇪 213.209.159.108

🇬🇧 193.176.29.23

🇪🇨 186.68.15.90

🇺🇸 172.234.217.129

🇸🇪 155.4.244.179

🇨🇳 123.245.100.10

🇨🇳 116.147.40.93

🇨🇳 106.63.6.210

🇨🇳 106.13.222.229

🇺🇸 104.131.181.244

🇫🇷 88.165.43.244

🇫🇷 85.217.140.22

🇳🇱 64.227.75.50

🇳🇱 45.148.10.151