JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.80.106.223

45.80.106.223 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 12%: ?

12%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.80.106.223

Whois 45.80.106.223

IP Abuse Reports for 45.80.106.223:

This IP address has been reported a total of 17 times from 10 distinct sources. 45.80.106.223 was first reported on April 14th 2022, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 MusicLibrary	2026-05-30 13:15:05 (1 week ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇩🇪 MusicLibrary	2026-05-26 04:50:17 (2 weeks ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇪🇸 el-brujo	2026-05-23 00:54:17 (2 weeks ago)	[Sat May 23 02:54:14.897058 2026] [proxy_fcgi:error] [pid 2283584:tid 2283685] [remote 45.80.106.223 ... show more [Sat May 23 02:54:14.897058 2026] [proxy_fcgi:error] [pid 2283584:tid 2283685] [remote 45.80.106.223:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com [Sat May 23 02:54:17.231584 2026] [proxy_fcgi:error] [pid 2273999:tid 2274034] [remote 45.80.106.223:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-28 05:36:38 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 45.80.106.223 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.80.106.223 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 28 00:36:33.479680 2026] [security2:error] [pid 27407:tid 27407] [client 45.80.106.223:50195] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|towlesilvapsychotherapy.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "towlesilvapsychotherapy.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aaJ-4UjLnbJgHMYhHtme2AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-26 22:04:37 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 45.80.106.223 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.80.106.223 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 26 17:04:32.462965 2026] [security2:error] [pid 3267:tid 3267] [client 45.80.106.223:45659] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|internetnameregistration.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "internetnameregistration.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aaDDcAak4Ep2rDe_WdIpXAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-26 19:07:30 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 45.80.106.223 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.80.106.223 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 26 14:07:22.309828 2026] [security2:error] [pid 6064:tid 6064] [client 45.80.106.223:41731] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|hischurchatwork.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "hischurchatwork.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aaCZ6g3xES-k3UIk-XWytwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 mrcrassi	2025-12-19 11:27:15 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/2 (POST method ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/2 (POST method) Endpoint: /wp-login.php UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-11-03 08:48:00 (7 months ago)	"Security violation, excess traffic against library/education infrastructure"	Brute-Force
🇩🇪 stinpriza	2025-09-08 14:02:33 (9 months ago)	Web App Attack	Web App Attack
🇳🇱 WeCloudit-Anti-Abuse	2025-06-20 17:30:07 (11 months ago)	WAF: Old style account creation and modification in Joomla! 2- wsit	Email Spam Brute-Force
🇳🇱 WeCloudit-Anti-Abuse	2025-06-18 00:20:09 (11 months ago)	WAF: Block Joomla registration spam 2- wsit	Email Spam Brute-Force
🇳🇱 WeCloudit-Anti-Abuse	2025-06-09 15:10:06 (11 months ago)	WAF: Block Joomla registration spam 2- wsit	Email Spam Brute-Force
🇳🇱 WeCloudit-Anti-Abuse	2025-06-01 22:40:09 (1 year ago)	WAF: Old style account creation and modification in Joomla! 2- wsit	Email Spam Brute-Force
🇪🇸 10dencehispahard SL	2025-05-14 05:24:34 (1 year ago)	WP probing for vulnerabilities	Hacking Exploited Host
🇳🇱 WeCloudit-Anti-Abuse	2025-05-05 17:00:53 (1 year ago)	WAF: Old style account creation and modification in Joomla! 2- wsit	Email Spam Brute-Force

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2600:1f18:3120:f501:bc5f:73b7:aa9d:721f

🇪🇹 196.189.236.162

🇳🇱 185.224.128.16

🇺🇸 147.93.128.224

🇫🇷 91.231.89.106

🇺🇸 91.230.168.211

🇫🇷 91.196.152.189

🇫🇷 91.196.152.112

🇫🇷 91.196.152.31

🇬🇧 87.236.176.103

🇺🇸 72.10.32.138

🇩🇪 69.5.169.152

🇰🇷 59.26.132.170

🇺🇸 52.180.146.145

🇮🇩 36.64.68.99

🇬🇧 35.203.210.107

🇺🇦 195.60.175.119

🇳🇱 176.65.139.41

🇵🇰 161.248.187.195

🇫🇷 92.222.108.108