JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.80.107.169

45.80.107.169 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 11%: ?

11%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.80.107.169

Whois 45.80.107.169

IP Abuse Reports for 45.80.107.169:

This IP address has been reported a total of 15 times from 10 distinct sources. 45.80.107.169 was first reported on March 5th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Victor López	2026-06-03 18:04:47 (1 week ago)	livingbalance.earth 45.80.107.169 - - [03/Jun/2026:13:04:45 -0500] "POST /xmlrpc.php HTTP/1.1" 405 1 ... show more livingbalance.earth 45.80.107.169 - - [03/Jun/2026:13:04:45 -0500] "POST /xmlrpc.php HTTP/1.1" 405 150 "-" "Wget/1.21.4" livingbalance.earth 45.80.107.169 - - [03/Jun/2026:13:04:46 -0500] "POST /xmlrpc.php HTTP/1.1" 405 150 "-" "curl/8.6.0" livingbalance.earth 45.80.107.169 - - [03/Jun/2026:13:04:46 -0500] "POST /xmlrpc.php HTTP/1.1" 405 150 "-" "Wget/1.21.4" ... show less	Hacking Web App Attack
🇬🇧 Oakley	2026-05-28 07:24:34 (2 weeks ago)	(mod_security) mod_security (id:900177) triggered by 45.80.107.169 (IL/Israel/-): 5 in the last 900 ... show more (mod_security) mod_security (id:900177) triggered by 45.80.107.169 (IL/Israel/-): 5 in the last 900 secs show less	Web App Attack Hacking
🇺🇸 island-freaks.com	2026-02-05 21:53:03 (4 months ago)	Attack Type: WordPress Exploit Bot attempt on /xmlrpc.php \| DNS 45.80.107.169 \| Agent: Mozilla/5.0 ( ... show more Attack Type: WordPress Exploit Bot attempt on /xmlrpc.php \| DNS 45.80.107.169 \| Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:146.0) Gecko/20100101 Firefox/146.0 show less	Port Scan Hacking Bad Web Bot Exploited Host Web App Attack
🇪🇸 el-brujo	2026-02-05 13:35:46 (4 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:146.0) Gecko/20100101 Firefox/146.0 Action: managed_challenge Source: firewallManaged ASN Description: BTTGROUP-AS Country: US Method: POST Timestamp: 2026-02-05T13:35:46Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇮🇹 Rosh	2026-02-03 15:03:51 (4 months ago)	[02/03/26 16:03:51] 1 attack: /xmlrpc.php (severity 6);	Web App Attack
🇮🇩 Burayot	2025-12-20 19:13:11 (5 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.80.107.169 (IL/Israel/-): 1 in t ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.80.107.169 (IL/Israel/-): 1 in the last 3600 secs show less	Web App Attack
🇮🇩 Burayot	2025-12-18 13:25:20 (5 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.80.107.169 (IL/Israel/-): 1 in t ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.80.107.169 (IL/Israel/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2025-10-08 00:38:10 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 45.80.107.169 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 45.80.107.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Oct 07 20:38:04.570101 2025] [security2:error] [pid 29162:tid 29162] [client 45.80.107.169:18355] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.flatchestedmama.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.flatchestedmama.com"] [uri "/"] [unique_id "aOWybJQWU5c15qECJEzniQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇳 wizard1411	2025-05-31 17:42:56 (1 year ago)	DDoS and brute force activity detected	Brute-Force SSH
🇮🇳 wizard1411	2025-05-31 17:42:56 (1 year ago)	DDoS and brute force activity detected	Brute-Force SSH
🇮🇳 wizard1411	2025-05-31 17:42:56 (1 year ago)	DDoS and brute force activity detected	Brute-Force SSH
🇮🇳 wizard1411	2025-05-31 17:42:56 (1 year ago)	DDoS and brute force activity detected	Brute-Force SSH
🇨🇦 wil.com	2025-05-31 00:27:47 (1 year ago)	GlobalProtect login attempts with user drivera.	VPN IP Brute-Force
🇺🇸 ChamberofCommerce.com	2024-03-27 23:20:13 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 TPI-Abuse	2024-03-05 11:46:55 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 45.80.107.169 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.80.107.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 05 06:46:49.298765 2024] [security2:error] [pid 29817] [client 45.80.107.169:10547] [client 45.80.107.169] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kingstoneproperties.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kingstoneproperties.com"] [uri "/[email protected]"] [unique_id "ZecGKX9asEm6RdXVFpkzqQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 107.174.82.77

🇨🇳 101.96.192.45

🇺🇸 91.230.168.213

🇻🇳 45.124.95.102

🇺🇸 34.86.112.150

🇬🇧 193.32.209.242

🇺🇸 173.255.223.103

🇫🇷 173.249.10.85

🇺🇸 162.216.150.135

🇸🇬 128.199.231.249

🇨🇳 124.221.163.189

🇨🇳 124.88.113.144

🇺🇸 108.6.249.123

🇺🇸 96.126.98.168

🇧🇬 91.191.209.74

🇺🇸 52.224.109.126

🇺🇸 49.51.50.147

🇺🇸 35.247.51.237

🇺🇸 23.95.62.90

🇿🇦 13.247.129.27