JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.80.107.192

45.80.107.192 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.80.107.192

Whois 45.80.107.192

IP Abuse Reports for 45.80.107.192:

This IP address has been reported a total of 26 times from 12 distinct sources. 45.80.107.192 was first reported on September 9th 2021, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Bytemark	2026-01-30 22:49:07 (4 months ago)	45.80.107.192 - - [30/Jan/2026:22:49:05 +0000] "POST /xmlrpc.php HTTP/1.1" 404 47 "-" "curl/8.6.0" 4 ... show more 45.80.107.192 - - [30/Jan/2026:22:49:05 +0000] "POST /xmlrpc.php HTTP/1.1" 404 47 "-" "curl/8.6.0" 45.80.107.192 - - [30/Jan/2026:22:49:06 +0000] "POST /xmlrpc.php HTTP/1.1" 404 47 "-" "curl/8.6.0" 45.80.107.192 - - [30/Jan/2026:22:49:06 +0000] "POST /xmlrpc.php HTTP/1.1" 404 47 "-" "Wget/1.21.4" show less	Brute-Force Web App Attack
Anonymous	2026-01-26 09:55:02 (4 months ago)	wordpress-trap	Web App Attack
🇺🇸 [email protected]	2025-11-23 01:02:18 (6 months ago)	Fail2Ban jail apache-json-scanners detected activity on 2025-11-23T01:02:18Z	Brute-Force
🇺🇸 [email protected]	2025-11-23 00:03:18 (6 months ago)	Fail2Ban jail apache-json-scanners detected activity on 2025-11-23T00:03:18Z	Brute-Force
🇩🇪 f2_IT	2025-10-29 22:40:34 (7 months ago)	SSLVPN Login attempt (blocked type h) from 45.80.107.192	Brute-Force
🇺🇸 TPI-Abuse	2025-10-09 15:06:29 (7 months ago)	(mod_security) mod_security (id:210350) triggered by 45.80.107.192 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 45.80.107.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 09 11:06:22.052581 2025] [security2:error] [pid 15044:tid 15044] [client 45.80.107.192:49679] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|wizind.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "wizind.com"] [uri "/"] [unique_id "aOfPbqL27SsxP90wZeOQbgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-06 20:20:41 (9 months ago)	(mod_security) mod_security (id:210730) triggered by 45.80.107.192 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.80.107.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 06 16:20:35.756818 2025] [security2:error] [pid 11398:tid 11398] [client 45.80.107.192:17183] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Hudson II/Thumbs.db"] [unique_id "aLyXk5xDrFDg49Ur6lAxjgAAAAI"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Hudson%20II/ show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-07-13 04:03:28 (10 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-06-21 01:20:45 (11 months ago)	(mod_security) mod_security (id:210730) triggered by 45.80.107.192 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.80.107.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 20 21:20:40.028682 2025] [security2:error] [pid 3059225:tid 3059225] [client 45.80.107.192:27783] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Steelcase/pics/Criterion Plus/Thumbs.db"] [unique_id "aFYI6CIw9aH6O2nxsTZH3AAAAAg"], referer: https://vitalitywebb.com/backstore/Steelcase/pics/Criterion%20Plus/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-05-24 01:55:04 (1 year ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇦🇺 MAGIC	2025-05-06 05:06:31 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-04-20 23:18:03 (1 year ago)	(mod_security) mod_security (id:217280) triggered by 45.80.107.192 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:217280) triggered by 45.80.107.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 20 19:17:59.641993 2025] [security2:error] [pid 1823:tid 1823] [client 45.80.107.192:50081] [client 45.80.107.192] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?:\\\\n\|\\\\r)+(?:get\|post\|head\|options\|connect\|put\|delete\|trace\|propfind\|propatch\|mkcol\|copy\|move\|lock\|unlock)\\\\s+" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "137"] [id "217280"] [rev "6"] [msg "COMODO WAF: HTTP Request Smuggling Attack\|\|www.hawarcenter.com\|F\|2"] [data "Matched Data: get found within MATCHED_VAR"] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "www.hawarcenter.com"] [uri "/"] [unique_id "aAWApweeKADU60MC_PCUnQAAAA8"], referer: http://www.hawarcenter.com/?page_id=336 show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-04-18 04:34:35 (1 year ago)	(From [email protected]) Reach out to 100M contact forms now. ++ Visit https://bit.ly ... show more (From [email protected]) Reach out to 100M contact forms now. ++ Visit https://bit.ly/submitbulkforms now As you read this, millions of others will be receiving your message. Highly targeted outreach at massive scale for unbeatable rates. - Reach out to businesses at scale - Drive sales, leads, and partnerships - Get your message delivered to millions for as low as $22 Skyrocket your business now! ++ Visit https://bit.ly/submitbulkforms now In case you choose to opt-out of subsequent emails from me, kindly visit the following link: bit. ly/plsremovefrom Sudurlandsbraut 76, Reykjavik, CA, USA, 105 show less	Phishing Web Spam
Anonymous	2025-04-17 10:06:05 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 nowyouknow	2025-04-15 02:12:00 (1 year ago)	Malicious Traffic/Form Submission	Phishing Web Spam

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 172.253.236.216

🇳🇱 45.142.193.9

🇺🇸 43.130.26.197

🇮🇩 36.64.131.68

🇺🇸 20.64.97.136

🇮🇪 20.13.164.162

🇨🇳 14.103.46.139

🇺🇸 172.174.211.122

🇫🇮 147.185.133.196

🇮🇳 103.91.246.101

🇨🇳 101.89.141.184

🇳🇱 81.19.216.80

🇺🇸 64.62.197.189

🇳🇱 45.148.10.141

🇬🇧 35.203.211.150

🇬🇧 217.146.80.111

🇰🇷 211.104.166.110

🇬🇧 193.163.125.122

🇬🇧 193.163.125.59

🇻🇳 171.244.141.86