JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.80.107.49

45.80.107.49 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 9%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.80.107.49

Whois 45.80.107.49

IP Abuse Reports for 45.80.107.49:

This IP address has been reported a total of 12 times from 11 distinct sources. 45.80.107.49 was first reported on March 25th 2023, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-15 20:06:01 (2 weeks ago)	Blocked: Reason='Possible SQL injection activity (328/60 min)'; Requests=328	SQL Injection
🇺🇸 TPI-Abuse	2026-04-29 01:24:31 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 45.80.107.49 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 45.80.107.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 21:24:24.294313 2026] [security2:error] [pid 5808:tid 5808] [client 45.80.107.49:58925] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.backstore.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.backstore.com"] [uri "/backstore/mediflow-water-pillow.htm"] [unique_id "afFdyKYwoqxF_LkP1poO8QAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 london2038.com	2026-02-24 22:19:54 (3 months ago)	Detected by WP fail2ban 2026-02-24T23:19:53.037408+01:00 wordpress: Authentication attempt from 45.8 ... show more Detected by WP fail2ban 2026-02-24T23:19:53.037408+01:00 wordpress: Authentication attempt from 45.80.107.49 show less	Brute-Force Web App Attack
🇮🇩 Burayot	2026-01-29 09:31:39 (4 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.80.107.49 (IL/Israel/-): 1 in th ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.80.107.49 (IL/Israel/-): 1 in the last 3600 secs show less	Web App Attack
🇫🇷 Baking333	2026-01-16 12:20:02 (4 months ago)	[redacted] 45.80.107.49 - - [16/Jan/2026:13:19:58 +0100] "GET /[redacted] HTTP/1.1" 302 1518 0/22034 ... show more [redacted] 45.80.107.49 - - [16/Jan/2026:13:19:58 +0100] "GET /[redacted] HTTP/1.1" 302 1518 0/22034 "https://[redacted]" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" [redacted] 45.80.107.49 - - [16/Jan/2026:13:20:00 +0100] "GET /[redacted] HTTP/1.1" 302 1517 0/37252 "https://[redacted]" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-25 02:49:35 (5 months ago)	(mod_security) mod_security (id:210350) triggered by 45.80.107.49 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 45.80.107.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 24 21:49:27.808201 2025] [security2:error] [pid 24349:tid 24349] [client 45.80.107.49:18155] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|michaelgardner.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "michaelgardner.com"] [uri "/"] [unique_id "aUymN_ExdxjLOfDpWWrDLwAAAAQ"], referer: https://www.facebook.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nationaleventpros.com	2025-11-02 18:42:56 (7 months ago)	WordPress login attempt	Brute-Force
Anonymous	2025-10-16 00:33:10 (7 months ago)	wordpress-trap	Web App Attack
🇫🇷 oonux.net	2025-04-26 11:46:20 (1 year ago)	RouterOS: Scanning detected TCP 45.80.107.49:55287 > x.x.x.x:10443	Port Scan
Anonymous	2024-12-20 11:23:50 (1 year ago)	Attempted brute force login to web vpn	Hacking Brute-Force
🇷🇺 sms.ru	2024-09-23 22:40:06 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
🇺🇸 PentiumKnight	2023-03-25 15:00:00 (3 years ago)	Lazy probing - attempting RDP access across a set of servers from the same ISP	Brute-Force

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.253.251.155

🇫🇮 147.185.133.152

🇩🇪 213.209.159.56

🇨🇴 190.242.109.42

🇮🇳 152.58.185.55

🇺🇸 150.136.214.177

🇨🇳 120.48.140.232

🇬🇧 87.236.176.4

🇺🇸 66.132.172.113

🇺🇸 45.156.129.164

🇳🇱 45.148.10.147

🇷🇴 2.57.121.25

🇺🇸 172.203.241.222

🇵🇭 49.145.38.8

🇳🇱 45.198.224.5

🇺🇸 20.171.8.156

🇰🇷 222.232.176.7

🇺🇸 170.106.181.163

🇸🇬 101.47.156.21

🇺🇸 64.62.156.39