JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 46.253.131.96

46.253.131.96 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	finegroupservers.com
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 46.253.131.96

Whois 46.253.131.96

IP Abuse Reports for 46.253.131.96:

This IP address has been reported a total of 6 times from 5 distinct sources. 46.253.131.96 was first reported on February 1st 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-12-17 20:50:53 (5 months ago)	(mod_security) mod_security (id:210350) triggered by 46.253.131.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 46.253.131.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 17 15:50:49.784710 2025] [security2:error] [pid 15835:tid 15835] [client 46.253.131.96:24623] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.powerastronomy.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.powerastronomy.com"] [uri "/Runequest/doku.php"] [unique_id "aUMXqRwJn25VIdCeD0C_xwAAAAo"], referer: http://www.powerastronomy.com/Runequest/doku.php?id=cat888_bet&do=register show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-07-19 04:50:48 (10 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack
🇮🇳 zam	2025-07-06 18:43:30 (11 months ago)	46.253.131.96 - - [06/Jul/2025:18:43:25 +0000] "POST /xmlrpc.php HTTP/1.1" 403 199	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-05-17 19:26:43 (1 year ago)	WP Login Scan Activities	Web App Attack
🇺🇸 TPI-Abuse	2025-03-10 01:20:10 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 46.253.131.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 46.253.131.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 09 21:20:06.625915 2025] [security2:error] [pid 3435:tid 3435] [client 46.253.131.96:39393] [client 46.253.131.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "martintommer.com"] [uri "/.env"] [unique_id "Z84-Ru_CwYfcDPvpKc-f7AAAABk"], referer: https://tasamm.com/about/mmm141.html show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2024-02-01 02:43:54 (2 years ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 202.183.141.133

🇪🇬 197.42.40.57

🇩🇪 194.88.98.122

🇧🇷 177.10.161.199

🇻🇪 170.81.145.238

🇨🇳 111.40.50.147

🇨🇳 111.40.50.146

🇺🇸 100.27.191.211

🇺🇸 91.230.168.251

🇺🇸 67.207.85.158

🇺🇸 66.132.172.155

🇧🇪 35.190.219.63

🇩🇪 213.209.159.225

🇺🇸 206.189.202.89

🇬🇧 193.163.125.99

🇺🇸 129.212.184.120

🇻🇳 116.99.171.179

🇨🇳 111.39.188.131

🇨🇳 111.39.37.114

🇰🇷 108.181.51.103