JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 145.132.100.177

145.132.100.177 was found in our database!

This IP was reported 106 times. Confidence of Abuse is 76%: ?

76%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 145.132.100.177

Whois 145.132.100.177

IP Abuse Reports for 145.132.100.177:

This IP address has been reported a total of 106 times from 47 distinct sources. 145.132.100.177 was first reported on July 19th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Axel	2026-06-16 05:36:24 (1 week ago)	Blocked by UFW on MVI [80/tcp] \| SPT: 8321 \| TTL: 49 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com ... show more Blocked by UFW on MVI [80/tcp] \| SPT: 8321 \| TTL: 49 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-10 20:01:50 (2 weeks ago)	tcp port scan (16 or more attempts)	Port Scan
🇬🇧 D3monite	2026-06-10 18:42:36 (2 weeks ago)	Attempted Brute Force (whostmgrd)	Brute-Force
🇸🇰 EVISION	2026-06-10 18:27:03 (2 weeks ago)	Automatic report from EV firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Reporti ... show more Automatic report from EV firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Reporting ID: 3z1UFfyHALDs7tovFXGQiPb72Uqw0zWm show less	Port Scan Hacking Brute-Force
Anonymous	2026-06-10 18:20:50 (2 weeks ago)	Jun 10 14:20:49 localhost kernel: [109460950.125632] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:9 ... show more Jun 10 14:20:49 localhost kernel: [109460950.125632] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=145.132.100.177 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=40 ID=11230 DF PROTO=TCP SPT=4504 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 Jun 10 14:20:49 localhost kernel: [109460950.125653] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=145.132.100.177 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=40 ID=11230 DF PROTO=TCP SPT=4504 DPT=2087 SEQ=3530038635 ACK=0 WINDOW=64240 RES=0x00 SYN URGP=0 OPT (020405A00402080A95EFDDED000000000103030A) Jun 10 14:20:49 localhost kernel: [109460950.127584] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=145.132.100.177 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=39 ID=20106 DF PROTO=TCP SPT=4833 DPT=2083 WINDOW=64240 RES=0x00 SYN URGP=0 Jun 10 14:20:49 localhost kernel: [109460950.132958] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f show less	Port Scan
🇺🇸 Starburst SysOp Team	2026-06-10 18:17:25 (2 weeks ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-iad5-2)	Hacking Bad Web Bot
🇨🇦 Roper123	2026-06-10 17:42:53 (2 weeks ago)	Web exploits	Hacking Web App Attack
🇫🇷 dynamix	2026-06-10 16:38:29 (2 weeks ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 16:25:06 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 145.132.100.177 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 145.132.100.177 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 12:24:59.011055 2026] [security2:error] [pid 4728:tid 4728] [client 145.132.100.177:5109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.157"] [uri "/.git/HEAD"] [unique_id "aimP2w-WQo8UXFkxx2olpgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-10 15:50:41 (2 weeks ago)	Unauthorized access (tcp/443/https)	Port Scan Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 15:45:57 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 145.132.100.177 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 145.132.100.177 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 11:45:50.699866 2026] [security2:error] [pid 22208:tid 22234] [client 145.132.100.177:5956] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.81"] [uri "/.git/HEAD"] [unique_id "aimGrtcqV9rOfKI5d1iZJwAAAVU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dispaisyenterprises	2026-06-10 15:45:52 (2 weeks ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 2087 [4], 2083 [1], 2082 [1], 2086 ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 2087 [4], 2083 [1], 2082 [1], 2086 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇯🇵 jay hung	2026-06-05 07:15:45 (3 weeks ago)	2026-06-05T07:15:44.242048+00:00 quarktech kernel: [478585.043766] [UFW BLOCK] IN=eth0 OUT= MAC=22:0 ... show more 2026-06-05T07:15:44.242048+00:00 quarktech kernel: [478585.043766] [UFW BLOCK] IN=eth0 OUT= MAC=22:00:92:2e:84:93:fe:ff:ff:ff:ff:ff:08:00 SRC=145.132.100.177 DST=172.237.20.248 LEN=40 TOS=0x00 PREC=0x00 TTL=104 ID=1 DF PROTO=TCP SPT=57354 DPT=443 WINDOW=0 RES=0x00 ACK RST URGP=0 ... show less	Port Scan
🇦🇹 urnilxfgbez	2026-06-03 22:45:00 (3 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇫🇮 TrafficAnalyser	2026-06-03 08:05:17 (3 weeks ago)	Port scanning	Port Scan

Showing 1 to 15 of 106 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇩 43.246.202.68

🇺🇸 216.24.210.56

🇩🇪 213.209.159.226

🇺🇸 144.172.100.174

🇸🇬 43.106.0.204

🇿🇦 41.242.161.210

🇧🇼 41.223.73.247

🇿🇦 41.56.186.135

🇪🇬 41.33.98.56

🇺🇸 20.115.45.115

🇸🇬 212.73.148.42

🇵🇱 194.180.48.39

🇫🇷 185.177.72.50

🇷🇴 141.98.83.48

🇬🇧 87.236.176.214

🇫🇷 85.217.140.20

🇳🇱 81.19.216.111

🇧🇼 41.223.73.175

🇲🇦 41.142.160.190

🇬🇧 35.203.210.98