JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 145.132.101.192

145.132.101.192 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 51%: ?

51%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 145.132.101.192

Whois 145.132.101.192

IP Abuse Reports for 145.132.101.192:

This IP address has been reported a total of 38 times from 33 distinct sources. 145.132.101.192 was first reported on July 20th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Starburst SysOp Team	2026-06-03 07:26:15 (3 weeks ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-mnz6-5)	Hacking Bad Web Bot
🇳🇱 tpjg	2026-06-03 07:18:02 (3 weeks ago)	Automated: 15 requests with error status in 120s window from 145.132.101.192. Evidence: /backup.sql: ... show more Automated: 15 requests with error status in 120s window from 145.132.101.192. Evidence: /backup.sql:301,/.htpasswd:301,/config.php:301,/.DS_Store:301,/actuator/env:301,/server-status:301,/phpinfo.php:301,/.aws/credentials:301,/wp-config.php.bak:301,/wp-config.php:301,/.env.save:301,/.env.backup:301,/.env.local:301,/.env:301,/.git/config:301 show less	Web App Attack
🇺🇸 gu-alvareza	2026-06-03 07:05:29 (3 weeks ago)	Spring.Boot.Actuator.Unauthorized.Access	Brute-Force
🇧🇾 lns.bz	2026-06-03 06:54:38 (3 weeks ago)	Too many 404 requests [BY]	Web App Attack
🇧🇪 sid3windr	2026-06-03 06:49:37 (3 weeks ago)	GET /.git/HEAD (Tarpitted for , wasted 120B)	Web App Attack
🇩🇪 Skyrider	2026-06-03 06:01:17 (3 weeks ago)	crowdsecurity/http-sensitive-files	Hacking
🇬🇧 PeravixGroup	2026-06-03 05:43:17 (3 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇳🇱 SysAdmin Dylan	2026-06-03 05:34:54 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 145.132.101.192 (US/United States/-): 10 in the ... show more (mod_security) mod_security (id:210730) triggered by 145.132.101.192 (US/United States/-): 10 in the last 3600 secs show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-03 05:13:04 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 145.132.101.192 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 145.132.101.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 01:12:59.692086 2026] [security2:error] [pid 5899:tid 5899] [client 145.132.101.192:45122] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.13"] [uri "/.git/HEAD"] [unique_id "ah-32xRNRFlxi1L_yC6pfgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 zwebvigil	2026-06-03 04:33:02 (3 weeks ago)	145.132.101.192 [02/Jun/2026:21:32:57 -0700] "GET /.git/HEAD HTTP/1.1" 401 381 "-" port=45345 "Mozi ... show more 145.132.101.192 [02/Jun/2026:21:32:57 -0700] "GET /.git/HEAD HTTP/1.1" 401 381 "-" port=45345 "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15" "-" "-" "<ipaddr>" 914 145.132.101.192 [02/Jun/2026:21:32:58 -0700] "GET /.git/config HTTP/1.1" 401 381 "-" port=44629 "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" "-" "-" "<ipaddr>" 615 145.132.101.192 [02/Jun/2026:21:32:59 -0700] "GET /.env HTTP/1.1" 401 381 "-" port=44634 "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" "-" "-" "<ipaddr>" 639 145.132.101.192 [02/Jun/2026:21:33:00 -0700] "GET /.env.local HTTP/1.1" 401 381 "-" port=45340 "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" "-" "-" "<ipaddr>" 450 145.132.101.192 [02/Jun/2026:21:33:01 -0700] "GET /.env.product show less	Web App Attack
🇺🇸 RAP	2026-06-03 03:18:30 (3 weeks ago)	2026-06-03 03:18:30 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇳🇱 Savvii	2026-06-03 03:05:32 (3 weeks ago)	15 attempts against mh-modsecurity-ban on tilia	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 02:42:38 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 145.132.101.192 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 145.132.101.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 22:42:27.214483 2026] [security2:error] [pid 6748:tid 6748] [client 145.132.101.192:44407] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.224"] [uri "/.git/HEAD"] [unique_id "ah-UkwU3QkV69K7yemuUFQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-03 02:29:41 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-06-02 06:28:22 (3 weeks ago)	tcp/8848 (2 or more attempts)	Port Scan

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 211.22.166.107

🇳🇱 193.176.31.250

🇧🇴 181.115.166.19

🇸🇦 176.224.177.203

🇳🇱 91.92.241.196

🇫🇷 85.217.140.50

🇸🇬 47.82.11.56

🇺🇸 34.24.233.16

🇯🇴 212.34.12.231

🇬🇧 193.163.125.189

🇲🇽 187.213.83.131

🇳🇱 185.93.89.147

🇭🇰 152.32.135.48

🇺🇸 135.237.126.72

🇦🇷 132.255.8.212

🇨🇳 123.191.159.153

🇮🇳 117.247.69.76

🇬🇧 101.36.97.74

🇸🇦 84.8.104.116

🇷🇴 80.94.92.55