JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.128.123.214

45.128.123.214 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 2%: ?

ISP	Spark for Information Technology Services Ltd
Usage Type	Fixed Line ISP
ASN	AS208570
Domain Name	rahmatele.com
Country	🇮🇶 Iraq
City	Ramadi, Anbar

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.128.123.214

Whois 45.128.123.214

IP Abuse Reports for 45.128.123.214:

This IP address has been reported a total of 17 times from 13 distinct sources. 45.128.123.214 was first reported on May 4th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-04 19:05:33 (2 weeks ago)	(mod_security) mod_security (id:217210) triggered by 45.128.123.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:217210) triggered by 45.128.123.214 (-): 1 in the last 300 secs; Ports: ; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 15:05:25.398759 2026] [security2:error] [pid 8389:tid 8389] [client 45.128.123.214:35900] ModSecurity: Access denied with code 403 (phase 2). Match of "rx ^(?i:(?:[a-z]{3,10}\\\\s+(?:\\\\w{3,7}?://[\\\\w\\\\-\\\\./](?::\\\\d+)?)?/[^?#](?:\\\\?[^#\\\\s])?(?:#[\\\\S])?\|connect (?:\\\\d{1,3}\\\\.){3}\\\\d{1,3}\\\\.?(?::\\\\d+)?\|options \\\\)\\\\s+[\\\\w\\\\./]+\|get /[^?#](?:\\\\?[^#\\\\s])?(?:#[\\\\S]*)?)$" against "REQUEST_LINE" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "114"] [id "217210"] [rev "1"] [msg "COMODO WAF: Invalid HTTP Request Line\|\|top22pull.online\|F\|4"] [data "GET http://top22pull.online HTTP/1.1"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "top22pull.online"] [uri "/"] [unique_id "aiHMdcoaMQ-JcutxSjJmqAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 ketovoila.pl	2026-04-19 13:23:57 (2 months ago)	ketovoila.pl HONEYPOT traffic: count=1, paths=1; sample_path=ketovoila.pl/xmlrpc.php; UA=Opera/8.21. ... show more ketovoila.pl HONEYPOT traffic: count=1, paths=1; sample_path=ketovoila.pl/xmlrpc.php; UA=Opera/8.21.(Windows NT 5.2; ht-HT) Presto/2.9.172 Version/10.00; window=2026-04-19T13:12:54Z..2026-04-19T13:12:54Z show less	Hacking Brute-Force
🇬🇧 AvonleaConsulting	2026-04-06 22:59:44 (2 months ago)	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	Bad Web Bot Web App Attack
🇬🇧 AvonleaConsulting	2026-04-06 08:30:15 (2 months ago)	Unrecognised attack	IoT Targeted
🇺🇸 kosada.com	2026-03-30 09:41:44 (2 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 johnkarlhill	2026-03-28 15:38:27 (2 months ago)	WebKnight blocked malicious web request on johnkarlhill.com	Brute-Force SSH
🇮🇹 VHosting	2026-03-26 19:57:50 (2 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇮🇹 A000Z	2026-03-18 00:59:20 (3 months ago)	Fail2Ban: 45.128.123.214 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5 ... show more Fail2Ban: 45.128.123.214 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36 show less	Bad Web Bot
🇨🇦 1gz	2025-12-25 16:17:44 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from IQ. Action taken: CHALLENGE Protocol: HTTP/3 (GET met ... show more Triggered Cloudflare WAF (firewallCustom) from IQ. Action taken: CHALLENGE Protocol: HTTP/3 (GET method) Endpoint: /auth/login UA: Mozilla/5.0 (iPad; CPU OS 18_5 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Brave/1 Mobile/15E148 Safari/604.1 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-05 10:08:39 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 45.128.123.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.128.123.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:08:36.379362 2025] [security2:error] [pid 27337:tid 27337] [client 45.128.123.214:60880] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.justinrudd.com\|F\|2"] [data ".bonpetsupply.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.justinrudd.com"] [uri "/www.bonpetsupply.com"] [unique_id "aTKvJB5kJkqwNfHJavUUywAAABA"], referer: https://www.justinrudd.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-26 12:54:52 (6 months ago)	scanning http requests from known botnet	Web App Attack
🇸🇬 mypatricks	2025-11-22 19:45:21 (6 months ago)	45.128.123.214 \| Port: 13651 \| DNS: 45.128.123.214 2025-11-23T03:45:36+08:00 Asia/Baghdad \| Bad Beha ... show more 45.128.123.214 \| Port: 13651 \| DNS: 45.128.123.214 2025-11-23T03:45:36+08:00 Asia/Baghdad \| Bad Behavior Activity \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36 HTTP/1.1 443 GET \| URL: /golf-irons-birthday-cake-for-loved-men/?AUD \| Ref: - \| Country: IQ/Iraq/+03:00 IP City: Ramadi 9a2aed1ec792ed2a-MXP/Milan, Italy 1 hits/0 secs Robots 2 show less	Web Spam Blog Spam Brute-Force Exploited Host Web App Attack
🇳🇱 exxos	2025-08-27 08:03:01 (9 months ago)	Attacks with Bad user agents	Hacking
🇳🇱 exxos	2025-07-31 03:11:05 (10 months ago)	http-no-verb	Hacking
🇺🇸 ph	2024-06-26 21:04:26 (1 year ago)	Bad web bot attempting to run wp-login.php on non-WP site	Hacking Bad Web Bot Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇬 193.24.211.107

🇺🇸 2604:a880:400:d1:0:4:9e79:1

🇮🇳 2400:6180:100:d0::3ab1:1

🇨🇭 209.99.185.195

🇹🇼 198.235.24.64

🇳🇱 176.65.139.99

🇧🇷 168.90.65.197

🇮🇳 135.235.138.43

🇧🇷 118.26.105.144

🇮🇳 116.74.77.163

🇭🇰 104.28.156.225

🇹🇷 88.248.250.143

🇺🇸 66.132.195.86

🇦🇷 186.5.180.176

🇫🇮 178.20.210.208

🇨🇳 171.83.60.120

🇺🇸 159.223.193.255

🇰🇷 118.33.119.34

🇨🇳 114.221.136.195

🇳🇱 45.198.224.120