JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.145.128.218

45.145.128.218 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 26%: ?

26%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.145.128.218

Whois 45.145.128.218

IP Abuse Reports for 45.145.128.218:

This IP address has been reported a total of 27 times from 17 distinct sources. 45.145.128.218 was first reported on May 21st 2021, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-03 05:04:40 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 45.145.128.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.145.128.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 01:04:34.845037 2026] [security2:error] [pid 32108:tid 32108] [client 45.145.128.218:46223] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Logan 3014/Thumbs.db"] [unique_id "ah-14l-1_1_n3WJ8vDWpVgAAAAg"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Logan%203014/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-05-17 07:18:09 (2 weeks ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
🇱🇻 garmtech.com	2026-05-15 22:02:10 (2 weeks ago)	IM360 WAF: SQL Injection via WordPress Link functionality MV:7')aND//6904=UtL_iNAdDr.gEt_hoSt_namE ... show more IM360 WAF: SQL Injection via WordPress Link functionality MV:7')aND//6904=UtL_iNAdDr.gEt_hoSt_namE((SeLeCt/**/chR(126) show less	SQL Injection
🇺🇸 stechusa	2026-05-06 14:20:52 (4 weeks ago)	ELEVATED_THREAT \| country=IL \| ASN=PureVoltage Hosting Inc. \| 20 facet requests/minute (threshold: 2 ... show more ELEVATED_THREAT \| country=IL \| ASN=PureVoltage Hosting Inc. \| 20 facet requests/minute (threshold: 20) \| 49 IPs targeting /category.html \| Facet request during elevated threat (facet_ratio=0.85, unique_ips=231) show less	Bad Web Bot DDoS Attack
🇺🇸 stechusa	2026-05-06 14:20:52 (4 weeks ago)	[Askari] \| country=IL \| Behavior: Concurrent page load during attack, No referrer on deep pages, HTT ... show more [Askari] \| country=IL \| Behavior: Concurrent page load during attack, No referrer on deep pages, HTTP/1.1 over TLS, HTTP/1.1 only, Automated crawling show less	Bad Web Bot DDoS Attack
🇩🇪 MusicLibrary	2026-04-06 15:10:07 (1 month ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇪🇸 el-brujo	2026-03-30 05:17:33 (2 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:140.0) Gecko/20100101 Firefox/140.0 Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: POST Timestamp: 2026-03-30T05:17:33Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇩🇪 MusicLibrary	2026-03-27 10:54:00 (2 months ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇧🇪 voormedia	2026-03-24 09:20:22 (2 months ago)	Accessed trap at '/xmlrpc.php'	Web App Attack
🇪🇸 el-brujo	2026-03-23 05:17:16 (2 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWe ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWebKit/539.39 (KHTML, like Gecko111) Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: POST Timestamp: 2026-03-23T05:17:16Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-03-22 22:29:48 (2 months ago)	XML RPC Scan Activities: "2026-03-23T05:29:48.472+07:00" "/xmlrpc.php" "45.145.128.218" "Mozilla/5.0 ... show more XML RPC Scan Activities: "2026-03-23T05:29:48.472+07:00" "/xmlrpc.php" "45.145.128.218" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:140.0) Gecko/20100101 Firefox/140.0" show less	Web App Attack Brute-Force
🇮🇩 BPS-StatisticsIndonesia	2026-03-21 22:52:38 (2 months ago)	XML RPC Scan Activities: "2026-03-22T05:52:38.368+07:00" "/xmlrpc.php" "45.145.128.218" "Mozilla/5.0 ... show more XML RPC Scan Activities: "2026-03-22T05:52:38.368+07:00" "/xmlrpc.php" "45.145.128.218" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:143.0) Gecko/20100101 Firefox/143.0" show less	Web App Attack Brute-Force
🇮🇩 BPS-StatisticsIndonesia	2026-03-17 13:11:30 (2 months ago)	XML RPC Scan Activities: "2026-03-17T20:11:30.159+07:00" "/xmlrpc.php" "45.145.128.218" "Chrome/92.2 ... show more XML RPC Scan Activities: "2026-03-17T20:11:30.159+07:00" "/xmlrpc.php" "45.145.128.218" "Chrome/92.2 Safari/532.52" show less	Web App Attack Brute-Force
🇩🇪 MusicLibrary	2026-03-09 05:24:22 (2 months ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-12 02:55:32 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 45.145.128.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 45.145.128.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 11 21:55:25.135882 2026] [security2:error] [pid 3130:tid 3130] [client 45.145.128.218:11991] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|elpasoheroes.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "elpasoheroes.com"] [uri "/"] [unique_id "aWRinTHANIJQgGIFTjUPmwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 68.183.22.192

🇸🇬 43.156.212.86

🇸🇬 194.5.82.143

🇪🇨 177.234.209.102

🇺🇸 170.187.165.242

🇭🇰 154.221.28.214

🇨🇳 123.55.159.68

🇨🇳 106.13.69.159

🇨🇳 58.42.204.29

🇳🇱 45.148.10.183

🇳🇱 45.148.10.67

🇮🇳 202.141.83.255

🇺🇸 173.252.95.115

🇭🇰 152.32.254.89

🇨🇳 117.34.85.168

🇺🇸 107.172.80.207

🇳🇱 45.148.10.147

🇩🇪 212.132.120.41

🇨🇭 209.99.189.168

🇬🇧 193.163.125.163