JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.145.128.41

45.145.128.41 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.145.128.41

Whois 45.145.128.41

IP Abuse Reports for 45.145.128.41:

This IP address has been reported a total of 16 times from 11 distinct sources. 45.145.128.41 was first reported on March 29th 2021, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-16 01:53:10 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.145.128.41 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.145.128.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 15 21:53:03.557047 2026] [security2:error] [pid 2268315:tid 2268315] [client 45.145.128.41:54989] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Damage/Thumbs.db"] [unique_id "aeBA_3f84LAy2Deiek8LigAAABQ"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Damage/ show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 Cognisant-Security	2026-03-10 14:58:00 (2 months ago)	Attempting to log in using invalid credentials	Web App Attack Hacking
🇨🇭 backslash	2026-02-10 03:50:05 (3 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇺🇸 nodepile	2026-01-31 01:56:36 (4 months ago)	Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/5series-sonar-led-tail-lights-e60- ... show more Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/5series-sonar-led-tail-lights-e60-p-5687.html ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.446.94 Safari/537.36') show less	Open Proxy VPN IP
🇺🇸 TPI-Abuse	2025-12-10 04:07:14 (5 months ago)	(mod_security) mod_security (id:210350) triggered by 45.145.128.41 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 45.145.128.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 23:07:05.812093 2025] [security2:error] [pid 25551:tid 25551] [client 45.145.128.41:11267] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.powerastronomy.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.powerastronomy.com"] [uri "/Runequest/doku.php"] [unique_id "aTjx6Sj_YBxQ-6EDXy7GKAAAAAI"], referer: http://www.powerastronomy.com/Runequest/doku.php?id=cat888_bet&do=register show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-12-05 06:40:05 (6 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-11-01 18:37:48 (7 months ago)	(mod_security) mod_security (id:210350) triggered by 45.145.128.41 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 45.145.128.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 01 14:37:41.634036 2025] [security2:error] [pid 23429:tid 23429] [client 45.145.128.41:13667] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.stringview.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.stringview.com"] [uri "/products/splitting-tools"] [unique_id "aQZTdSCPxV_MjK4KaQrH0gAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-25 05:49:26 (7 months ago)	(mod_security) mod_security (id:210350) triggered by 45.145.128.41 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 45.145.128.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 25 01:49:20.444086 2025] [security2:error] [pid 31909:tid 31909] [client 45.145.128.41:61383] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|local639.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "local639.com"] [uri "/local-news/"] [unique_id "aPxk4GdujSP6YnHgTyL8OwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-09-26 10:40:21 (8 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2025-08-14 19:16:45 (9 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇦🇺 MAGIC	2025-05-23 10:11:21 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇧🇪 voormedia	2025-05-13 05:40:55 (1 year ago)	Accessed trap at '/wp-login.php'	Web App Attack
Anonymous	2024-08-16 16:16:44 (1 year ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
🇩🇪 SCHAPPY	2023-07-27 10:59:04 (2 years ago)	IP was involved in L7 DDoS attack.	DDoS Attack
🇯🇵 Nanoniele	2021-06-03 01:02:45 (5 years ago)	Firefox/16.0; .cgi?c=4580%2F%2A%2A%2F%27%29%2F%2A%2A%2FOR%2F%2A%2A%2FUPDATEXML%285947%2CCONCAT%280x7 ... show more Firefox/16.0; .cgi?c=4580%2F%2A%2A%2F%27%29%2F%2A%2A%2FOR%2F%2A%2A%2FUPDATEXML%285947%2CCONCAT%280x73576156%2C%28SELECT%2F%2A%2A%2F%28ELT%282836%3D2836%2C1%29%29%29%2C0x58376e78%29%2C5431%29%2F%2A%2A%2FAND%2F%2A%2A%2F%28%276538%27%3D%276538 4580)ORUPDATEXML(5947,CONCAT(0x73576156,(SELECT(ELT(2836=2836,1))),0x58376e78),5431)AND(6538=6538 show less	SQL Injection

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.232

🇨🇳 111.173.159.215

🇨🇳 101.126.54.245

🇺🇸 67.233.159.235

🇳🇱 64.89.162.103

🇷🇴 2.57.121.112

🇺🇸 204.111.226.252

🇹🇿 196.46.97.129

🇳🇱 195.178.110.26

🇮🇳 122.168.123.73

🇨🇳 119.3.214.90

🇱🇻 80.89.77.61

🇯🇵 47.91.16.59

🇪🇸 46.6.124.216

🇬🇧 45.137.126.6

🇧🇪 198.235.24.164

🇺🇸 170.106.15.3

🇺🇸 162.216.149.42

🇺🇸 147.185.132.143

🇨🇳 123.145.23.231