JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.145.129.161

45.145.129.161 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.145.129.161

Whois 45.145.129.161

IP Abuse Reports for 45.145.129.161:

This IP address has been reported a total of 25 times from 12 distinct sources. 45.145.129.161 was first reported on December 2nd 2020, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-22 06:08:12 (3 months ago)	(mod_security) mod_security (id:210350) triggered by 45.145.129.161 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 45.145.129.161 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 01:08:08.061407 2026] [security2:error] [pid 6812:tid 6812] [client 45.145.129.161:47137] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|plazahacienda.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "plazahacienda.com"] [uri "/"] [unique_id "aZqdSLsKMyX1zFB_cu3l8gAAABE"], referer: https://www.facebook.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-10 10:34:18 (5 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2025-11-19 04:31:02 (6 months ago)	(mod_security) mod_security (id:210350) triggered by 45.145.129.161 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 45.145.129.161 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 18 23:30:59.098717 2025] [security2:error] [pid 8782:tid 8801] [client 45.145.129.161:18639] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.churchstjoseph.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.churchstjoseph.org"] [uri "/rg-parish-staff"] [unique_id "aR1IA3rKA8FfmRkZ2HaREgAAAIE"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 syokadmin	2025-10-04 10:56:56 (8 months ago)	45.145.129.161 (US/United States/-), more than 2 Apache 403 hits in the last 3600 secs	Brute-Force
🇨🇭 backslash	2025-05-10 04:56:47 (1 year ago)		Bad Web Bot
🇺🇸 TPI-Abuse	2025-05-06 04:59:26 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 45.145.129.161 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.145.129.161 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 06 00:59:18.796844 2025] [security2:error] [pid 600638:tid 600638] [client 45.145.129.161:28341] [client 45.145.129.161] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Himolla-ZeroStress-Recliner/Images/Chester/Thumbs.db"] [unique_id "aBmXJlx8ocopTwhcKVXfkAAAAAU"], referer: https://vitalitywebb.com/backstore/Himolla-ZeroStress-Recliner/Images/Chester/ show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2025-01-31 23:08:29 (1 year ago)	Triggered Cloudflare WAF (firewallCustom) from IL. Action taken: MANAGED_CHALLENGE ASN: 26548 (PUREV ... show more Triggered Cloudflare WAF (firewallCustom) from IL. Action taken: MANAGED_CHALLENGE ASN: 26548 (PUREVOLTAGE-INC) Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod Timestamp: 2025-01-31T23:03:57Z Ray ID: 90ad5687ee2b753c UA: Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:114.0) Gecko/20100101 Firefox/114.0 Report generated by Cloudflare-WAF-To-AbuseIPDB: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-01-24 22:15:11 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2025-01-20 12:10:28 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2025-01-19 07:30:10 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2025-01-17 06:20:09 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
🇺🇸 TPI-Abuse	2024-12-01 09:11:25 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 45.145.129.161 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.145.129.161 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 01 04:11:17.517075 2024] [security2:error] [pid 3744539:tid 3744539] [client 45.145.129.161:20025] [client 45.145.129.161] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Golden-Technologies/pics/Golden Technologies 2009 Marketing CD/Power Chairs/Compass HD/Thumbs.db"] [unique_id "Z0woNdsnbz8Cz8CL8I4nOgAAAAQ"], referer: https://vitalitywebb.com/backstore/Golden-Technologies/pics/Golden%20Technologies%202009%20Marketing%20CD/Power%20Chairs/Compass%20HD/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-11-18 16:50:12 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2024-11-04 03:00:18 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
🇨🇦 wil.com	2024-10-29 15:09:20 (1 year ago)	GlobalProtect login attempts with user vcservice.	VPN IP Brute-Force

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.253

🇵🇾 181.94.233.26

🇨🇦 168.138.90.7

🇫🇮 147.185.133.164

🇪🇸 94.73.51.72

🇭🇰 20.2.83.149

🇨🇳 14.103.117.86

🇳🇱 185.223.235.8

🇦🇷 179.42.161.153

🇺🇸 162.216.150.156

🇺🇸 148.163.100.164

🇨🇳 125.77.133.94

🇮🇳 115.247.96.118

🇭🇰 103.229.125.106

🇫🇷 89.92.230.64

🇺🇸 40.78.155.180

🇺🇸 34.169.181.18

🇵🇰 205.164.148.48

🇨🇳 202.112.47.54

🇪🇨 201.183.254.108