JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.145.129.54

45.145.129.54 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 4%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.145.129.54

Whois 45.145.129.54

IP Abuse Reports for 45.145.129.54:

This IP address has been reported a total of 27 times from 15 distinct sources. 45.145.129.54 was first reported on December 2nd 2020, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-14 13:03:45 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 45.145.129.54 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.145.129.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 09:03:38.308872 2026] [security2:error] [pid 31217:tid 31217] [client 45.145.129.54:38911] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.step1nutrition.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.step1nutrition.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai6mqp4Wbp8GsTCZtq6nmAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-16 02:59:16 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 45.145.129.54 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.145.129.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 15 22:59:10.256862 2026] [security2:error] [pid 2340322:tid 2340322] [client 45.145.129.54:25291] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Hudson II/Vermont Bark/Loveseat/originals/Thumbs.db"] [unique_id "aeBQfsNgfPWHFjemE_zAAwAAAAM"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Hudson%20II/Vermont%20Bark/Loveseat/originals/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 tinect	2026-02-03 13:58:58 (4 months ago)	This IP was detected by CrowdSec triggering tinect/http-sensitive-file-probe	Web App Attack
Anonymous	2026-01-30 14:04:49 (4 months ago)	wordpress-trap	Web App Attack
🇨🇿 lp	2025-12-05 07:23:06 (6 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.145.129.54 2025-12-05T06:51:44+01: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.145.129.54 2025-12-05T06:51:44+01:00 vpn Access-Reject 'voicemail' station: 45.145.129.54 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-12-04 13:22:11 (6 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.145.129.54 2025-12-04T07:21:35+01: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.145.129.54 2025-12-04T07:21:35+01:00 vpn Access-Reject 'toshiba' station: 45.145.129.54 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-12-03 04:24:48 (6 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.145.129.54 2025-12-03T05:14:17+01: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.145.129.54 2025-12-03T05:14:17+01:00 vpn Access-Reject 'staff1' station: 45.145.129.54 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
Anonymous	2025-11-30 15:39:58 (6 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.11.30 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.11.30 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 Rip	2025-10-23 22:44:36 (7 months ago)	Authentication attack attempt. CMS Brute Force - Access Forbidden	Brute-Force Web App Attack
🇩🇪 iNetWorker	2025-06-23 03:29:52 (11 months ago)	trolling for resource vulnerabilities	Web App Attack
🇨🇭 backslash	2025-06-20 05:05:05 (11 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇺🇸 webgobe	2025-05-20 14:50:38 (1 year ago)	jow-Joomla User : try to access forms...	Hacking
🇺🇸 TPI-Abuse	2025-05-06 05:24:17 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 45.145.129.54 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.145.129.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 06 01:24:08.694393 2025] [security2:error] [pid 626637:tid 626637] [client 45.145.129.54:14563] [client 45.145.129.54] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Briarwood II/Stetson Bordeaux/originals/Thumbs.db"] [unique_id "aBmc-N4tWFSuQzgrSLmTwwAAAAk"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Briarwood%20II/Stetson%20Bordeaux/originals/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-12-01 09:16:59 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 45.145.129.54 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.145.129.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 01 04:16:52.390225 2024] [security2:error] [pid 3746778:tid 3746778] [client 45.145.129.54:52581] [client 45.145.129.54] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Golden-Technologies/pics/Golden Technologies 2009 Marketing CD/Luxury Beds/Standard Bed 3101/Thumbs.db"] [unique_id "Z0wphHqOFGfLKSgdE81M6QAAABU"], referer: https://vitalitywebb.com/backstore/Golden-Technologies/pics/Golden%20Technologies%202009%20Marketing%20CD/Luxury%20Beds/Standard%20Bed%203101/ show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 sms.ru	2024-09-22 17:40:06 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 157.92.145.135

🇩🇪 69.5.169.148

🇸🇬 47.245.90.174

🇸🇬 47.79.207.100

🇱🇹 45.227.254.170

🇬🇧 35.203.211.165

🇩🇪 213.209.159.226

🇮🇳 202.88.209.51

🇦🇷 181.28.101.14

🇩🇪 156.236.31.85

🇺🇸 143.42.1.52

🇹🇼 128.14.226.125

🇧🇩 103.4.146.121

🇸🇬 47.84.144.206

🇷🇴 2.57.121.112

🇺🇸 173.239.218.28

🇻🇳 171.231.214.101

🇮🇳 168.144.84.26

🇨🇳 163.179.39.100

🇹🇭 110.238.115.146