JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.145.131.218

45.145.131.218 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.145.131.218

Whois 45.145.131.218

IP Abuse Reports for 45.145.131.218:

This IP address has been reported a total of 17 times from 10 distinct sources. 45.145.131.218 was first reported on April 3rd 2022, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-03-11 19:42:15 (2 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2026-02-25 14:07:16 (3 months ago)	VPN password spraying	Brute-Force
🇺🇸 TPI-Abuse	2026-01-23 00:22:27 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 45.145.131.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 45.145.131.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 19:22:20.071849 2026] [security2:error] [pid 23694:tid 23694] [client 45.145.131.218:49221] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|tech-servusa.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "tech-servusa.com"] [uri "/"] [unique_id "aXK_PP5s-avEd3EKgGbSYwAAAA4"], referer: https://www.facebook.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-01-02 12:10:07 (5 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇩🇪 HandyTreff.de	2025-12-08 16:43:02 (6 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -38.036 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -38.036 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.650.15 show less	Bad Web Bot Web App Attack
Anonymous	2025-10-09 21:17:16 (7 months ago)	Forum/form spam	Web Spam
🇨🇿 lp	2025-08-18 15:21:43 (9 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.145.131.218 2025-08-18T17:02:39+02 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.145.131.218 2025-08-18T17:02:39+02:00 vpn Access-Reject 'felecia' station: 45.145.131.218 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-08-18 06:22:42 (9 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.145.131.218 2025-08-18T07:32:40+02 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.145.131.218 2025-08-18T07:32:40+02:00 vpn Access-Reject 'devona' station: 45.145.131.218 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-08-17 16:50:53 (9 months ago)	Unauthorized VPN login attempts: 3 attempts were recorded from 45.145.131.218 2025-08-17T17:52:41+02 ... show more Unauthorized VPN login attempts: 3 attempts were recorded from 45.145.131.218 2025-08-17T17:52:41+02:00 vpn Access-Reject 'info' station: 45.145.131.218 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-08-17T17:55:06+02:00 vpn Access-Reject 'security' station: 45.145.131.218 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-08-17T17:56:17+02:00 vpn Access-Reject 'helpdesk' station: 45.145.131.218 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-10-06 15:20:26 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.145.131.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.145.131.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Oct 06 11:20:20.386131 2024] [security2:error] [pid 19578:tid 19578] [client 45.145.131.218:56407] [client 45.145.131.218] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|tell-me-first.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "tell-me-first.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZwKqtHvClSJMfOqmXbNVGgAAAAc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 sms.ru	2024-09-29 03:35:05 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
Anonymous	2024-09-10 10:09:40 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-09-07 03:08:42 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.145.131.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.145.131.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 06 23:08:34.571576 2024] [security2:error] [pid 28923:tid 28923] [client 45.145.131.218:49033] [client 45.145.131.218] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|barriebrown.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "barriebrown.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZtvDsrbflzp8Cz86kiNPMQAAAAc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-08-10 07:44:22 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-08-04 15:12:51 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.145.131.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 45.145.131.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 11:12:45.675031 2024] [security2:error] [pid 22795:tid 22795] [client 45.145.131.218:51399] [client 45.145.131.218] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|phlippo.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "phlippo.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zq-abWtorDU9Ss_fcGeYNQAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 102.211.152.138

🇺🇸 100.48.102.41

🇱🇹 62.60.130.129

🇮🇳 49.47.71.12

🇺🇸 45.74.252.77

🇮🇪 2a05:d018:10df:d401:31e9:47c1:1083:a845

🇰🇷 222.110.147.58

🇩🇪 213.209.159.56

🇹🇼 198.235.24.51

🇧🇷 191.253.105.30

🇺🇸 162.216.149.105

🇵🇱 95.214.53.157

🇫🇷 91.231.89.242

🇨🇳 39.98.42.180

🇨🇳 14.29.170.54

🇲🇽 187.211.209.169

🇨🇳 180.184.43.90

🇺🇦 176.103.7.197

🇮🇹 172.253.228.150

🇦🇺 172.236.35.120