JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.145.131.231

45.145.131.231 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.145.131.231

Whois 45.145.131.231

IP Abuse Reports for 45.145.131.231:

This IP address has been reported a total of 13 times from 7 distinct sources. 45.145.131.231 was first reported on November 24th 2021, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-12-26 10:47:08 (5 months ago)	(mod_security) mod_security (id:210350) triggered by 45.145.131.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 45.145.131.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 26 05:47:01.755941 2025] [security2:error] [pid 15981:tid 15981] [client 45.145.131.231:25025] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|russellzone.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "russellzone.com"] [uri "/"] [unique_id "aU5npc097ijsDNhrsGARpAAAAAY"], referer: https://www.facebook.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-07 03:45:17 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 45.145.131.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.145.131.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 06 22:45:11.737577 2025] [security2:error] [pid 21151:tid 21151] [client 45.145.131.231:19493] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|gamepart.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "gamepart.com"] [uri "/home/tancedi1/gamepart.com"] [unique_id "aQ1rR-s8TnmZZFNwXFFTdQAAAAs"], referer: http://gamepart.com/home/tancedi1/gamepart.com show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2025-11-06 20:38:44 (6 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.145.131.231 (IL/Israel/-): 1 in ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.145.131.231 (IL/Israel/-): 1 in the last 3600 secs show less	Web App Attack
🇩🇪 on-com	2025-07-02 10:16:21 (11 months ago)	URL scan	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-05-06 05:15:47 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 45.145.131.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.145.131.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 06 01:15:39.943729 2025] [security2:error] [pid 615212:tid 615212] [client 45.145.131.231:55191] [client 45.145.131.231] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Longhorn II/Havana Brown/Thumbs.db"] [unique_id "aBma-4zhskAbPLFjB8SgiAAAAAs"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Longhorn%20II/Havana%20Brown/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-03-22 06:48:24 (1 year ago)		Bad Web Bot
🇨🇦 wil.com	2024-09-23 09:18:49 (1 year ago)	GlobalProtect login attempts with user dburks.	VPN IP Brute-Force
Anonymous	2024-08-14 03:37:11 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-05-24 01:33:10 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 45.145.131.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 45.145.131.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 23 21:33:03.283049 2024] [security2:error] [pid 26000] [client 45.145.131.231:28769] [client 45.145.131.231] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Cordoba/Thumbs.db"] [unique_id "Zk_uT7yl3AohswQv-8-3bQAAABE"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Cordoba/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Ba-Yu	2024-05-15 08:47:03 (2 years ago)	WP-xmlrpc exploit	Web Spam Blog Spam Hacking Exploited Host Web App Attack
🇨🇭 backslash	2023-01-11 12:18:50 (3 years ago)	honeypot	Bad Web Bot
🇨🇭 backslash	2021-12-26 00:30:42 (4 years ago)	honeypot, robots.txt	Bad Web Bot
🇨🇭 backslash	2021-11-24 07:10:58 (4 years ago)	honeypot, robots.txt	Bad Web Bot

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.128

🇭🇰 150.5.169.176

🇻🇺 138.226.239.12

🇨🇳 110.249.201.248

🇨🇭 104.251.180.119

🇺🇸 104.243.42.167

🇧🇬 78.128.114.22

🇧🇬 78.128.112.6

🇺🇸 66.132.186.215

🇯🇵 43.165.170.119

🇬🇧 35.203.210.9

🇰🇷 14.63.196.175

🇺🇸 3.88.219.42

🇨🇳 110.249.201.215

🇨🇳 101.126.81.144

🇺🇸 64.62.197.182

🇳🇱 45.142.193.161

🇲🇽 45.134.9.27

🇬🇧 193.176.29.23

🇦🇪 132.243.122.204