JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.145.131.38

45.145.131.38 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 12%: ?

12%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.145.131.38

Whois 45.145.131.38

IP Abuse Reports for 45.145.131.38:

This IP address has been reported a total of 21 times from 16 distinct sources. 45.145.131.38 was first reported on April 13th 2022, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-05-19 14:40:24 (1 month ago)	Fail2Ban banned 45.145.131.38 for security violations in jail wp-armour. Log: 2026/05/19 14:40:24 [e ... show more Fail2Ban banned 45.145.131.38 for security violations in jail wp-armour. Log: 2026/05/19 14:40:24 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 45.145.131.38 \| Target: wplogin" , client: 45.145.131.38, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "http://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 Baking333	2026-05-15 10:46:01 (1 month ago)	[redacted] 45.145.131.38 - - [15/May/2026:11:45:57 +0100] "GET /[redacted] HTTP/1.1" 302 1518 0/5245 ... show more [redacted] 45.145.131.38 - - [15/May/2026:11:45:57 +0100] "GET /[redacted] HTTP/1.1" 302 1518 0/52452 "https://[redacted]" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" [redacted] 45.145.131.38 - - [15/May/2026:11:45:59 +0100] "GET /wp-admin HTTP/1.1" 302 1517 0/39066 "https://[redacted]" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-01 08:37:35 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 45.145.131.38 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.145.131.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 01 04:37:10.435926 2026] [security2:error] [pid 22227:tid 22227] [client 45.145.131.38:21327] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.csm-dtc.com"] [uri "/wp-config.php.1"] [unique_id "afRmNtNNl_DaYcHnemWcwAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 13:06:03 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇦🇺 MAGIC	2025-11-26 01:09:19 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2025-10-15 23:08:00 (8 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-04 07:25:48 (8 months ago)	wordpress-trap	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-10-03 17:48:15 (8 months ago)	WP Admin Scan Activities	Web App Attack
Anonymous	2025-09-02 14:22:29 (9 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-08-15 04:01:31 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇧🇪 voormedia	2025-08-14 22:49:50 (10 months ago)	Accessed trap at '/xmlrpc.php'	Web App Attack
Anonymous	2025-02-25 17:56:01 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.02.25 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.02.25 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2024-12-04 15:08:39 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-12-01 04:53:31 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.145.131.38 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.145.131.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 30 23:53:26.872750 2024] [security2:error] [pid 6897:tid 6897] [client 45.145.131.38:11825] [client 45.145.131.38] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|palacio.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "palacio.org"] [uri "/wp-json/wp/v2/users"] [unique_id "Z0vrxpsp4iUeqFZE_ITYBgAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-11-16 22:39:49 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.145.131.38 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.145.131.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 16 17:39:42.027417 2024] [security2:error] [pid 3939:tid 3939] [client 45.145.131.38:23205] [client 45.145.131.38] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|webwzl.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "webwzl.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZzkfLuATkH2VLYgrVyZJaAAAAA0"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.173

🇯🇵 157.7.200.152

🇺🇸 216.25.89.125

🇧🇷 205.210.31.233

🇳🇱 203.55.131.3

🇧🇷 201.182.161.89

🇪🇨 193.30.14.164

🇧🇷 187.110.238.50

🇬🇧 185.247.137.67

🇫🇷 173.249.41.242

🇮🇩 160.187.165.58

🇨🇦 142.93.146.198

🇰🇷 110.10.176.51

🇺🇸 100.14.48.225

🇺🇸 98.88.62.16

🇺🇸 97.237.79.166

🇺🇸 66.132.172.216

🇳🇱 45.148.10.157

🇳🇱 45.148.10.121

🇺🇸 20.168.7.107