JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.145.131.80

45.145.131.80 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 23%: ?

23%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.145.131.80

Whois 45.145.131.80

IP Abuse Reports for 45.145.131.80:

This IP address has been reported a total of 31 times from 17 distinct sources. 45.145.131.80 was first reported on December 11th 2020, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-21 17:20:02 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.145.131.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.145.131.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 13:19:55.595024 2026] [security2:error] [pid 6022:tid 6022] [client 45.145.131.80:65379] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bigheartskitchen.lahamradio.com"] [uri "/wp-config.php.save"] [unique_id "ag8-u5K5wlg5-jMSuSxYlQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-21 15:58:44 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.145.131.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.145.131.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 11:58:36.620378 2026] [security2:error] [pid 25532:tid 25532] [client 45.145.131.80:51763] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jazziiafoundation.org"] [uri "/wp-config.php.bak"] [unique_id "ag8rrB1IOYh-kbmfxeteZwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 18:51:39 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.145.131.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.145.131.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 14:51:33.649867 2026] [security2:error] [pid 3226:tid 3226] [client 45.145.131.80:26585] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.txt" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "raintechgutters.com"] [uri "/wp-config.txt"] [unique_id "ag4CtXODAhezpyQ0c_APLwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 16:13:05 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.145.131.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.145.131.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 12:12:58.542299 2026] [security2:error] [pid 10444:tid 10444] [client 45.145.131.80:47819] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.txt" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.hawaiivacations.com.kh6jim.com"] [uri "/wp-config.txt"] [unique_id "ag3diuCVp83UN0NuIRsubgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 13:25:22 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.145.131.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.145.131.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 09:24:57.519557 2026] [security2:error] [pid 8789:tid 8789] [client 45.145.131.80:11247] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.benkatkin.passy.us"] [uri "/wp-config.php.bak"] [unique_id "ag22KQRtCJXNSKL2R3CYrQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 ddw	2026-05-19 15:51:45 (2 weeks ago)	ModSecurity detection - Rules: 949110(Inbound Anomaly Score Exceeded (Total Score: 10))	Web App Attack
Anonymous	2026-05-04 08:10:30 (1 month ago)	45.145.131.80 - - [04/May/2026:16:10:29 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4581 "-" "Mozilla/5.0 ... show more 45.145.131.80 - - [04/May/2026:16:10:29 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4581 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇨🇭 4server	2026-04-30 20:09:49 (1 month ago)	[ThuApr3022:09:43.5471062026][security2:error][pid4107214:tid4107945][client45.145.131.80:0]ModSecur ... show more [ThuApr3022:09:43.5471062026][security2:error][pid4107214:tid4107945][client45.145.131.80:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\^/wp-content/plugins/[\^/] /\(readme\\\\\\\\.txt\\|changelog\\\\\\\\.txt\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"381\"][id\"960828\"][msg\"WordPresspluginenumerationblocked\"][hostname\"mondo-it.ch\"][uri\"/wp-content/plugins/all-in-one-seo-pack/readme.txt\"][unique_id\"afO3B_2TkPf0MlDvGtRvmwAAAMg\"] show less	Hacking Web App Attack
🇭🇺 DumaNet	2026-04-16 09:36:00 (1 month ago)	WordPress plugin attack attempts. Date: 2026 Apr 15. 22:43:25 Source IP: 45.145.131.80 Portion ... show more WordPress plugin attack attempts. Date: 2026 Apr 15. 22:43:25 Source IP: 45.145.131.80 Portion of the log(s): 45.145.131.80 - [15/Apr/2026:22:43:22 +0200] "GET /wp-admin/admin-ajax.php HTTP/1.1" 400 11 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.2 Safari/605.1.15" 45.145.131.80 - [15/Apr/2026:22:43:22 +0200] "GET /wp-content/uploads/wc-logs/ HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.2 Safari/605.1.15" 45.145.131.80 - [15/Apr/2026:22:43:22 +0200] "GET /wp-content/mysql.sql HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.2 Safari/605.1.15" 45.145.131.80 - [15/Apr/2026:22:43:22 +0200] "GET /composer.json HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.2 Safari/605.1.15" 45.145.131.80 - [15/Apr/2026:22:43:22 show less	Web App Attack Hacking
🇲🇹 Malta	2026-04-15 22:26:31 (1 month ago)	45.145.131.80 - - [16/Apr/2026:00:26:31 +0200] "HEAD /wp-login.php?action=register HTTP/1.1" "Mozill ... show more 45.145.131.80 - - [16/Apr/2026:00:26:31 +0200] "HEAD /wp-login.php?action=register HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.2 Safari/605.1.15" show less	Hacking Web App Attack VPN IP
🇵🇱 sefinek.net	2025-12-24 03:49:13 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇵🇱 sefinek.net	2025-12-15 17:36:28 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Linux x86_64; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇭 backslash	2025-11-20 07:25:05 (6 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇩🇪 Jochen Pretli	2025-08-15 07:35:02 (9 months ago)	connection to honeypot	Email Spam Port Scan
Anonymous	2025-08-07 21:22:50 (10 months ago)	wordpress-trap	Web App Attack

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 118.193.61.14

🇨🇳 111.228.36.44

🇷🇺 89.109.49.27

🇱🇹 81.30.98.144

🇺🇸 38.141.252.55

🇸🇬 34.21.228.45

🇳🇱 185.223.235.55

🇨🇳 183.150.182.250

🇸🇬 152.32.218.30

🇭🇰 118.26.37.26

🇱🇹 81.30.98.158

🇧🇬 78.128.113.22

🇺🇸 54.211.4.123

🇨🇳 43.226.39.182

🇺🇸 40.124.174.209

🇳🇱 5.253.59.68

🇧🇪 198.235.24.139

🇳🇱 176.65.148.96

🇺🇸 165.232.150.119

🇰🇷 112.151.178.49