JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.136.24.125

45.136.24.125 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 3%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.136.24.125

Whois 45.136.24.125

IP Abuse Reports for 45.136.24.125:

This IP address has been reported a total of 7 times from 5 distinct sources. 45.136.24.125 was first reported on October 12th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-21 16:57:24 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.136.24.125 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.136.24.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 12:57:17.083242 2026] [security2:error] [pid 26922:tid 26922] [client 45.136.24.125:19715] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eye7graphics.com"] [uri "/.wp-config.php.swp"] [unique_id "ag85bZwfIQi-TX6aD9mGQQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 21:18:05 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 45.136.24.125 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.136.24.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 17:18:00.726050 2026] [security2:error] [pid 15451:tid 15451] [client 45.136.24.125:51781] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|altoshp.com\|F\|2"] [data ".inc"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "altoshp.com"] [uri "/wp-config.inc"] [unique_id "ag4lCHRUp1qjSENGCoeYVwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 20:49:05 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.136.24.125 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.136.24.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 16:48:57.858627 2026] [security2:error] [pid 9101:tid 9101] [client 45.136.24.125:26899] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "test.kbalan.com"] [uri "/.wp-config.php.swp"] [unique_id "ag4eOf89D6E4JRfN10pGOAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-01-25 08:50:50 (4 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇨🇦 wil.com	2025-11-15 16:17:00 (6 months ago)	GlobalProtect login attempts with user robertbrowm32057.	VPN IP Brute-Force
🇨🇭 backslash	2025-11-11 20:45:31 (6 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2025-10-12 06:58:10 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.12 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.12 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 147.185.133.86

🇰🇷 59.12.160.91

🇺🇸 34.193.119.44

🇺🇸 13.86.115.189

🇺🇸 108.190.201.84

🇮🇳 103.171.12.220

🇺🇸 74.48.56.130

🇰🇷 59.15.58.148

🇱🇹 45.227.254.170

🇳🇱 45.156.87.166

🇺🇸 23.23.137.202

🇰🇷 210.183.21.53

🇺🇸 208.87.242.137

🇷🇴 162.249.125.150

🇺🇸 162.216.150.135

🇮🇹 151.25.5.62

🇸🇬 148.66.142.9

🇻🇳 103.143.207.18

🇮🇹 5.91.105.20

🇵🇰 154.57.216.142