JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.136.24.201

45.136.24.201 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.136.24.201

Whois 45.136.24.201

IP Abuse Reports for 45.136.24.201:

This IP address has been reported a total of 6 times from 4 distinct sources. 45.136.24.201 was first reported on July 8th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-28 04:16:19 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 45.136.24.201 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.136.24.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 27 23:16:12.069401 2026] [security2:error] [pid 20693:tid 20693] [client 45.136.24.201:31317] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|thenutritionfixhollysprings.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "thenutritionfixhollysprings.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aaJsDBlVaIhsRqf2lLuvPAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-25 23:11:57 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 45.136.24.201 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.136.24.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 25 18:11:52.270317 2026] [security2:error] [pid 2074:tid 2074] [client 45.136.24.201:42511] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|brainwavecenters.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "brainwavecenters.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZ-BuHith7xg0PmUPHw37AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-11-17 16:50:28 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-09-12 19:28:23 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 45.136.24.201 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 45.136.24.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 12 15:28:18.552566 2025] [security2:error] [pid 14179:tid 14179] [client 45.136.24.201:42225] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|anniversarynapkins.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "anniversarynapkins.com"] [uri "/"] [unique_id "aMR0Usfie4yq3ixZ99avLgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 lp	2025-08-29 16:52:07 (9 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.136.24.201 2025-08-29T18:36:05+02: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.136.24.201 2025-08-29T18:36:05+02:00 vpn Access-Reject 'scan' station: 45.136.24.201 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
Anonymous	2025-07-08 11:07:00 (11 months ago)	Message meets Alert condition The following critical firewall event was detected: SSL VPN login fai ... show more Message meets Alert condition The following critical firewall event was detected: SSL VPN login fail. date=2025-07-07 time=18:18:59 devname=FortiGate-200F devid=FG200FT922906136 eventtime=1751930339122992717 tz="-0500" logid="0101039426" type="event" subtype="vpn" level="alert" vd="root" logdesc="SSL VPN login fail" action="ssl-login-fail" tunneltype="ssl-web" tunnelid=0 remip=45.136.24.201 srccountry="United States" user="spfarm" group="N/A" dst_host="N/A" reason="sslvpn_login_unknown_user" msg="SSL user failed to logged in" show less	VPN IP

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 168.100.149.50

🇧🇬 79.124.62.134

🇱🇹 45.227.254.170

🇮🇳 217.216.58.127

🇨🇱 200.89.69.247

🇨🇳 180.169.102.2

🇹🇷 176.43.141.45

🇺🇸 168.100.149.231

🇸🇬 165.245.185.69

🇨🇳 112.228.97.52

🇳🇵 103.186.196.132

🇺🇿 87.192.231.139

🇸🇬 45.82.78.100

🇨🇳 39.156.169.240

🇬🇧 35.203.211.241

🇺🇸 34.71.30.159

🇲🇳 202.72.242.139

🇺🇸 195.184.76.194

🇰🇷 175.213.118.146

🇺🇸 168.100.149.31