JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.136.26.242

45.136.26.242 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.136.26.242

Whois 45.136.26.242

IP Abuse Reports for 45.136.26.242:

This IP address has been reported a total of 12 times from 5 distinct sources. 45.136.26.242 was first reported on July 24th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-16 02:38:47 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.136.26.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.136.26.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 15 22:38:40.333778 2026] [security2:error] [pid 2317445:tid 2317445] [client 45.136.26.242:43941] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Danbury II/Stetson Bordeaux/originals/Thumbs.db"] [unique_id "aeBLsIy8CIVcCZncXz7fngAAAAM"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Danbury%20II/Stetson%20Bordeaux/originals/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-07 20:51:14 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 45.136.26.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 45.136.26.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 16:51:09.864049 2026] [security2:error] [pid 1492211:tid 1492211] [client 45.136.26.242:65235] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.belgiophar.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.belgiophar.com"] [uri "/"] [unique_id "adVuPQOKYpVZtP5LPfE-CQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-14 12:34:43 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 45.136.26.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 45.136.26.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 08:34:38.014696 2026] [security2:error] [pid 13638:tid 13638] [client 45.136.26.242:49701] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Golden-Technologies/pics/Golden Technologies 2009 Marketing CD/Lift Chairs/Comforter Series/Thumbs.db"] [unique_id "abVV3tCoyT926dzF4w0KCgAAAAs"], referer: https://vitalitywebb.com/backstore/Golden-Technologies/pics/Golden%20Technologies%202009%20Marketing%20CD/Lift%20Chairs/Comforter%20Series/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-28 02:25:36 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 45.136.26.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.136.26.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 27 21:25:29.944197 2026] [security2:error] [pid 22633:tid 22633] [client 45.136.26.242:32331] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|t9teaminnovations.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "t9teaminnovations.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aaJSGdUIT0St9qk3yPEPYwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-26 03:40:37 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 45.136.26.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.136.26.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 25 22:40:31.742692 2026] [security2:error] [pid 22133:tid 22133] [client 45.136.26.242:14675] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ashwoodsecurity.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ashwoodsecurity.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZ_Ar012Saa54o-XEqH7-gAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-02-04 03:45:06 (4 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇨🇭 backslash	2026-01-02 11:50:10 (5 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇮🇩 Burayot	2025-11-07 03:37:12 (6 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.136.26.242 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.136.26.242 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇳🇱 exxos	2025-11-01 12:03:01 (7 months ago)	HTTP1.x attacks	DDoS Attack
🇳🇱 exxos	2025-11-01 08:05:31 (7 months ago)	HTTP1.x attacks	DDoS Attack
🇺🇸 TPI-Abuse	2025-09-07 05:11:30 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 45.136.26.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 45.136.26.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 07 01:11:22.505945 2025] [security2:error] [pid 2941:tid 2941] [client 45.136.26.242:23841] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|surrenderhouse.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "surrenderhouse.com"] [uri "/about.html"] [unique_id "aL0T-tphWbI3oqHy_NUQCwAAACc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-07-24 12:18:00 (10 months ago)	Message meets Alert condition The following critical firewall event was detected: SSL VPN login fai ... show more Message meets Alert condition The following critical firewall event was detected: SSL VPN login fail. date=2025-07-23 time=18:27:42 devname=FortiGate-200F devid=FG200FT922906136 eventtime=1753313262169595368 tz="-0500" logid="0101039426" type="event" subtype="vpn" level="alert" vd="root" logdesc="SSL VPN login fail" action="ssl-login-fail" tunneltype="ssl-web" tunnelid=0 remip=45.136.26.242 srccountry="United States" user="ajackson" group="N/A" dst_host="N/A" reason="sslvpn_login_unknown_user" msg="SSL user failed to logged in" show less	VPN IP

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 195.230.103.243

🇺🇸 162.251.120.43

🇺🇸 162.216.149.49

🇺🇸 107.167.34.125

🇰🇷 106.251.244.178

🇰🇪 105.27.148.94

🇧🇾 86.57.173.115

🇨🇳 61.136.246.87

🇨🇳 39.175.51.58

🇳🇱 185.213.175.224

🇭🇰 8.217.193.233

🇧🇷 201.76.120.30

🇳🇱 195.178.110.30

🇬🇧 193.176.29.11

🇩🇪 167.94.146.56

🇮🇳 125.23.204.74

🇸🇬 114.119.136.254

🇷🇺 91.219.196.17

🇳🇱 45.156.87.216

🇨🇳 14.103.45.20