JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.136.27.130

45.136.27.130 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 4%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.136.27.130

Whois 45.136.27.130

IP Abuse Reports for 45.136.27.130:

This IP address has been reported a total of 9 times from 8 distinct sources. 45.136.27.130 was first reported on September 27th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 london2038.com	2026-06-11 20:45:19 (2 days ago)	Detected by WP fail2ban 2026-06-11T22:45:18.852873+02:00 wordpress: Authentication attempt from 45.1 ... show more Detected by WP fail2ban 2026-06-11T22:45:18.852873+02:00 wordpress: Authentication attempt from 45.136.27.130 show less	Brute-Force Web App Attack
🇨🇿 ptlab	2026-04-02 00:45:17 (2 months ago)	Detected wp_login attack from WP-host.	Hacking Web App Attack
🇩🇪 MusicLibrary	2026-03-23 19:12:36 (2 months ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇮🇩 BPS-StatisticsIndonesia	2026-03-17 16:09:11 (2 months ago)	XML RPC Scan Activities: "2026-03-17T23:09:11.449+07:00" "/xmlrpc.php" "45.136.27.130" "Chrome/98.8 ... show more XML RPC Scan Activities: "2026-03-17T23:09:11.449+07:00" "/xmlrpc.php" "45.136.27.130" "Chrome/98.8 Safari/538.58" show less	Web App Attack Brute-Force
🇮🇪 Coolnagour	2026-03-17 13:43:26 (2 months ago)	http-probing: /xmlrpc.php	Web App Attack
🇱🇻 garmtech.com	2026-03-06 00:38:05 (3 months ago)	Attempted access to sensitive endpoint (/xmlrpc.php) detected. Automated scan or unauthorized probin ... show more Attempted access to sensitive endpoint (/xmlrpc.php) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-01 17:54:09 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 45.136.27.130 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.136.27.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 01 13:54:03.814720 2025] [security2:error] [pid 27363:tid 27363] [client 45.136.27.130:49317] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|macryder.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "macryder.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQZJO7tkB9ETsATzy5ZRPQAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-01 10:25:05 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 45.136.27.130 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 45.136.27.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 01 06:24:59.661876 2025] [security2:error] [pid 24470:tid 24470] [client 45.136.27.130:59289] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|dcsteven.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "dcsteven.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQXf-6k0zDRMI_TkKxtisgAAABA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 fbarela	2025-09-27 20:00:34 (8 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 185.92.25.76

🇬🇧 185.92.25.69

🇨🇦 138.197.163.192

🇨🇳 123.160.223.74

🇮🇩 103.191.14.210

🇻🇳 103.127.207.14

🇳🇱 85.11.167.7

🇧🇷 201.2.140.186

🇦🇷 179.49.124.164

🇫🇮 147.185.133.184

🇨🇳 112.53.123.118

🇧🇩 103.120.202.26

🇸🇬 101.127.101.225

🇨🇳 101.67.124.181

🇨🇦 85.217.149.14

🇰🇷 59.26.193.177

🇺🇸 47.88.59.71

🇨🇦 34.19.238.15

🇨🇦 20.151.217.54

🇨🇳 210.22.149.155