JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.136.27.49

45.136.27.49 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 7%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.136.27.49

Whois 45.136.27.49

IP Abuse Reports for 45.136.27.49:

This IP address has been reported a total of 4 times from 3 distinct sources. 45.136.27.49 was first reported on October 28th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-28 05:55:17 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.136.27.49 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 45.136.27.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 01:55:10.306083 2026] [security2:error] [pid 16312:tid 16312] [client 45.136.27.49:19039] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.edemahy.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.edemahy.com"] [uri "/s3cmd.ini"] [unique_id "afBLvgdke9TQXv9Mhft5OgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-27 12:46:33 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 45.136.27.49 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 45.136.27.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 27 08:46:26.415658 2026] [security2:error] [pid 13156:tid 13156] [client 45.136.27.49:46689] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kellerdrywall.ca.kildarafarms.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kellerdrywall.ca.kildarafarms.com"] [uri "/s3cmd.ini"] [unique_id "ae9aopRIUqg_3Rl_T2A8LQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-26 23:08:23 (1 month ago)	ModSecurity rejected a query	Bad Web Bot Web App Attack
🇺🇸 fbarela	2025-10-28 20:00:37 (7 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 202.145.0.61

🇮🇳 182.95.189.66

🇭🇰 154.92.17.58

🇵🇰 153.117.40.133

🇨🇳 115.210.48.12

🇨🇳 115.190.138.108

🇲🇾 110.159.245.63

🇺🇸 20.65.194.47

🇷🇺 5.255.231.64

🇩🇪 217.88.255.196

🇨🇳 182.43.235.75

🇺🇸 137.184.108.225

🇯🇵 74.176.227.125

🇸🇬 8.219.235.181

🇩🇪 213.209.159.56

🇸🇦 188.50.140.46

🇺🇸 172.253.221.114

🇻🇳 171.244.37.97

🇺🇸 162.216.150.173

🇺🇸 147.185.132.174