JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.136.27.50

45.136.27.50 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 15%: ?

15%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.136.27.50

Whois 45.136.27.50

IP Abuse Reports for 45.136.27.50:

This IP address has been reported a total of 13 times from 10 distinct sources. 45.136.27.50 was first reported on October 11th 2025, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-15 22:16:34 (10 hours ago)	(mod_security) mod_security (id:210350) triggered by 45.136.27.50 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 45.136.27.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 18:16:28.675759 2026] [security2:error] [pid 10978:tid 10978] [client 45.136.27.50:28673] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|stagemadrid.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "stagemadrid.com"] [uri "/"] [unique_id "ajB5vP7RPsl12cDzzMZkoQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-06-10 10:09:03 (5 days ago)		Bad Web Bot
🇬🇧 www.elivecd.org	2026-02-23 22:36:13 (3 months ago)	2026/02/23 22:36:13 [error] 3373947#3373947: 194134 FastCGI sent in stderr: "PHP message: BOT WARNI ... show more 2026/02/23 22:36:13 [error] 3373947#3373947: 194134 FastCGI sent in stderr: "PHP message: BOT WARNING: visitor used the honeypot: 45.136.27.50, url was '78.141.243.157' and abuseipdb '11', function: ELP_site_live" while reading response header from upstream, client: 45.136.27.50, server: www.elivecd.org, request: "GET /remote/login HTTP/1.1", upstream: "fastcgi://unix:/run/php/php8.2-fpm-elivewp.sock:", host: "78.141.243.157" ... show less	Web Spam Email Spam
🇩🇪 london2038.com	2026-02-22 00:18:33 (3 months ago)	Detected by WP fail2ban 2026-02-22T01:18:32.512218+01:00 wordpress: Authentication attempt from 45.1 ... show more Detected by WP fail2ban 2026-02-22T01:18:32.512218+01:00 wordpress: Authentication attempt from 45.136.27.50 show less	Brute-Force Web App Attack
Anonymous	2026-01-25 21:43:29 (4 months ago)	wordpress-trap	Web App Attack
Anonymous	2026-01-06 10:38:20 (5 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇮🇩 Burayot	2025-12-22 11:33:55 (5 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.136.27.50 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.136.27.50 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇮🇩 Burayot	2025-12-19 16:21:56 (5 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.136.27.50 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.136.27.50 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-11-20 00:37:05 (6 months ago)	WP Login Scan Activities	Web App Attack
🇮🇩 RasyiidWho	2025-11-19 01:03:58 (6 months ago)	ip112.20 . 45.136.27.50 - - [19/Nov/2025:08:03:57 +0700] "GET /wp-login.php HTTP/1.1" 404 548 "-" "M ... show more ip112.20 . 45.136.27.50 - - [19/Nov/2025:08:03:57 +0700] "GET /wp-login.php HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36 Edg/115.0.1901.203" ... show less	DDoS Attack Port Scan Brute-Force Bad Web Bot Web App Attack SSH
🇺🇸 octageeks.com	2025-11-17 05:06:56 (6 months ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇨🇭 backslash	2025-11-10 02:00:52 (7 months ago)	block ruleset 486D2EE5E731CC049D1E480D68D04DFFE28AADF1	Bad Web Bot
🇮🇩 Burayot	2025-10-11 10:54:37 (8 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.136.27.50 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.136.27.50 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 200.152.20.71

🇱🇧 185.84.106.200

🇮🇳 182.95.52.170

🇩🇪 164.90.169.185

🇩🇪 139.19.117.129

🇨🇳 117.69.234.146

🇺🇸 104.37.185.43

🇭🇰 103.210.238.154

🇧🇩 103.94.134.148

🇧🇬 93.94.141.115

🇺🇦 91.196.231.162

🇹🇷 78.174.69.29

🇻🇪 38.74.237.105

🇺🇸 38.70.230.137

🇮🇳 223.223.144.180

🇺🇸 205.210.31.76

🇪🇬 196.219.93.108

🇨🇦 184.161.117.122

🇺🇸 162.216.150.177

🇻🇳 117.3.220.163