JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 145.223.17.242

145.223.17.242 was found in our database!

This IP was reported 41 times. Confidence of Abuse is 100%: ?

100%

ISP	Brander Group Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	brandergroup.net
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 145.223.17.242

Whois 145.223.17.242

IP Abuse Reports for 145.223.17.242:

This IP address has been reported a total of 41 times from 28 distinct sources. 145.223.17.242 was first reported on June 6th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-09 04:06:10 (1 week ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇫🇷 stefaniak41500	2026-06-08 10:35:17 (1 week ago)	Shield Guard: Honeypot: /.env.save	Web App Attack
🇫🇷 masterguru	2026-06-08 10:14:19 (1 week ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-193)	Hacking Web App Attack
🇩🇪 paissangroup	2026-06-08 07:57:27 (1 week ago)	Multiple WAF Violations	Web App Attack
🇬🇧 consul.to	2026-06-08 07:07:20 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 Matthew Ping	2026-06-08 05:30:01 (1 week ago)	ModSecurity rule 949110 triggered on dedicated4785. Web application attack blocked by CSF/LFD.	Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-06-08 04:39:09 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 145.223.17.242 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 145.223.17.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 00:39:01.477688 2026] [security2:error] [pid 10268:tid 10268] [client 145.223.17.242:40426] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "divineadventures.org"] [uri "/backend/.env"] [unique_id "aiZHZcWFQljonCBtpR6BhAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 03:52:09 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 145.223.17.242 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 145.223.17.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 23:52:05.591185 2026] [security2:error] [pid 23286:tid 23286] [client 145.223.17.242:54252] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "300blockofwarwick.com"] [uri "/app/.env"] [unique_id "aiY8ZZjxHkcxCiHUdc8zyQAAAGY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 02:02:16 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 145.223.17.242 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 145.223.17.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 22:02:12.289146 2026] [security2:error] [pid 15963:tid 15963] [client 145.223.17.242:25858] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sweetsixteennapkins.com"] [uri "/.env"] [unique_id "aiYipEOM9M7hOexQnklD3gAAAEc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 antlac1	2026-06-07 23:07:12 (1 week ago)	crowdsecurity/http-sensitive-files	Brute-Force Web App Attack
Anonymous	2026-06-07 23:05:01 (1 week ago)	suspicious request in access.log	Web App Attack
🇳🇱 wlt-blocker	2026-06-07 20:14:05 (1 week ago)	Unauthorized access to webpage admin	Web App Attack
🇷🇺 DZBOT	2026-06-07 20:03:55 (1 week ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-07 19:09:32 (1 week ago)	Blocked by CSF 13 firewall - Rule: config-dotfile NL/Netherlands/-	Web App Attack
🇨🇭 zynex	2026-06-07 17:51:00 (1 week ago)	URL Probing: /dev/.env	Web App Attack

Showing 1 to 15 of 41 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.200

🇷🇺 188.128.77.182

🇮🇸 185.40.122.250

🇺🇸 184.105.139.83

🇫🇮 147.185.133.131

🇨🇦 85.217.149.21

🇮🇷 78.39.68.138

🇺🇸 44.190.164.91

🇮🇹 31.59.89.180

🇧🇷 205.210.31.199

🇺🇸 205.210.31.110

🇺🇸 172.58.167.205

🇺🇸 167.99.9.244

🇺🇸 103.143.238.100

🇺🇸 68.227.23.73

🇮🇪 54.246.33.146

🇺🇸 40.124.186.156

🇺🇸 20.81.46.143

🇫🇷 5.39.1.249

🇺🇸 205.210.31.109