JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.249.89.53

45.249.89.53 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 44%: ?

44%

ISP	SPEEDYPAGELTD-AP
Usage Type	Data Center/Web Hosting/Transit
ASN	AS142594
Hostname(s)	53.89.249.45.speedyvps.uk
Domain Name	speedypage.com
Country	🇯🇵 Japan
City	Ebara, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.249.89.53

Whois 45.249.89.53

IP Abuse Reports for 45.249.89.53:

This IP address has been reported a total of 8 times from 6 distinct sources. 45.249.89.53 was first reported on June 25th 2026, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-26 15:43:13 (4 hours ago)	(mod_security) mod_security (id:210492) triggered by 45.249.89.53 (53.89.249.45.speedyvps.uk): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 45.249.89.53 (53.89.249.45.speedyvps.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 11:43:01.122887 2026] [security2:error] [pid 1829:tid 1829] [client 45.249.89.53:64117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "formationone.com"] [uri "/.env"] [unique_id "aj6eBR-gZVMc3WYPnh-kYAAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 as211431.net	2026-06-26 08:59:17 (10 hours ago)	Triggered Cloudflare WAF (linkMaze) from JP. Action taken: LINK_MAZE_INJECTED Protocol: HTTP/1.1 (GE ... show more Triggered Cloudflare WAF (linkMaze) from JP. Action taken: LINK_MAZE_INJECTED Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇮🇩 hermawan	2026-06-26 07:44:19 (12 hours ago)	06/26/2026-14:44:19.068393 [Drop] [] [1:2100001716:0] Suricata match TLS ja3 scan Uniq Zeek no 17 ... show more 06/26/2026-14:44:19.068393 [Drop] [] [1:2100001716:0] Suricata match TLS ja3 scan Uniq Zeek no 1716 with hash_t13d1011h1_61a7ad8aa9b6_3a8073edd8ef [**] [Classification: (null)] [Priority: 3] {TCP} 45.249.89.53:59825 -> 103.166.156.58:443 ... show less	Email Spam Hacking
🇺🇸 mnsf	2026-06-25 21:27:47 (22 hours ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 17:34:01 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 45.249.89.53 (53.89.249.45.speedyvps.uk): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 45.249.89.53 (53.89.249.45.speedyvps.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 13:33:57.738371 2026] [security2:error] [pid 4718:tid 4833] [client 45.249.89.53:53256] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.maletadelasheras.emehache.net"] [uri "/.env.local"] [unique_id "aj1mhe-6_TbevKwcWd6aowAAAtU"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-06-25 14:29:16 (1 day ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.env.production	Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 08:24:34 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 45.249.89.53 (53.89.249.45.speedyvps.uk): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 45.249.89.53 (53.89.249.45.speedyvps.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 04:24:24.956808 2026] [security2:error] [pid 27019:tid 27019] [client 45.249.89.53:63954] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.vespaitaliancafe.com"] [uri "/.env.tmp"] [unique_id "ajzluDmvdYwtmQvPmbV6QQAAACs"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇴 Bots.go.to.hell	2026-06-25 07:11:39 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/vpatch-env-access	Web App Attack Hacking

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 186.179.47.249

🇺🇸 186.179.47.39

🇺🇸 186.65.120.179

🇺🇸 186.65.120.175

🇻🇳 45.117.179.232

🇺🇸 205.210.31.23

🇺🇸 186.179.47.153

🇺🇸 186.179.47.117

🇺🇸 186.179.47.100

🇫🇷 185.177.72.11

🇨🇳 180.76.103.111

🇺🇸 172.190.24.225

🇺🇸 162.216.149.203

🇨🇳 118.250.73.72

🇹🇭 43.164.1.211

🇬🇧 35.203.210.54

🇳🇱 213.177.179.25

🇺🇸 186.179.39.105

🇺🇸 186.179.39.60

🇺🇸 186.179.39.36