JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.39.17.68

45.39.17.68 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 27%: ?

27%

ISP	Subnet Digital LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS202015
Domain Name	subnetdigital.com
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.39.17.68

Whois 45.39.17.68

IP Abuse Reports for 45.39.17.68:

This IP address has been reported a total of 12 times from 7 distinct sources. 45.39.17.68 was first reported on May 26th 2026, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-29 11:44:30 (4 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.39.17.68 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.39.17.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 07:44:15.776380 2026] [security2:error] [pid 24938:tid 24988] [client 45.39.17.68:34411] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "furball.m3sxa.com"] [uri "/.env.bak"] [unique_id "ahl8D1LGiP0avGoQFiNYdQAAAI4"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-05-29 09:19:50 (4 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-28 21:59:46 (4 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-27. show less	Web App Attack SSH Hacking
🇳🇱 homeshowdomain.nl	2026-05-27 22:00:39 (4 weeks ago)	Auto-ban: >3000 req/min op 2026-05-27	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-05-27 17:49:55 (4 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.39.17.68 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.39.17.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 13:49:50.218282 2026] [security2:error] [pid 12396:tid 12396] [client 45.39.17.68:50671] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cnbruselas.oficinasydespachosmurcia.com"] [uri "/sftp-config.json"] [unique_id "ahcuvtx_ssoa7bj3uHT4kQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-05-27 15:57:00 (4 weeks ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-27 14:42:27 (4 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.39.17.68 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.39.17.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 10:42:20.249837 2026] [security2:error] [pid 16844:tid 16844] [client 45.39.17.68:49233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.agirlwithaguitar.misscharlottemusic.com"] [uri "/.env"] [unique_id "ahcCzEgcSFI1ekwru9McnQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-27 02:06:34 (1 month ago)	Blocked: Reason='Suspicious traffic score=100 (review-based detection)'; Requests=8	Hacking
🇺🇸 Vano Ganzzz	2026-05-27 01:06:50 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK ASN: 202015 (HZ Hosting Ltd) ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK ASN: 202015 (HZ Hosting Ltd) Protocol: HTTP/1.1 (GET method) Endpoint: /sitemap-index.xml Timestamp: 2026-05-27T01:06:50Z Ray ID: a0211e86ac676707 UA: Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html) show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-27 00:23:22 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 45.39.17.68 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.39.17.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 20:23:15.790241 2026] [security2:error] [pid 16707:tid 16707] [client 45.39.17.68:49989] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sanjuangrange.org"] [uri "/.env.dusk.local"] [unique_id "ahY5c_hIrIWimldg6REUsAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-26 17:54:05 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 45.39.17.68 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.39.17.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 13:53:45.578083 2026] [security2:error] [pid 23026:tid 23026] [client 45.39.17.68:52021] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "krugmans.net"] [uri "/.env.save"] [unique_id "ahXeKaKaBpns4VNTQm2ZCwAAABM"], referer: https://www.google.com/search?q=krugmans.net show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-05-26 17:05:59 (1 month ago)	[TueMay2619:05:51.3877682026][security2:error][pid2832562:tid2832746][client45.39.17.68:0]ModSecurit ... show more [TueMay2619:05:51.3877682026][security2:error][pid2832562:tid2832746][client45.39.17.68:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"benvenutialfood.org\"][uri\"/.aws/credentials\"][unique_id\"ahXS70M_3Lw1w5tfiBPK0wAAAIo\"] show less	Hacking Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.120.96.133

🇳🇱 176.65.148.88

🇭🇰 165.154.41.56

🇺🇸 205.210.31.93

🇮🇳 182.19.35.57

🇧🇩 103.183.62.3

🇮🇳 49.14.76.210

🇺🇸 20.245.71.147

🇫🇷 172.71.134.67

🇺🇸 162.216.149.213

🇧🇩 160.25.5.221

🇭🇰 156.245.246.50

🇸🇬 47.84.206.215

🇲🇽 187.251.123.104

🇻🇳 183.91.27.6

🇩🇪 164.92.129.176

🇫🇷 163.172.60.23

🇸🇬 103.7.11.134

🇷🇺 91.224.137.31

🇷🇴 80.94.92.152