JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.39.4.107

45.39.4.107 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 1%: ?

ISP	Subnet Digital LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS202015
Domain Name	subnetdigital.com
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.39.4.107

Whois 45.39.4.107

IP Abuse Reports for 45.39.4.107:

This IP address has been reported a total of 9 times from 4 distinct sources. 45.39.4.107 was first reported on May 4th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-06 16:08:49 (2 weeks ago)	LH-Watcher: FAKE_ID [Fake Googlebot]	Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-08 21:55:25 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 45.39.4.107 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 45.39.4.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 17:55:22.241123 2026] [security2:error] [pid 203362:tid 203362] [client 45.39.4.107:56359] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.nbcnewsradio.com\|F\|2"] [data ".com.db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.nbcnewsradio.com"] [uri "/nbcnewsradio.com.db"] [unique_id "adbOyjgHtZ-A5LOW1_ARzQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-27 02:41:17 (4 months ago)	(mod_security) mod_security (id:211190) triggered by 45.39.4.107 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:211190) triggered by 45.39.4.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 26 21:41:12.907725 2026] [security2:error] [pid 23296:tid 23310] [client 45.39.4.107:56479] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|www.kettlehill.kettlehill.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /wp-json/lp/v1/courses/archive-course?template_path=..%2F..%2F..%2Fetc%2Fpasswd&return_type=html"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.kettlehill.com"] [uri "/wp-json/lp/v1/courses/archive-course"] [unique_id "aXglyEnBpq4P6Y3u9V79owAAAMo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-17 07:19:42 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.39.4.107 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.39.4.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 17 02:19:35.572590 2026] [security2:error] [pid 16779:tid 16779] [client 45.39.4.107:52369] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.nbcnewsradio.com"] [uri "/css../.git/config"] [unique_id "aWs4B25jfNPFYV4aNDbpvgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-13 13:09:41 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 45.39.4.107 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.39.4.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 08:09:36.149764 2025] [security2:error] [pid 32084:tid 32084] [client 45.39.4.107:60269] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.nbcnewsradio.com"] [uri "/wp-config.php.txt"] [unique_id "aRXYkOK_8BOwSWPNLha8lQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dpsbs	2025-10-14 08:24:19 (8 months ago)	multiple ips intrustions detected	Hacking
🇺🇸 TPI-Abuse	2025-07-26 23:46:39 (10 months ago)	(mod_security) mod_security (id:211070) triggered by 45.39.4.107 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:211070) triggered by 45.39.4.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 19:44:06.023264 2025] [security2:error] [pid 28736:tid 28911] [client 45.39.4.107:45405] ModSecurity: Access denied with code 403 (phase 1). Pattern match "," at REQUEST_HEADERS:Transfer-Encoding. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "38"] [id "211070"] [rev "1"] [msg "COMODO WAF: HTTP Request Smuggling Attack.\|\|www.staging.kettlehill.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "staging.kettlehill.com"] [uri "/tmui/login.jsp"] [unique_id "aIVoRlDpt3RX6PH4q7MCzAAAAFM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-29 20:59:36 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 45.39.4.107 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.39.4.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 16:59:32.766388 2025] [security2:error] [pid 3496037:tid 3496037] [client 45.39.4.107:38275] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/Web.config" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.farmers123.com"] [uri "/web.config"] [unique_id "aDjKtC9X6nGR9OgjY7sr_QAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-05-04 16:40:02 (1 year ago)	\| Common web attack.	Hacking SQL Injection Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 171.231.185.120

🇸🇪 158.174.210.161

🇺🇸 64.62.156.202

🇲🇾 47.250.114.23

🇮🇩 36.64.131.68

🇧🇷 201.33.62.110

🇵🇱 185.79.139.16

🇵🇭 165.154.59.90

🇺🇸 157.173.205.202

🇺🇸 155.103.69.40

🇺🇸 138.99.39.193

🇬🇧 101.36.97.205

🇺🇸 65.49.1.119

🇬🇧 193.176.29.9

🇭🇰 154.85.51.139

🇪🇸 141.109.168.9

🇨🇳 116.179.32.96

🇫🇷 85.217.140.6

🇫🇷 51.83.10.158

🇺🇸 34.48.105.211