JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 145.223.108.37

145.223.108.37 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 72%: ?

72%

ISP	Brander Group Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	brandergroup.net
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 145.223.108.37

Whois 145.223.108.37

IP Abuse Reports for 145.223.108.37:

This IP address has been reported a total of 13 times from 11 distinct sources. 145.223.108.37 was first reported on June 6th 2026, and the most recent report was 24 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-06-06 16:10:29 (24 minutes ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-195)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 15:46:46 (47 minutes ago)	(mod_security) mod_security (id:210492) triggered by 145.223.108.37 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 145.223.108.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 11:46:41.911213 2026] [security2:error] [pid 17211:tid 17211] [client 145.223.108.37:40866] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "forwardfusion.co"] [uri "/app/.env"] [unique_id "aiRA4XBD8J5GpA4_Y7Ms9wAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Rip	2026-06-06 15:17:15 (1 hour ago)	Restricted File Access Attempts	Port Scan Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 12:45:59 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 145.223.108.37 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 145.223.108.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 08:45:55.681212 2026] [security2:error] [pid 11277:tid 11277] [client 145.223.108.37:40154] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "streetcornerfranchise.com"] [uri "/member/.env"] [unique_id "aiQWg40_lWbCmiYvfLbegQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-06 12:39:28 (3 hours ago)	Web App Attack	Brute-Force Exploited Host Web App Attack
Anonymous	2026-06-06 12:16:03 (4 hours ago)	Bot / scanning and/or hacking attempts: GET /admin/.env HTTP/1.1, GET /member/.env HTTP/1.1, GET /ba ... show more Bot / scanning and/or hacking attempts: GET /admin/.env HTTP/1.1, GET /member/.env HTTP/1.1, GET /backend/.env HTTP/1.1, GET /core/.env HTTP/1.1, GET /laravel/.env HTTP/1.1, GET /app/.env HTTP/1.1, GET /api/.env HTTP/1.1, GET /.env HTTP/1.1, GET /dev/.env HTTP/1.1 show less	Hacking Web App Attack
🇬🇧 consul.to	2026-06-06 11:35:32 (4 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 Savvii	2026-06-06 11:21:41 (5 hours ago)	20 attempts against mh-misbehave-ban on redirect	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-06 11:19:39 (5 hours ago)	Blocked by CSF 13 firewall - Rule: config-dotfile NL/Netherlands/-	Web App Attack
🇨🇭 Origon	2026-06-06 11:18:12 (5 hours ago)	http-sensitive-files - IP: 145.223.108.37 - time="2026-06-06T13:18:11+02:00" level=info msg="(555f6 ... show more http-sensitive-files - IP: 145.223.108.37 - time="2026-06-06T13:18:11+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 145.223.108.37 (ID/47583) : 4h ban on Ip 145.223.108.37" module=db show less	Web App Attack
🇺🇸 mnsf	2026-06-06 10:06:12 (6 hours ago)	Abuse Detected (9)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 09:30:54 (7 hours ago)	(mod_security) mod_security (id:210492) triggered by 145.223.108.37 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 145.223.108.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 05:30:46.134423 2026] [security2:error] [pid 7255:tid 7282] [client 145.223.108.37:40604] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "computeinitiative.org"] [uri "/app/.env"] [unique_id "aiPoxg5E9dykk1JXnKPeDgAAAVc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-06 08:47:33 (7 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 221.161.235.168

🇧🇷 205.210.31.132

🇦🇷 190.220.45.44

🇬🇧 185.127.70.8

🇺🇸 172.236.126.175

🇺🇸 156.232.13.161

🇰🇷 122.202.250.160

🇰🇷 58.226.230.112

🇸🇬 47.236.150.101

🇳🇱 45.148.10.157

🇰🇷 39.115.195.164

🇮🇷 2.180.173.105

🇫🇷 2a02:4780:27:1036:0:15dd:228d:1

🇮🇩 203.17.81.76

🇦🇺 202.128.124.199

🇨🇳 175.0.39.216

🇺🇸 174.197.196.203

🇺🇸 47.251.30.247

🇺🇸 34.228.104.231

🇺🇸 20.168.120.209