AbuseIPDB » 45.175.18.134
45.175.18.134
This IP was reported 6 times. Confidence of
Abuse
is 4% : ?
ISP
DiDiNET TELECOM
Usage Type
Fixed Line ISP
ASN
AS268875
Domain Name
fabriciodidi.com.br
Country
๐ง๐ท
Brazil
City
Itapetinga, Bahia
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 45.175.18.134 :
This IP address has been reported a total of
6
times from
3 distinct
sources.
45.175.18.134 was first reported on
November 16th 2023 , and the most recent report was
10 hours ago
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ฎ๐ฉ
hermawan
2026-06-28 22:27:57
(10 hours ago)
[Mon Jun 29 05:27:54.341686 2026] [security2:error] [pid 812356:tid 140331916977856] [client 45.175. ...
show more
[Mon Jun 29 05:27:54.341686 2026] [security2:error] [pid 812356:tid 140331916977856] [client 45.175.18.134:51726] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bing.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "601"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bing.go.id found within REQUEST_HEADERS:Referer: https://www.bing.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-bulanan/infografis-bulanan-buletin HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-bulanan/infografis-bulanan-buletin"] [unique_id "akGf6t7O-uDsIFzK41b4SwAACQA"], referer https://www.bing.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[812357] [VihP2teyabc] [akGf6t7O-uDsIFzK41b4SwAACQA] keep_alive=[1] [2026-06-29 05:27:54.341690] [R:akGf6t7O-uDsIFzK41b4SwAACQA] UA
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-04-06 06:42:51
(2 months ago)
Captured JA4H: ge20n_0fccd72cfbcb | Log: 45.175.18.134 - - [06/Apr/2026:13:27:38 +0700] "GET /index. ...
show more
Captured JA4H: ge20n_0fccd72cfbcb | Log: 45.175.18.134 - - [06/Apr/2026:13:27:38 +0700] "GET /index.php/prediksi-iklim/prediksi-dasarian/deterministik-curah-hujan-provinsi-jawa-timur HTTP/2.0" 403 16792 "https://www.yahoo.go.id/" "Mozilla/5.0 (Linux; Android 14; Pixel 6 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.119 Mobile Safari/537.36 OPR/81.2.4292.78581" ge20n_user-agent,accept,accept-language,accept-encoding,upgrade-insecure-requests,sec-fetch-dest,sec-fetch-mode,sec-fetch-site,sec-fetch-user,priority,te,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,referer,host...
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-04-06 06:27:38
(2 months ago)
[Mon Apr 06 13:27:38.224079 2026] [security2:error] [pid 525938:tid 139767949817536] [client 45.175. ...
show more
[Mon Apr 06 13:27:38.224079 2026] [security2:error] [pid 525938:tid 139767949817536] [client 45.175.18.134:53206] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.yahoo.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.25.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "618"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.yahoo.go.id found within REQUEST_HEADERS:Referer: https://www.yahoo.go.id/ request_line = GET /index.php/prediksi-iklim/prediksi-dasarian/deterministik-curah-hujan-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prediksi-iklim/prediksi-dasarian/deterministik-curah-hujan-provinsi-jawa-timur"] [unique_id "adNSWm9rk9lvV2wnhK29yAAAgAA"], referer https://www.yahoo.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[525940] [83NPwwS9PE8] [adNSWm9rk9lvV2wnhK29yAAAgAA] keep_alive=[1] [2026-04-06 13:27:38.224086] [R:adNSWm9rk9lvV2wnhK29yAAAgAA
...
show less
Email Spam
Hacking
2025-11-19 18:52:07
(7 months ago)
scanning http requests from known botnet
Web App Attack
๐ฎ๐ฉ
hermawan
2025-11-10 10:59:55
(7 months ago)
[Mon Nov 10 17:58:21.348859 2025] [security2:error] [pid 2507084:tid 140668827592384] [client 45.175 ...
show more
[Mon Nov 10 17:58:21.348859 2025] [security2:error] [pid 2507084:tid 140668827592384] [client 45.175.18.134:34218] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "WOW64" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "247"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: WOW64 found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36 request_line = GET /index.php/prakiraan-bulanan/4114-prakiraan-potensi-banjir/prakiraan-potensi-banjir-di-propinsi-jawa-timur/prakiraan-bulanan-daerah-potensi-banjir-provinsi-jawa-timur-tahun-2022/555559268-prakiraan-bulanan-daerah-potensi-banjir-di-provinsi-jawa-timur-untuk-bulan-mei-tahun-2022-update-10-februari-2022 HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-bulanan/4114-prakiraan-potens
...
show less
Hacking
Web App Attack
๐ฉ๐ช
Pingger Shikkoken
2023-11-16 20:48:43
(2 years ago)
Participating in DDoS Amplification Attack! Sending 14 requests over 5489s asking for ?0? of atlassi ...
show more
Participating in DDoS Amplification Attack! Sending 14 requests over 5489s asking for ?0? of atlassian.com, cisco.com, apple.com
show less
DNS Poisoning
DDoS Attack
Hacking
Brute-Force
Exploited Host
Showing 1 to
6
of 6 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: