AbuseIPDB » 45.238.20.74

45.238.20.74 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 42%: ?

42%

ISP	Airpoint Telecomunicaciones Limitada
Usage Type	Fixed Line ISP
Domain Name	fadanet.cl
Country	Chile
City	Santa Cruz, Libertador General Bernardo O'Higgins

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 45.238.20.74

Whois 45.238.20.74

IP Abuse Reports for 45.238.20.74:

This IP address has been reported a total of 20 times from 15 distinct sources. 45.238.20.74 was first reported on January 17th 2022, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp	Comment	Categories
Hirte	2023-12-03 23:38:51 (1 week ago)	MYH: Web Attack GET /wp-login.php	Web Spam Hacking Bad Web Bot Web App Attack
Ivo Vynckier	2023-11-23 17:42:34 (2 weeks ago)	45.238.20.74 - - [22/Nov/2023:23:01:03 +0100] "GET /wp-login.php HTTP/1.1" 404 27 "-" "Mozilla/5.0 ( ... show more45.238.20.74 - - [22/Nov/2023:23:01:03 +0100] "GET /wp-login.php HTTP/1.1" 404 27 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 45.238.20.74 - - [22/Nov/2023:23:01:03 +0100] "GET /xmlrpc.php HTTP/1.1" 404 27 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" show less	Web App Attack
MAGIC	2023-11-23 08:16:16 (2 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
TPI-Abuse	2023-11-22 02:10:46 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 45.238.20.74 (-): 1 in the last 300 secs; Ports ... show more(mod_security) mod_security (id:225170) triggered by 45.238.20.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 21 21:10:42.407151 2023] [security2:error] [pid 15119:tid 47321494611712] [client 45.238.20.74:52435] [client 45.238.20.74] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.wdmtexas.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.wdmtexas.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "ZV1jIr6fzOjxUb13Yl2xuQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
Delta Whiskey	2023-11-13 02:18:10 (4 weeks ago)	Multiple failed WordPress authentication attempts	Brute-Force Web App Attack
CrystalMaker	2023-11-08 22:21:54 (1 month ago)	Wordpress attack - GET /wp-login.php; GET /xmlrpc.php; GET /wp-login.php; GET /xmlrpc.php	Web App Attack
Sklurk	2023-11-08 14:39:17 (1 month ago)	Web App Attack	Web App Attack
Steve	2023-11-08 06:32:52 (1 month ago)	Attempts against non-existent wordpress site	Brute-Force Web App Attack
ph	2023-11-05 16:38:32 (1 month ago)	Bad web bot attempting to run wp-login.php on non-WP site	Hacking Bad Web Bot Web App Attack
Anonymous	2023-10-19 11:35:41 (1 month ago)	Malicious activity detected Trawling for 3rd-party CMS installations	Hacking Brute-Force Web App Attack
Anonymous	2023-09-28 19:09:00 (2 months ago)	"Scanning for multiple vulnerable file extensions and wp-login.php xmlrpc.php"	Web App Attack
Anonymous	2023-09-28 19:09:00 (2 months ago)	"Scanning for multiple vulnerable file extensions and wp-login.php xmlrpc.php"	Web App Attack
Anonymous	2023-09-28 19:09:00 (2 months ago)	"Scanning for multiple vulnerable file extensions and wp-login.php xmlrpc.php"	Web App Attack
Anonymous	2023-09-28 19:09:00 (2 months ago)	"Scanning for multiple vulnerable file extensions and wp-login.php xmlrpc.php"	Web App Attack
Anonymous	2023-09-28 19:09:00 (2 months ago)	"Scanning for multiple vulnerable file extensions and wp-login.php xmlrpc.php"	Web App Attack