JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.138.100.180

45.138.100.180 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 0%: ?

ISP	Unknown
Usage Type	Data Center/Web Hosting/Transit
ASN	Unknown
Domain Name	Unknown
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.138.100.180

Whois 45.138.100.180

IP Abuse Reports for 45.138.100.180:

This IP address has been reported a total of 14 times from 7 distinct sources. 45.138.100.180 was first reported on October 1st 2024, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2025-07-30 03:53:42 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇪🇸 10dencehispahard SL	2025-07-28 04:41:55 (10 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-07-26 16:32:59 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-07-23 21:41:19 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-07-22 19:54:29 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-03-23 00:55:55 (1 year ago)	(mod_security) mod_security (id:211120) triggered by 45.138.100.180 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:211120) triggered by 45.138.100.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 22 20:55:51.166611 2025] [security2:error] [pid 1363043:tid 1363043] [client 45.138.100.180:46193] [client 45.138.100.180] ModSecurity: Access denied with code 403 (phase 2). Match of "endsWith /modules/paypal/express_checkout/payment.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "29"] [id "211120"] [rev "12"] [msg "COMODO WAF: Remote File Inclusion Attack\|\|barigby.com\|F\|2"] [data "Matched Data: http://adguard.digital/payload/index.php? found within REQUEST_FILENAME: /wp-content/plugins/w3-total-cache/lib/w3/pager.class.php"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "barigby.com"] [uri "/wp-content/plugins/w3-total-cache/lib/W3/Pager.class.php"] [unique_id "Z99cF088DwkXl_IBlZiAvAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 lp	2025-03-19 13:26:41 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.138.100.180 2025-03-19T13:08:35+01 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.138.100.180 2025-03-19T13:08:35+01:00 vpn Access-Reject 'kenken' station: 45.138.100.180 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-03-17 16:38:39 (1 year ago)	(mod_security) mod_security (id:211120) triggered by 45.138.100.180 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:211120) triggered by 45.138.100.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 17 12:38:33.642844 2025] [security2:error] [pid 24278:tid 24278] [client 45.138.100.180:51271] [client 45.138.100.180] ModSecurity: Access denied with code 403 (phase 2). Match of "endsWith /modules/paypal/express_checkout/payment.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "29"] [id "211120"] [rev "12"] [msg "COMODO WAF: Remote File Inclusion Attack\|\|arapi.org\|F\|2"] [data "Matched Data: http://adguard.digital/payload/index.php? found within REQUEST_FILENAME: /wp-content/plugins/canto/includes/lib/download.php"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arapi.org"] [uri "/wp-content/plugins/canto/includes/lib/download.php"] [unique_id "Z9hQCXWlAfyrax8YcU3BugAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 lp	2025-03-17 01:25:06 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 45.138.100.180 2025-03-17T01:24:33+01 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 45.138.100.180 2025-03-17T01:24:33+01:00 vpn Access-Reject 'joedaddy' station: 45.138.100.180 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-03-16 20:31:41 (1 year ago)	(mod_security) mod_security (id:211120) triggered by 45.138.100.180 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:211120) triggered by 45.138.100.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 16 16:31:35.982394 2025] [security2:error] [pid 1545320:tid 1545320] [client 45.138.100.180:36703] [client 45.138.100.180] ModSecurity: Access denied with code 403 (phase 2). Match of "endsWith /modules/paypal/express_checkout/payment.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "29"] [id "211120"] [rev "12"] [msg "COMODO WAF: Remote File Inclusion Attack\|\|anunturiro.com\|F\|2"] [data "Matched Data: http://adguard.digital/payload/index.php? found within REQUEST_FILENAME: /wp-content/plugins/w3-total-cache/lib/w3/pager.class.php"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anunturiro.com"] [uri "/wp-content/plugins/w3-total-cache/lib/W3/Pager.class.php"] [unique_id "Z9c1J4tU9zlOf8ymMo6bDAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 weblite	2025-03-14 22:30:05 (1 year ago)	WP_MALWARE_PROBE	Hacking Web App Attack
Anonymous	2024-10-16 17:48:27 (1 year ago)	botnet	DDoS Attack
Anonymous	2024-10-13 16:51:30 (1 year ago)	botnet	DDoS Attack
🇩🇪 CommanderRoot	2024-10-01 06:49:12 (1 year ago)	HTTP request flood	DDoS Attack Web Spam

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇹 186.190.30.38

🇺🇸 162.216.149.199

🇸🇬 162.158.108.24

🇻🇳 160.187.147.124

🇨🇳 124.160.173.22

🇷🇴 80.94.92.182

🇲🇰 79.125.162.32

🇬🇧 195.206.182.206

🇨🇱 186.103.169.12

🇵🇹 185.10.7.188

🇸🇬 162.158.163.196

🇳🇱 158.94.211.16

🇨🇳 139.198.29.172

🇳🇱 138.199.7.163

🇻🇳 123.26.111.188

🇺🇸 107.0.200.227

🇮🇷 37.202.237.125

🇧🇪 34.77.190.247

🇸🇬 108.162.226.77

🇩🇪 2a04:c300:400::1f5