JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.43.147

45.3.43.147 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 28%: ?

28%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.43.147

Whois 45.3.43.147

IP Abuse Reports for 45.3.43.147:

This IP address has been reported a total of 16 times from 9 distinct sources. 45.3.43.147 was first reported on November 4th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 FeG Deutschland	2026-05-31 15:47:00 (4 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇲🇽 octageeks.com	2026-05-29 04:07:19 (6 days ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇲🇽 octageeks.com	2026-05-27 04:15:20 (1 week ago)	Wordpress malicious attack:[octaflood]	Web App Attack
Anonymous	2026-05-24 06:34:40 (1 week ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇨🇭 backslash	2026-05-23 05:00:18 (1 week ago)		Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (5 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
Anonymous	2025-11-20 21:27:56 (6 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇪🇸 el-brujo	2025-11-16 14:32:46 (6 months ago)	16/Nov/2025:15:32:46.709048 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client ... show more 16/Nov/2025:15:32:46.709048 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client 45.3.43.147] ModSecurity: Warning. String match within ".asa/ .asax/ .ascx/ .axd/ .backup/ .bak/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .com/ .config/ .conf/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dll/ .dos/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .ini/ .key/ .licx/ .lnk/ .log/ .mdb/ .old/ .pass/ .pdb/ .pol/ .printer/ .pwd/ .rdb/ .resources/ .resx/ .sql/ .swp/ .sys/ .vb/ .vbs/ .vbproj/ .vsdisco/ .webinfo/ .xsd/ .xsx/" at TX:extension. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1056"] [id "920440"] [msg "URL file extension is restricted by policy"] [data ".com"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "ns2.elhacker.net"] [uri "/Tutorial CheatEngine Avanz ... show less	Hacking Web App Attack
Anonymous	2025-11-02 15:02:58 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:33:20	Port Scan Brute-Force Exploited Host Web App Attack
🇨🇭 backslash	2025-04-08 00:25:02 (1 year ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-02-17 14:06:24 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.43.147 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.43.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 17 09:06:21.283922 2025] [security2:error] [pid 20584:tid 20584] [client 45.3.43.147:41571] [client 45.3.43.147] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|waking.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "waking.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z7NCXRhADdC_ZsyRp1SA2AAAAA8"], referer: https://waking.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-02-16 10:36:49 (1 year ago)	[Drupal AbuseIPDB module] Request path is blacklisted. /wp-json/wp/v2/users	Web App Attack
🇺🇸 TPI-Abuse	2025-01-14 09:06:10 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.43.147 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.43.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 14 04:06:05.913506 2025] [security2:error] [pid 1307531:tid 1307531] [client 45.3.43.147:40127] [client 45.3.43.147] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|frootloops.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "frootloops.net"] [uri "/wp-json/wp/v2/users"] [unique_id "Z4Yo_SeSHAWi2V5dRUMNgwAAAAo"], referer: https://frootloops.net show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-12-31 23:35:15 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.43.147 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.43.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 31 18:35:10.168078 2024] [security2:error] [pid 1611807:tid 1611807] [client 45.3.43.147:58835] [client 45.3.43.147] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|theboates.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "theboates.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z3R_rp0nApikFWAQFp1noQAAAAU"], referer: https://theboates.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-12-19 11:46:28 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.43.147 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.43.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 19 06:46:23.089753 2024] [security2:error] [pid 6717:tid 6717] [client 45.3.43.147:35107] [client 45.3.43.147] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|aguitas.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "aguitas.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z2QHj2HVzH19RiPju2Y03QAAAAU"], referer: https://aguitas.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2a03:2880:f806:14::

🇨🇳 171.114.224.168

🇮🇳 125.20.251.70

🇺🇸 66.132.172.242

🇺🇸 34.194.233.48

🇩🇪 2.27.36.23

🇻🇳 160.30.160.204

🇺🇸 63.42.245.167

🇭🇰 47.86.171.75

🇸🇬 45.114.189.9

🇺🇸 20.127.187.7

🇺🇸 20.64.105.133

🇳🇱 172.253.82.214

🇺🇸 162.216.149.73

🇺🇸 135.148.217.213

🇻🇳 103.176.20.115

🇮🇳 103.84.236.222

🇫🇷 91.231.89.133

🇷🇺 87.250.224.244

🇳🇱 45.148.10.152