JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.47.180

45.3.47.180 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 56%: ?

56%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.47.180

Whois 45.3.47.180

IP Abuse Reports for 45.3.47.180:

This IP address has been reported a total of 33 times from 22 distinct sources. 45.3.47.180 was first reported on November 4th 2024, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 big-cloud.nl	2026-06-14 01:50:22 (16 hours ago)	Try to access /xmlrpc.php	Web App Attack
🇫🇷 ELYAZ	2026-06-13 18:12:47 (23 hours ago)	(y4) Failed scan -byebye- from 45.3.47.180 (FR/France/-): (CF_ENABLE)	Hacking
🇬🇷 setupgr	2026-06-13 04:20:09 (1 day ago)	(mod_security) mod_security (id:900001) triggered by 45.3.47.180: 1 in the last 86400 secs; Ports: * ... show more (mod_security) mod_security (id:900001) triggered by 45.3.47.180: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 13 07:20:07.994676 2026] [security2:error] [pid 568461:tid 568578] [client 45.3.47.180:12015] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.asteriassantorini.com"] [severity "CRITICAL"] [tag "security"] [hostname "mail.asteriassantorini.com"] [uri "/wp-login.php"] [unique_id "aizady6u4wBYKeZ3kF61LQAAAMo"], referer: https://mail.asteriassantorini.com/wp-login.php show less	Port Scan
🇬🇧 poundawebsiteltd	2026-06-12 17:33:49 (2 days ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 45.3.47.180 - - [12/Jun/2026:18:33:43 +0100] POS ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 45.3.47.180 - - [12/Jun/2026:18:33:43 +0100] POST /wp-login.php HTTP/1.1 503 22580 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 show less	Web App Attack
🇬🇷 setupgr	2026-06-12 14:31:48 (2 days ago)	(mod_security) mod_security (id:900001) triggered by 45.3.47.180: 1 in the last 86400 secs; Ports: * ... show more (mod_security) mod_security (id:900001) triggered by 45.3.47.180: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 12 17:31:44.067857 2026] [security2:error] [pid 342164:tid 342214] [client 45.3.47.180:56367] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|alloweddomain2\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.doityourself.gr"] [severity "CRITICAL"] [tag "security"] [hostname "mail.doityourself.gr"] [uri "/wp-login.php"] [unique_id "aiwYUBXBVZYB-gAnaREwngAAARc"], referer: https://mail.doityourself.gr/wp-login.php show less	Port Scan
🇬🇷 setupgr	2026-06-12 07:01:46 (2 days ago)	(mod_security) mod_security (id:900001) triggered by 45.3.47.180: 1 in the last 86400 secs; Ports: * ... show more (mod_security) mod_security (id:900001) triggered by 45.3.47.180: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 12 10:01:44.738148 2026] [security2:error] [pid 104094:tid 104286] [client 45.3.47.180:29411] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|alloweddomain2\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: gyrosplace.gr"] [severity "CRITICAL"] [tag "security"] [hostname "gyrosplace.gr"] [uri "/wp-login.php"] [unique_id "aiuu2Fnoc2nF41quz4OtdAAAAQ0"], referer: https://gyrosplace.gr/wp-login.php show less	Port Scan
🇫🇷 ELYAZ	2026-06-11 13:40:41 (3 days ago)	(y4) Failed scan -byebye- from 45.3.47.180 (FR/France/-): (CF_ENABLE)	Hacking
🇲🇽 octageeks.com	2026-06-11 04:21:12 (3 days ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇲🇹 Malta	2026-06-10 11:20:54 (4 days ago)	45.3.47.180 - - [10/Jun/2026:13:20:54 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; ... show more 45.3.47.180 - - [10/Jun/2026:13:20:54 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇦🇺 HJ5Ss4Ju	2026-06-10 03:10:09 (4 days ago)	Blocked by Wordfence (SID 6)	Web App Attack
🇺🇸 nyt	2026-06-10 02:49:51 (4 days ago)	Repeated WordPress login POSTs blocked by WAF (3 in 6h)	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-09 03:30:57 (5 days ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-05-22 03:05:06 (3 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-03-05 08:07:39 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.47.180 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.47.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 05 03:07:33.318331 2026] [security2:error] [pid 5951:tid 5979] [client 45.3.47.180:54409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.howardhallis.com"] [uri "/.git/objects/95/b3b29b3e96ecdf9cd39f42aa442be07f13e6ac"] [unique_id "aak5xTIRgu8fHCKerafsxAAAAEk"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-03-04 14:46:45 (3 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 151.240.205.184

🇺🇸 104.234.208.113

🇫🇮 170.168.31.213

🇺🇸 143.198.127.97

🇺🇸 47.77.180.67

🇭🇰 45.142.154.47

🇺🇸 23.95.62.90

🇧🇷 186.233.103.8

🇧🇷 177.185.66.41

🇺🇸 162.216.149.158

🇭🇰 154.221.17.137

🇲🇦 154.146.240.123

🇳🇱 85.11.167.7

🇬🇧 77.68.83.86

🇺🇸 66.132.172.100

🇸🇬 47.128.117.4

🇳🇱 45.148.10.120

🇹🇼 34.81.71.5

🇬🇧 2a06:4880::20

🇺🇸 198.199.70.194