JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.54.76

45.3.54.76 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.54.76

Whois 45.3.54.76

IP Abuse Reports for 45.3.54.76:

This IP address has been reported a total of 13 times from 7 distinct sources. 45.3.54.76 was first reported on October 1st 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇨🇭 backslash	2026-02-21 18:27:01 (3 months ago)	block ruleset 6A1105329D233F6F53B9B61CE056BD4DAAE75AB4	Web Spam
🇺🇸 TPI-Abuse	2026-02-15 02:47:49 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 45.3.54.76 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 45.3.54.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:47:44.179942 2026] [security2:error] [pid 26082:tid 26100] [client 45.3.54.76:38925] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|npaccountants.org\|F\|2"] [data ".htm.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "npaccountants.org"] [uri "/index.htm.bak"] [unique_id "aZEz0DiehrIyn1xXA2sqHAAAAA8"], referer: http://npaccountants.org/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 hc	2026-02-10 11:06:00 (3 months ago)	Frau Mickie Birmingham 3917 Lindale Avenue Berkeley 5104867016 birmingham.mickie83@googlemail ... show more Frau Mickie Birmingham 3917 Lindale Avenue Berkeley 5104867016 [email protected] Want more targeted traffic to your h* At website? See how our AI-powered solution can help in this quick video: https://www.youtube.com/shorts/hpe1Ti9BI2c show less	Web Spam
🇬🇧 oncord	2026-02-09 10:27:20 (3 months ago)	Form spam	Web Spam
🇺🇸 oncord	2026-02-03 06:55:56 (4 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-11-25 07:29:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.76 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:29:21.450549 2025] [security2:error] [pid 28710:tid 28710] [client 45.3.54.76:12687] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.jfhglobal.net"] [uri "/.git/HEAD"] [unique_id "aSVa0ZUg4SGqkhR35M01jQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:43:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.76 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:43:27.335991 2025] [security2:error] [pid 7306:tid 7306] [client 45.3.54.76:15921] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coolray.net"] [uri "/.env"] [unique_id "aSUJvxF1bv3GKAW4y8aNiwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-10-27 19:10:33 (7 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
Anonymous	2025-10-14 04:41:57 (7 months ago)	WordPress Brute Force	Brute-Force
Anonymous	2025-10-10 14:17:38 (7 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-03-13 05:13:55 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.54.76 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.54.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 13 01:13:48.003223 2025] [security2:error] [pid 24283:tid 24283] [client 45.3.54.76:40685] [client 45.3.54.76] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ic1.biz\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ic1.biz"] [uri "/wp-json/wp/v2/users"] [unique_id "Z9Jpi-QEW4gag4iC5eOPeAAAAAs"], referer: https://ic1.biz show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-10-01 02:37:21 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.54.76 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.54.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 30 22:37:15.972830 2024] [security2:error] [pid 31770:tid 31770] [client 45.3.54.76:49139] [client 45.3.54.76] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|riverflow.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "riverflow.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZvtgW1OS__9IiqhvOvFjEQAAAA4"], referer: https://riverflow.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.155.81

🇳🇱 176.65.148.216

🇸🇬 129.227.75.98

🇸🇬 129.226.95.93

🇫🇷 92.103.134.183

🇫🇷 91.231.89.77

🇳🇱 89.21.67.188

🇨🇳 8.134.239.76

🇰🇷 222.239.251.12

🇹🇼 221.120.38.155

🇸🇮 176.65.134.34

🇩🇪 176.7.203.175

🇸🇬 165.154.236.104

🇯🇵 157.7.200.152

🇰🇷 121.162.22.202

🇨🇳 112.103.61.161

🇫🇷 91.231.89.234

🇫🇷 91.231.89.27

🇫🇷 91.196.152.122

🇺🇸 52.4.63.205