JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.35.237

45.3.35.237 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.35.237

Whois 45.3.35.237

IP Abuse Reports for 45.3.35.237:

This IP address has been reported a total of 36 times from 16 distinct sources. 45.3.35.237 was first reported on November 29th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-02-15 03:57:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:57:25.641061 2026] [security2:error] [pid 6194:tid 6194] [client 45.3.35.237:12159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stinnetthomeinspection.com"] [uri "/app/.git/config"] [unique_id "aZFEJTMP0vpOfsu6xFWCdQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 kumiko	2026-02-15 00:55:52 (3 months ago)	[2026-02-15 02:55:52] Probing for dotfiles "GET /frontend/.env HTTP/1.1" 404	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 23:47:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 18:47:40.319223 2026] [security2:error] [pid 20085:tid 20085] [client 45.3.35.237:64653] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "loftonboys.com"] [uri "/admin/.env"] [unique_id "aZEJnH0EZV1wA2SKIiNxpgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 22:50:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 17:50:30.099131 2026] [security2:error] [pid 555854:tid 555854] [client 45.3.35.237:43387] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "linhsbridal.com"] [uri "/.env.production"] [unique_id "aZD8NnUC7DJdCF0VBe5-qAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 22:27:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 17:27:49.154454 2026] [security2:error] [pid 7065:tid 7065] [client 45.3.35.237:21759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "liferestorationproject.com"] [uri "/new/.git/config"] [unique_id "aZD25Z7cRsS_d8AnmNDkHwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-14 21:52:06 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 21:24:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 16:24:40.921546 2026] [security2:error] [pid 10328:tid 10328] [client 45.3.35.237:18985] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "leesart.org"] [uri "/wp/.git/config"] [unique_id "aZDoGJpz37h24Kf0BNgFewAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 F242	2026-01-30 05:48:26 (4 months ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇨🇭 backslash	2025-12-26 08:40:06 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
Anonymous	2025-12-16 03:36:44 (5 months ago)	2025-12-16T05:36:43.522751+02:00 zanati wp(www.sahpa.co.za)[978041]: Blocked authentication attempt ... show more 2025-12-16T05:36:43.522751+02:00 zanati wp(www.sahpa.co.za)[978041]: Blocked authentication attempt for [email protected] from 45.3.35.237 ... show less	Web App Attack
🇦🇺 MAGIC	2025-12-09 00:06:32 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-28 13:23:01 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 08:22:58.444854 2025] [security2:error] [pid 899:tid 899] [client 45.3.35.237:39691] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|amatosdrywall.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "amatosdrywall.com"] [uri "/dump.sql"] [unique_id "aSmiMtRt3hxgZAzHoLU4UQAAAAU"], referer: http://amatodrywall.com/dump.sql show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:42:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:42:23.984722 2025] [security2:error] [pid 8628:tid 8628] [client 45.3.35.237:31033] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.coretherapyassoc.com"] [uri "/.env"] [unique_id "aSQof5ZoB9QuhFhQbwtn1gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:59:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.35.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:59:25.086272 2025] [security2:error] [pid 16068:tid 16068] [client 45.3.35.237:40479] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.cygnetsilks.com"] [uri "/.svn/wc.db"] [unique_id "aSQebWyWK3MfTEdRrhl_uQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.199

🇫🇷 185.177.72.100

🇫🇷 185.177.72.58

🇫🇷 185.177.72.53

🇱🇦 154.222.6.128

🇨🇳 125.81.130.36

🇨🇳 117.162.115.175

🇹🇷 93.177.102.72

🇹🇷 93.177.102.53

🇩🇪 85.202.160.240

🇧🇬 79.124.49.70

🇺🇸 74.94.234.151

🇺🇸 47.251.162.176

🇧🇷 45.168.65.72

🇬🇧 35.203.211.223

🇸🇬 2400:8901:e001:2e5:cd17:af7d:392b:615f

🇳🇱 204.76.203.219

🇮🇩 203.145.34.222

🇺🇿 188.113.237.188

🇧🇷 187.109.128.247