JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.40.106

45.3.40.106 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.40.106

Whois 45.3.40.106

IP Abuse Reports for 45.3.40.106:

This IP address has been reported a total of 14 times from 9 distinct sources. 45.3.40.106 was first reported on September 30th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 strxmpp	2026-06-15 07:52:26 (4 days ago)	45.3.40.106 - - [15/Jun/2026:09:52:23 +0200] "GET /news-sitemap.xml HTTP/1.1" 404 5802 "-" "Mozilla/ ... show more 45.3.40.106 - - [15/Jun/2026:09:52:23 +0200] "GET /news-sitemap.xml HTTP/1.1" 404 5802 "-" "Mozilla/5.0" ... show less	Bad Web Bot
🇮🇹 [email protected]	2026-04-18 06:12:01 (2 months ago)	[Sat Apr 18 08:12:00.888806 2026] [authz_core:error] [pid 560720:tid 560803] [remote 45.3.40.106:130 ... show more [Sat Apr 18 08:12:00.888806 2026] [authz_core:error] [pid 560720:tid 560803] [remote 45.3.40.106:13093] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php ... show less	Brute-Force Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:30 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 COMPLEX	2025-12-15 04:46:39 (6 months ago)	Triggered Cloudflare WAF (l7ddos) from CA. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protoc ... show more Triggered Cloudflare WAF (l7ddos) from CA. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/2 (GET method) Endpoint: / show less	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-26 02:55:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.40.106 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.40.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:55:05.129347 2025] [security2:error] [pid 21938:tid 21938] [client 45.3.40.106:21195] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.tttns.com"] [uri "/.env"] [unique_id "aSZsCQVs7ttJwtLLkhLGvQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:24:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.40.106 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.40.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:24:52.608320 2025] [security2:error] [pid 17848:tid 17848] [client 45.3.40.106:56983] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.marianozaro.com"] [uri "/.svn/wc.db"] [unique_id "aSZk9Ahcs_247zQ21sY1cAAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:49:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.40.106 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.40.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:49:48.830227 2025] [security2:error] [pid 5820:tid 5820] [client 45.3.40.106:34409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.jerryglass.net"] [uri "/.svn/wc.db"] [unique_id "aSULPFLmKkqQQFHxFLshvwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-24 12:45:02 (6 months ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:34:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.40.106 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.40.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:34:08.583589 2025] [security2:error] [pid 3417245:tid 3417245] [client 45.3.40.106:56607] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.yellowbrickfoundation.com"] [uri "/.svn/wc.db"] [unique_id "aSP8YGTyM1NVpJpk49q-dQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-04-04 10:15:05 (1 year ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-01-10 15:37:11 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.40.106 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.40.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 10 10:37:06.481815 2025] [security2:error] [pid 1539253:tid 1539253] [client 45.3.40.106:45417] [client 45.3.40.106] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bernabeu.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bernabeu.org"] [uri "/wp-json/wp/v2/users"] [unique_id "Z4E-otmD2YkgmqOU-U4tQQAAAAA"], referer: https://bernabeu.org show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 MM-bot	2024-12-15 09:16:21 (1 year ago)	URL-probe: HTTP/1.1 GET request on /wp-login.php (2024-12-15 10:16:21 UTC+1)	Hacking Web App Attack
Anonymous	2024-10-08 06:07:31 (1 year ago)	Ports: 20,21,25,53,80,110,143,443,465,587,993,995,2077,2078,2079,2080,2082,2083,2086,2087,2095,2096, ... show more Ports: 20,21,25,53,80,110,143,443,465,587,993,995,2077,2078,2079,2080,2082,2083,2086,2087,2095,2096,3306,2195; Direction: 0; Trigger: LF_CUSTOMTRIGGER show less	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-09-30 22:41:13 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.40.106 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.40.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 30 18:41:06.694933 2024] [security2:error] [pid 1751:tid 1779] [client 45.3.40.106:2647] [client 45.3.40.106] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|barneysprecision.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "barneysprecision.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZvspAoEoVNmAXAZj7yHGYAAAABM"], referer: https://barneysprecision.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 165.154.200.214

🇨🇦 99.243.126.66

🇵🇱 87.251.64.147

🇷🇴 80.94.92.182

🇧🇪 34.156.89.0

🇧🇷 177.120.216.0

🇨🇳 117.187.180.236

🇺🇸 40.74.208.9

🇺🇸 16.58.56.214

🇺🇸 207.90.244.26

🇺🇸 184.105.247.207

🇫🇮 147.185.133.192

🇳🇱 77.91.71.12

🇺🇸 66.132.195.24

🇮🇳 45.43.45.254

🇺🇸 18.119.209.50

🇳🇱 195.178.110.199

🇳🇱 193.176.31.220

🇬🇧 165.154.174.27

🇨🇳 121.40.84.38