JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.40.134

45.3.40.134 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.40.134

Whois 45.3.40.134

IP Abuse Reports for 45.3.40.134:

This IP address has been reported a total of 16 times from 9 distinct sources. 45.3.40.134 was first reported on November 4th 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 stinpriza	2025-12-18 03:31:07 (5 months ago)	Web App Attack	Web App Attack
🇩🇪 Vegascosmetics	2025-12-03 22:50:22 (6 months ago)	Kingcopy(AI-IDS):IP does Multiple AWS Environment Abuse	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-03 08:18:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.40.134 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.40.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 03 03:18:28.729108 2025] [security2:error] [pid 22831:tid 22831] [client 45.3.40.134:17587] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thesilverlegion.org"] [uri "/.env"] [unique_id "aS_yVMNqI6JP83Kc-YAKGwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-02 13:17:16 (6 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 08:19:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.40.134 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.40.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 03:19:42.898219 2025] [security2:error] [pid 26166:tid 26166] [client 45.3.40.134:27413] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dewsales.com"] [uri "/.git/HEAD"] [unique_id "aS6hHt235llRVp2H_CrfyAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 06:53:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.40.134 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.40.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 01:53:43.408434 2025] [security2:error] [pid 15092:tid 15092] [client 45.3.40.134:58225] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "antcanada.com"] [uri "/.svn/wc.db"] [unique_id "aS6M947srVnlISUqfVSSKwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 02:22:24 (6 months ago)	(mod_security) mod_security (id:225170) triggered by 45.3.40.134 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.40.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 21:22:20.909912 2025] [security2:error] [pid 22491:tid 22516] [client 45.3.40.134:50573] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mandhco.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mandhco.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aSkHXKcXTp7qtCbsLRNksgAAARI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-11-19 08:24:56 (6 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-11-02 20:11:30 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:01:18	Port Scan Brute-Force Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2025-04-08 07:51:44 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.40.134 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.40.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 08 03:51:39.318918 2025] [security2:error] [pid 1211548:tid 1211548] [client 45.3.40.134:41341] [client 45.3.40.134] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|homenetserv.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "homenetserv.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z_TVi-BjlPxuBr7t6KWOvgAAAAU"], referer: https://homenetserv.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2025-03-10 04:11:11 (1 year ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇺🇸 TPI-Abuse	2025-01-16 03:49:41 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.40.134 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.40.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 15 22:49:34.629941 2025] [security2:error] [pid 24796:tid 24796] [client 45.3.40.134:46533] [client 45.3.40.134] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|hazardvillefire.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "hazardvillefire.org"] [uri "/wp-json/wp/v2/users"] [unique_id "Z4iBzoetOrahAFmhB0QHmwAAAAk"], referer: https://hazardvillefire.org show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-01-13 16:18:25 (1 year ago)	Brute Force Login Attempts	Hacking Brute-Force
🇺🇸 PulseServers	2024-11-09 03:28:15 (1 year ago)	Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com ... show more Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com - ISUS1 ... show less	DDoS Attack Exploited Host
🇺🇸 PulseServers	2024-11-08 00:47:03 (1 year ago)	Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com ... show more Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com - ISUS2 ... show less	DDoS Attack Exploited Host

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 2804:187c:84dd:2b00:4580:2c68:d035:65ac

🇨🇳 222.186.42.147

🇨🇳 221.233.50.238

🇺🇸 185.180.141.12

🇺🇸 184.105.139.67

🇧🇷 177.76.134.111

🇫🇷 176.125.224.179

🇷🇴 80.94.92.186

🇺🇸 65.49.1.192

🇸🇬 43.134.110.104

🇺🇸 34.68.33.46

🇺🇸 2602:fb54:1400::1e8

🇨🇳 222.174.65.38

🇺🇸 216.25.89.156

🇳🇱 192.142.24.7

🇺🇸 185.226.198.7

🇺🇸 184.105.139.75

🇸🇳 154.125.101.247

🇻🇳 103.77.246.174

🇳🇬 102.88.137.213