JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.41.125

45.3.41.125 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.41.125

Whois 45.3.41.125

IP Abuse Reports for 45.3.41.125:

This IP address has been reported a total of 14 times from 8 distinct sources. 45.3.41.125 was first reported on September 27th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 thetomtaylor.co.uk	2026-06-04 21:06:02 (1 day ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01]	Hacking Brute-Force Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-04 20:05:02 (1 day ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-17 06:51:04 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.41.125 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.41.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 17 01:51:00.075316 2026] [security2:error] [pid 17136:tid 17161] [client 45.3.41.125:43161] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.petrovicimagery.com"] [uri "/.env"] [unique_id "aWsxVFwg7oGn5pyQoJMoVQAAARE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-16 21:33:21 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.41.125 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.41.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 16:33:14.092779 2026] [security2:error] [pid 24699:tid 24699] [client 45.3.41.125:32641] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.greensandbeans.us"] [uri "/.env"] [unique_id "aWqumqx62W6oq1fovD6szgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-31 00:58:41 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇨🇭 backslash	2025-11-16 07:13:38 (6 months ago)		Bad Web Bot
🇨🇭 backslash	2025-03-31 22:00:31 (1 year ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-02-27 13:35:05 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.41.125 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.41.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 08:35:00.736792 2025] [security2:error] [pid 20663:tid 20663] [client 45.3.41.125:36529] [client 45.3.41.125] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|willymoc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "willymoc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z8BqBEpw46wH2p-8fUEmkgAAAAY"], referer: https://willymoc.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-02-26 19:59:46 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.41.125 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.41.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 26 14:59:43.057869 2025] [security2:error] [pid 5829:tid 5829] [client 45.3.41.125:42829] [client 45.3.41.125] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|brauerfamily.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "brauerfamily.org"] [uri "/wp-json/wp/v2/users"] [unique_id "Z79yryb3JZ3tXa2lbvIETQAAAAA"], referer: https://brauerfamily.org show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-02-18 13:04:01 (1 year ago)	wordpress-trap	Web App Attack
🇩🇪 F242	2025-02-11 21:59:17 (1 year ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇺🇸 TPI-Abuse	2024-11-11 14:01:26 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.41.125 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.41.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 11 09:01:19.353656 2024] [security2:error] [pid 2781642:tid 2781642] [client 45.3.41.125:19225] [client 45.3.41.125] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|nbyoung.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "nbyoung.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZzIOL6QMPRU0iw8YkDd38gAAAAA"], referer: https://nbyoung.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 EarthAsylum	2024-10-01 22:06:10 (1 year ago)	Multiple exploit attempts on WordPress entry points (unauthorized origin blocked)	Brute-Force Web App Attack
🇺🇸 hostseries	2024-09-27 17:48:27 (1 year ago)	Trigger: LF_DISTATTACK	Brute-Force

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇦 178.173.126.126

🇨🇳 114.234.101.12

🇲🇦 196.217.101.124

🇺🇸 162.216.150.161

🇲🇾 113.211.102.139

🇩🇪 91.67.24.209

🇳🇱 45.148.10.240

🇬🇧 35.203.211.153

🇺🇸 13.89.125.18

🇸🇬 165.154.236.104

🇫🇷 141.11.1.134

🇷🇺 95.108.213.162

🇷🇴 92.118.39.236

🇬🇧 91.125.148.23

🇮🇷 86.57.20.95

🇺🇸 75.101.201.179

🇺🇸 62.72.50.84

🇺🇸 2604:a880:4:1d0::2fa6:d000

🇧🇷 200.153.86.250

🇧🇷 177.30.64.65