JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.44.235

45.3.44.235 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 35%: ?

35%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.44.235

Whois 45.3.44.235

IP Abuse Reports for 45.3.44.235:

This IP address has been reported a total of 14 times from 11 distinct sources. 45.3.44.235 was first reported on January 1st 2025, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-06-23 15:15:58 (18 hours ago)	(y4) Failed scan -byebye- from 45.3.44.235 (ES/Spain/-): (CF_ENABLE)	Hacking
Anonymous	2026-06-20 01:19:38 (4 days ago)	Web attack blocked by Wordfence on vestingstadvalkenburg.nl (1 hit). Reported by CRMON.	Web App Attack
🇬🇷 setupgr	2026-06-19 23:00:14 (4 days ago)	(mod_security) mod_security (id:900001) triggered by 45.3.44.235 (ES/Spain/Madrid/Madrid/-/[AS200373 ... show more (mod_security) mod_security (id:900001) triggered by 45.3.44.235 (ES/Spain/Madrid/Madrid/-/[AS200373 DREI-K-TECH-GMBH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 20 02:00:13.889558 2026] [security2:error] [pid 2277:tid 2370] [client 45.3.44.235:10459] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "75"] [id "900001"] [msg "Blocked WP Login attempt on domain: adoro.gr"] [severity "CRITICAL"] [tag "security"] [hostname "adoro.gr"] [uri "/wp-login.php"] [unique_id "ajXJ_VVjV5VR3hAZ4rkk4wAAAEc"], referer: https://adoro.gr/wp-login.php show less	Port Scan
🇫🇷 Sklurk	2026-06-17 00:41:22 (1 week ago)	Web App Attack	Web App Attack
🇲🇽 octageeks.com	2026-06-15 04:14:46 (1 week ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇲🇽 octageeks.com	2026-06-12 04:07:11 (1 week ago)	Wordpress malicious attack:[octaflood]	Web App Attack
Anonymous	2026-06-11 04:21:08 (1 week ago)	[server.tmg.gr] httpd-login-spray-site: sites=add2022.gr; logs=/var/log/httpd/domains/add2022.gr.log ... show more [server.tmg.gr] httpd-login-spray-site: sites=add2022.gr; logs=/var/log/httpd/domains/add2022.gr.log; samples=site_wide=true \| distinct_ips=28 \| /wp-login.php show less	Hacking Web App Attack
🇦🇺 MAGIC	2025-12-02 03:02:06 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-24 07:16:58 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.44.235 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.44.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:16:48.932373 2025] [security2:error] [pid 13943:tid 14045] [client 45.3.44.235:43751] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.sasintegrated.com"] [uri "/.svn/wc.db"] [unique_id "aSQGYOpgfj-qx9CvqmSH-gAAAhA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:53:17 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.44.235 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.44.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:53:02.461563 2025] [security2:error] [pid 10620:tid 10620] [client 45.3.44.235:50697] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.streamlinenz.com"] [uri "/.svn/wc.db"] [unique_id "aSPkrhanHVl-746wb3XcGQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 14:02:44 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/14 07:59:51	Port Scan Brute-Force Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2025-02-25 13:42:33 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.44.235 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.44.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 25 08:42:26.488334 2025] [security2:error] [pid 8387:tid 8387] [client 45.3.44.235:55769] [client 45.3.44.235] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|khaoula.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "khaoula.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z73IwkPq9tOj1cZZ9Bp-hAAAAAs"], referer: https://khaoula.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 NXTwoThou	2025-02-24 13:55:14 (1 year ago)	/wp-login.php	Web App Attack
🇩🇪 FeG Deutschland	2025-01-01 10:33:33 (1 year ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 145	Exploited Host Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 182.52.109.76

🇺🇸 168.100.149.182

🇺🇸 143.198.180.209

🇨🇳 27.44.147.113

🇨🇳 223.91.144.219

🇬🇧 185.216.145.186

🇺🇸 180.178.56.114

🇺🇸 168.100.149.139

🇺🇸 135.237.127.116

🇮🇪 108.131.157.119

🇵🇰 103.77.9.135

🇸🇬 103.7.11.134

🇵🇱 95.214.53.157

🇬🇧 87.236.176.94

🇪🇸 79.152.136.243

🇺🇸 47.251.48.26

🇯🇵 8.216.16.79

🇬🇧 2a06:4880:4000::4e

🇮🇳 205.254.174.9

🇺🇸 168.100.149.18