JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.51.67

45.3.51.67 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.51.67

Whois 45.3.51.67

IP Abuse Reports for 45.3.51.67:

This IP address has been reported a total of 26 times from 15 distinct sources. 45.3.51.67 was first reported on October 6th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-04-06 01:58:12 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 45.3.51.67 (US/United States/-): 1 in the last ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 45.3.51.67 (US/United States/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇨🇭 backslash	2025-12-24 10:10:06 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇮🇹 VHosting	2025-12-23 12:40:22 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇬🇧 SilverZippo	2025-12-02 08:51:44 (6 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2025-11-29 00:42:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 19:42:19.989018 2025] [security2:error] [pid 30927:tid 30927] [client 45.3.51.67:54957] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aboutahome.net"] [uri "/wp-config.php"] [unique_id "aSpBa8GK77Zj7dw_63WBlAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 19:09:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 14:08:56.992783 2025] [security2:error] [pid 2947710:tid 2947721] [client 45.3.51.67:18617] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aaenroll.com"] [uri "/.env.local"] [unique_id "aSnzSI1ZB7da-n4ketkmQAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 13:50:33 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 08:50:26.448360 2025] [security2:error] [pid 5035:tid 5035] [client 45.3.51.67:14327] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|amazinggraceministries.net\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "amazinggraceministries.net"] [uri "/database.sql"] [unique_id "aSmoohapX7d6B3FGV7cWjwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 13:23:03 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 08:22:58.003469 2025] [security2:error] [pid 7173:tid 7173] [client 45.3.51.67:26857] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|amatosdrywall.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "amatosdrywall.com"] [uri "/backup.sql"] [unique_id "aSmiMRblxY_zETn80TUhCQAAAAQ"], referer: http://amatodrywall.com/backup.sql show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:52:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:52:01.953388 2025] [security2:error] [pid 14831:tid 14831] [client 45.3.51.67:24179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.austinbiblestudents.org"] [uri "/.env"] [unique_id "aSQAkSfmHUE1T7EqzV3SoQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:15:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:15:42.362521 2025] [security2:error] [pid 28515:tid 28515] [client 45.3.51.67:37187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.blaslandsporthorses.com"] [uri "/.env"] [unique_id "aSPp_q41SHC7gm1WaggPaAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:25:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.51.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:25:27.669398 2025] [security2:error] [pid 23577:tid 23590] [client 45.3.51.67:21867] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "12am.com"] [uri "/.git/HEAD"] [unique_id "aSPQJxixFzj2kh7Z4vvbxgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-14 02:17:03 (6 months ago)	Attempted access to sensitive endpoint (/.git) detected. Automated scan or unauthorized probing.	Web App Attack
Anonymous	2025-11-07 09:50:36 (6 months ago)	[redacted] 45.3.51.67 - - [07/Nov/2025:10:50:24 +0100] "POST /xmlrpc.php HTTP/2.0" 200 444 "-" "Mozi ... show more [redacted] 45.3.51.67 - - [07/Nov/2025:10:50:24 +0100] "POST /xmlrpc.php HTTP/2.0" 200 444 "-" "Mozilla/5.0 (iPad; CPU OS 7_0_3 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Version/7.0 Mobile/11B511 Safari/9537.53" [redacted] 45.3.51.67 - - [07/Nov/2025:10:50:26 +0100] "POST /xmlrpc.php HTTP/2.0" 200 444 "-" "Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) Version/8.0 Mobile/12H143 Safari/600.1.4" [redacted] 45.3.51.67 - - [07/Nov/2025:10:50:27 +0100] "POST /xmlrpc.php HTTP/2.0" 200 444 "-" "Mozilla/5.0 (Windows NT 6.3; WOW64; rv:59.0) Gecko/20100101 Firefox/59.0" [redacted] 45.3.51.67 - - [07/Nov/2025:10:50:29 +0100] "POST /xmlrpc.php HTTP/2.0" 200 444 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)" [redacted] 45.3.51.67 - - [07/Nov/2025:10:50:31 +0100] "POST /xmlrpc.ph ... show less	Hacking Web App Attack
Anonymous	2025-11-01 19:16:14 (7 months ago)	[redacted] 45.3.51.67 - - [01/Nov/2025:20:16:03 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozi ... show more [redacted] 45.3.51.67 - - [01/Nov/2025:20:16:03 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/20100101 Firefox/43.0" [redacted] 45.3.51.67 - - [01/Nov/2025:20:16:04 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Linux; Android 7.1.1; Moto G Play) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.64 Mobile Safari/537.36" [redacted] 45.3.51.67 - - [01/Nov/2025:20:16:05 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Linux; Android 8.0.0; moto g(6) play Build/OPP27.91-87) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Mobile Safari/537.36" [redacted] 45.3.51.67 - - [01/Nov/2025:20:16:06 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.3) Gecko/2008092417 Firefox/3.0.3" [redacted] 45.3.51.67 - - [01/Nov/2025:20:16:07 +0100] "POST /xmlrpc.php HTTP/2.0" 200 ... show less	Hacking Web App Attack
🇩🇪 Marc	2025-10-29 21:33:31 (7 months ago)		Brute-Force

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.66

🇧🇩 144.79.133.50

🇹🇼 118.194.252.168

🇷🇴 92.118.39.236

🇬🇧 82.33.157.88

🇬🇧 35.203.211.93

🇸🇬 13.229.207.65

🇺🇸 152.32.236.157

🇬🇺 103.112.0.32

🇧🇬 79.124.56.138

🇸🇬 47.237.209.250

🇬🇧 35.203.211.222

🇨🇳 220.154.130.81

🇮🇳 143.110.186.36

🇨🇳 120.26.202.34

🇫🇮 13.140.30.26

🇳🇱 193.176.31.212

🇭🇰 152.32.212.49

🇷🇺 81.211.72.167

🇳🇱 45.148.10.152