JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.52.202

45.3.52.202 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 28%: ?

28%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.52.202

Whois 45.3.52.202

IP Abuse Reports for 45.3.52.202:

This IP address has been reported a total of 19 times from 8 distinct sources. 45.3.52.202 was first reported on November 12th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-06-24 07:22:49 (2 days ago)	(y4) Failed scan -byebye- from 45.3.52.202 (BR/Brazil/-): (CF_ENABLE)	Hacking
🇦🇺 MAGIC	2026-06-24 05:09:59 (2 days ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇫🇷 pm33	2026-06-21 22:27:59 (4 days ago)	Wordpress login attempts	Brute-Force
🇫🇷 ELYAZ	2026-06-19 08:03:05 (1 week ago)	(y4) Failed scan -byebye- from 45.3.52.202 (BR/Brazil/-): (CF_ENABLE)	Hacking
🇫🇷 tilellit.pro	2026-06-16 02:19:03 (1 week ago)	Fail2Ban banned 45.3.52.202 for security violations in jail wp-armour. Log: 2026/06/16 02:19:03 [err ... show more Fail2Ban banned 45.3.52.202 for security violations in jail wp-armour. Log: 2026/06/16 02:19:03 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 45.3.52.202 \| Target: wplogin" , client: 45.3.52.202, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇺🇸 TPI-Abuse	2025-12-09 21:04:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 16:04:39.006582 2025] [security2:error] [pid 9211:tid 9211] [client 45.3.52.202:54353] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rubypines.com"] [uri "/.env"] [unique_id "aTiO52T6RXeQe09YydtxewAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 21:09:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 16:09:23.938694 2025] [security2:error] [pid 18661:tid 18680] [client 45.3.52.202:13311] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "miltonthepuppy.com"] [uri "/.svn/wc.db"] [unique_id "aTXtAxCISM8QC4-GFiMmJwAAAMo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:21:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:21:35.542099 2025] [security2:error] [pid 9840:tid 9840] [client 45.3.52.202:20149] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "skyground.net"] [uri "/.git/HEAD"] [unique_id "aTQRv3nkJXanjBxpxhOLzQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 06:25:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 01:25:29.554395 2025] [security2:error] [pid 17983:tid 17983] [client 45.3.52.202:14033] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cuddliesforkids.com"] [uri "/.svn/wc.db"] [unique_id "aTJ62QesS1WxgrpuGNA77AAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 05:57:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 00:57:55.701926 2025] [security2:error] [pid 16689:tid 16689] [client 45.3.52.202:18675] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tcomputerguy.com"] [uri "/.svn/wc.db"] [unique_id "aTJ0Y-jumIruz02deQV19QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 01:10:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 20:10:13.095145 2025] [security2:error] [pid 3721:tid 3721] [client 45.3.52.202:20581] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "businessgetwellcards.com"] [uri "/.env"] [unique_id "aTIw9XvwjvVF-kmEGTcU3AAAADY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 20:31:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 15:31:08.831726 2025] [security2:error] [pid 21933:tid 21933] [client 45.3.52.202:15279] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "certifiedfarmersmarkets.org"] [uri "/.git/HEAD"] [unique_id "aSi1DFllJBtXn9uyt7EZFgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2025-11-12 00:24:49 (7 months ago)	(Botnet_distributed) Probably botnet. Call spam script from 45.3.52.202 (BR/Brazil/-): 1 in the last ... show more (Botnet_distributed) Probably botnet. Call spam script from 45.3.52.202 (BR/Brazil/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇺🇸 TPI-Abuse	2025-04-04 23:40:17 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.52.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 04 19:40:10.215499 2025] [security2:error] [pid 19510:tid 19510] [client 45.3.52.202:59789] [client 45.3.52.202] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|johnlittlehorn.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "johnlittlehorn.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z_Bt2j9jetns7TnyEVwqGAAAAAM"], referer: https://johnlittlehorn.com show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-03-26 23:12:48 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.148.10.141

🇺🇸 20.168.0.132

🇻🇪 190.75.26.152

🇻🇳 171.234.15.100

🇺🇸 159.223.191.100

🇫🇮 147.185.133.102

🇮🇳 125.19.163.58

🇨🇳 116.167.7.189

🇳🇱 77.83.39.42

🇯🇵 218.33.111.9

🇷🇴 193.46.255.86

🇧🇷 186.248.197.77

🇨🇳 175.11.69.228

🇮🇳 152.52.198.42

🇱🇻 81.30.98.44

🇺🇸 65.49.20.109

🇺🇸 65.49.1.195

🇩🇪 213.209.159.228

🇰🇷 221.156.126.1

🇺🇸 152.32.183.22