JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.52.218

45.3.52.218 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.52.218

Whois 45.3.52.218

IP Abuse Reports for 45.3.52.218:

This IP address has been reported a total of 29 times from 9 distinct sources. 45.3.52.218 was first reported on October 28th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-05-07 05:56:09 (1 month ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇮🇹 LTM	2026-05-01 06:20:01 (1 month ago)	DNS - Multiple recursive query request denied	DNS Poisoning Hacking
🇺🇸 TPI-Abuse	2026-02-19 04:24:21 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 23:24:14.769058 2026] [security2:error] [pid 29060:tid 29060] [client 45.3.52.218:14843] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kln.ne.jp"] [uri "/app/.env"] [unique_id "aZaQbiTVMjgltKvh3ew4DAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-18 19:05:14 (3 months ago)	WAF repeated trigger detected by Fail2Ban	Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:53:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:53:11.522260 2026] [security2:error] [pid 26077:tid 26077] [client 45.3.52.218:55717] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thugdoggsrecords.com"] [uri "/app/.env"] [unique_id "aZYKl8c1vblE0Cp6TjQ1hAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:06:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:06:11.482959 2026] [security2:error] [pid 28226:tid 28226] [client 45.3.52.218:56947] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "watongacommunitycats.org"] [uri "/.git/config"] [unique_id "aZWrM1dNRZPTVJlMB9cUfAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-21 04:59:14 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210350) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 20 23:58:48.482375 2026] [security2:error] [pid 14949:tid 14949] [client 45.3.52.218:25443] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|oualierealty.com\|F\|4"] [data "close, keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "oualierealty.com"] [uri "/index.php"] [unique_id "aXBdCFh9bVVmX6n_8JxQxgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:05 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-25 06:59:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:59:13.196233 2025] [security2:error] [pid 20853:tid 20853] [client 45.3.52.218:29807] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.sydneysue.com"] [uri "/.git/HEAD"] [unique_id "aSVTwexDRoYLCWh861YbYgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:24:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:24:45.925028 2025] [security2:error] [pid 911806:tid 911806] [client 45.3.52.218:31101] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.fashionisland.ca"] [uri "/.git/HEAD"] [unique_id "aSVLrePP9L4wR1gsqoU-8wAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:05:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:05:35.842955 2025] [security2:error] [pid 24739:tid 24739] [client 45.3.52.218:57245] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.lognlumber.com"] [uri "/.git/HEAD"] [unique_id "aSVHLywoZ0rbJWcJt8wQZgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:22:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:22:27.298980 2025] [security2:error] [pid 1817001:tid 1817057] [client 45.3.52.218:32671] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mjam.newtrendmag.org"] [uri "/.env"] [unique_id "aSU9E2R1ttxeyDpsCa9wBwAAAZI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:05:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:05:24.158707 2025] [security2:error] [pid 23394:tid 23394] [client 45.3.52.218:25653] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "woahmanatee.robertmcatee.com"] [uri "/.svn/wc.db"] [unique_id "aSU5FHBa7aCyfLL6UHb1tgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:34:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:33:57.397075 2025] [security2:error] [pid 325:tid 325] [client 45.3.52.218:51221] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.jessiedavison.com"] [uri "/.svn/wc.db"] [unique_id "aSUxtTdoxuHa17Qgk5m-OwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:12:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.52.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:12:22.283623 2025] [security2:error] [pid 17988:tid 17988] [client 45.3.52.218:29363] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.forwardfusion.co"] [uri "/.svn/wc.db"] [unique_id "aSUspu1TRoB9mH5iryW5NQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.182.225.104

🇮🇳 182.95.43.50

🇫🇮 147.185.133.191

🇫🇷 85.217.140.32

🇮🇩 36.78.107.60

🇮🇷 86.57.57.127

🇺🇸 66.132.172.98

🇺🇸 52.154.22.57

🇸🇬 47.82.15.151

🇸🇬 43.98.183.93

🇧🇷 35.247.223.164

🇻🇳 14.178.66.187

🇮🇳 202.141.65.5

🇨🇳 113.57.184.16

🇷🇴 92.118.39.236

🇺🇸 91.230.168.201

🇬🇧 87.106.67.224

🇬🇧 77.68.99.202

🇺🇸 70.122.156.86

🇩🇪 64.89.163.130