JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.52.67

45.3.52.67 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 62%: ?

62%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.52.67

Whois 45.3.52.67

IP Abuse Reports for 45.3.52.67:

This IP address has been reported a total of 32 times from 20 distinct sources. 45.3.52.67 was first reported on March 7th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-06-26 00:23:55 (1 day ago)	(y4) Failed scan -byebye- from 45.3.52.67 (BR/Brazil/-): (CF_ENABLE)	Hacking
🇬🇷 setupgr	2026-06-24 20:02:07 (2 days ago)	(mod_security) mod_security (id:900001) triggered by 45.3.52.67 (BR/Brazil/SÃ£o Paulo/SÃ£o Paulo/-/[ ... show more (mod_security) mod_security (id:900001) triggered by 45.3.52.67 (BR/Brazil/SÃ£o Paulo/SÃ£o Paulo/-/[AS200373 DREI-K-TECH-GMBH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 24 23:02:04.728820 2026] [security2:error] [pid 278469:tid 278608] [client 45.3.52.67:63113] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "75"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.asteriassantorini.com"] [severity "CRITICAL"] [tag "security"] [hostname "mail.asteriassantorini.com"] [uri "/wp-login.php"] [unique_id "ajw3vKlgCRSWQBpPApjeEwAAAUc"], referer: https://mail.asteriassantorini.com/wp-login.php show less	Port Scan
🇬🇧 poundawebsiteltd	2026-06-22 07:53:37 (4 days ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 45.3.52.67 - - [22/Jun/2026:08:53:32 +0100] POST ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 45.3.52.67 - - [22/Jun/2026:08:53:32 +0100] POST /wp-login.php HTTP/1.1 200 7257 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 show less	Web App Attack
Anonymous	2026-06-19 11:23:49 (1 week ago)	[server.tmg.gr] httpd-login-spray-site: sites=crisis-management2017.eu; logs=/var/log/httpd/domains/ ... show more [server.tmg.gr] httpd-login-spray-site: sites=crisis-management2017.eu; logs=/var/log/httpd/domains/crisis-management2017.eu.log; samples=site_wide=true \| distinct_ips=14 \| /wp-login.php show less	Hacking Web App Attack
🇫🇷 ELYAZ	2026-06-18 16:33:00 (1 week ago)	(y4) Failed scan -byebye- from 45.3.52.67 (BR/Brazil/-): (CF_ENABLE)	Hacking
🇫🇷 pm33	2026-06-17 13:50:57 (1 week ago)	Wordpress login attempts	Brute-Force
🇩🇪 london2038.com	2026-06-16 01:20:25 (1 week ago)	Attacking WordPress 45.3.52.67 - - [16/Jun/2026:03:20:23 +0200] "POST /wp-login.php HTTP/1.1" 503 19 ... show more Attacking WordPress 45.3.52.67 - - [16/Jun/2026:03:20:23 +0200] "POST /wp-login.php HTTP/1.1" 503 19309 "https://<REDACTED>/wp-login.php" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" show less	Brute-Force Web App Attack
🇳🇿 billyborsht	2026-06-15 22:58:15 (1 week ago)	2026-06-16T10:58:13.804411+12:00 southern wordpress(kate.frykberg.co.nz)[851010]: Authentication att ... show more 2026-06-16T10:58:13.804411+12:00 southern wordpress(kate.frykberg.co.nz)[851010]: Authentication attempt for unknown user audywebyani@112 from 45.3.52.67 ... show less	Hacking Web App Attack
Anonymous	2026-06-14 16:31:15 (1 week ago)	[server.tmg.gr] httpd-login-spray-site: sites=crisis-management2018.eu; logs=/var/log/httpd/domains/ ... show more [server.tmg.gr] httpd-login-spray-site: sites=crisis-management2018.eu; logs=/var/log/httpd/domains/crisis-management2018.eu.log; samples=site_wide=true \| distinct_ips=12 \| /wp-login.php show less	Hacking Web App Attack
🇬🇷 setupgr	2026-06-13 10:07:43 (1 week ago)	(mod_security) mod_security (id:900001) triggered by 45.3.52.67: 1 in the last 86400 secs; Ports: ; ... show more (mod_security) mod_security (id:900001) triggered by 45.3.52.67: 1 in the last 86400 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 13 13:07:42.947414 2026] [security2:error] [pid 705293:tid 705506] [client 45.3.52.67:25891] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.setworldup.com"] [severity "CRITICAL"] [tag "security"] [hostname "mail.setworldup.com"] [uri "/wp-login.php"] [unique_id "ai0r7nxsrtCDMa-O0cIvngAAARg"], referer: https://mail.setworldup.com/wp-login.php show less	Port Scan
🇺🇸 lostswordfish.com	2026-06-11 18:34:04 (2 weeks ago)	Wordfence waf block on pameganslaw	Web App Attack
🇺🇸 dtorrer	2026-06-11 18:09:55 (2 weeks ago)	Brute-force general attack.	Brute-Force
🇳🇱 homeshowdomain.nl	2026-06-01 21:59:21 (3 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-31. show less	Web App Attack SSH Hacking
🇬🇧 AvonleaConsulting	2026-05-31 22:58:42 (3 weeks ago)	Attempts to probe web pages for vulnerable PHP or other applications	Web App Attack
🇧🇪 cmbplf	2026-05-31 05:22:43 (3 weeks ago)	567 requests with url.path .git/ 566 requests with url.path */.git/config	Brute-Force Bad Web Bot

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇱 185.241.208.23

🇬🇧 101.36.97.187

🇬🇧 35.203.211.251

🇻🇳 14.225.206.187

🇨🇳 222.135.178.13

🇺🇸 216.244.66.249

🇳🇱 213.177.179.79

🇨🇭 209.99.184.143

🇲🇽 201.149.53.243

🇹🇼 198.235.24.125

🇬🇧 193.163.125.131

🇰🇷 183.100.172.92

🇺🇸 172.253.210.88

🇩🇪 165.154.138.3

🇵🇰 160.191.208.206

🇮🇩 157.15.67.253

🇷🇴 141.98.83.48

🇻🇳 116.111.112.67

🇻🇳 116.99.168.247

🇦🇺 103.25.57.53