JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.54.235

45.3.54.235 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 36%: ?

36%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.54.235

Whois 45.3.54.235

IP Abuse Reports for 45.3.54.235:

This IP address has been reported a total of 29 times from 18 distinct sources. 45.3.54.235 was first reported on March 20th 2025, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇭🇺 bcsaba	2026-06-29 13:58:51 (9 hours ago)	CMS (WordPress or Joomla) login attempt. 45.3.54.235 - - [29/Jun/2026:15:58:45 +0200] "POST /wp-logi ... show more CMS (WordPress or Joomla) login attempt. 45.3.54.235 - - [29/Jun/2026:15:58:45 +0200] "POST /wp-login.php HTTP/1.1" 200 3521 "https://REDACTED/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" show less	Hacking Brute-Force Web App Attack
🇫🇷 ELYAZ	2026-06-29 03:22:20 (19 hours ago)	(y4) Failed scan -byebye- from 45.3.54.235 (GB/United Kingdom/-): (CF_ENABLE)	Hacking
🇲🇽 octageeks.com	2026-06-28 04:24:17 (1 day ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇩🇪 FeG Deutschland	2026-06-27 21:10:24 (2 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇫🇷 tilellit.pro	2026-06-26 01:28:35 (3 days ago)	Fail2Ban banned 45.3.54.235 for security violations in jail wp-armour. Log: 2026/06/26 01:28:35 [err ... show more Fail2Ban banned 45.3.54.235 for security violations in jail wp-armour. Log: 2026/06/26 01:28:35 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 45.3.54.235 \| Target: wplogin" , client: 45.3.54.235, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
Anonymous	2026-01-16 14:28:30 (5 months ago)	wordpress-trap	Web App Attack
Anonymous	2026-01-05 20:11:10 (5 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.05 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-12-11 00:46:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.235 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 19:46:02.533373 2025] [security2:error] [pid 19173:tid 19173] [client 45.3.54.235:16763] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "intothebigempty.com"] [uri "/.git/HEAD"] [unique_id "aToUSrPdhG4ujsjtLKQHgQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-07 13:06:03 (6 months ago)	Trying to access config files	Web App Attack
🇳🇱 homeshowdomain.nl	2025-12-06 22:59:40 (6 months ago)	Auto-ban: >3000 req/min op 2025-12-06	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-06 21:28:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.235 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 16:28:06.083434 2025] [security2:error] [pid 21467:tid 21467] [client 45.3.54.235:43599] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "firstsuez.net"] [uri "/.env"] [unique_id "aTSf5hNAn1Pt9fBid9QkQwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 20:12:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.235 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 15:12:38.799235 2025] [security2:error] [pid 18874:tid 18874] [client 45.3.54.235:16093] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tomorrowsdust.net"] [uri "/.env"] [unique_id "aTSONgSPFduaAu2SWmz0LAAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 16:41:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.235 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 11:41:40.766299 2025] [security2:error] [pid 19273:tid 19273] [client 45.3.54.235:21185] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tonydelov.net"] [uri "/.git/HEAD"] [unique_id "aTRcxDH8tofoqO3GHR1zawAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 02:50:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.235 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 21:50:09.052244 2025] [security2:error] [pid 8338:tid 8349] [client 45.3.54.235:31839] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bhsclassof68.info"] [uri "/.env"] [unique_id "aTOZ4SfhhU00-TTlA9KqjAAAAMk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-12-06 02:30:12 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.198.128.124

🇸🇬 148.66.142.9

🇻🇳 103.78.0.229

🇲🇾 49.124.148.186

🇭🇰 43.132.150.89

🇷🇺 31.173.67.77

🇷🇴 2.57.121.112

🇬🇧 198.244.189.160

🇺🇸 195.184.76.111

🇮🇹 172.253.228.153

🇺🇸 162.216.150.183

🇫🇮 147.185.133.174

🇺🇸 23.94.92.98

🇺🇸 13.223.136.144

🇨🇳 220.189.209.18

🇵🇱 146.59.95.254

🇮🇳 110.225.255.179

🇵🇱 109.205.211.91

🇳🇱 91.92.40.31

🇺🇸 66.132.195.91