JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.54.240

45.3.54.240 was found in our database!

This IP was reported 50 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.54.240

Whois 45.3.54.240

IP Abuse Reports for 45.3.54.240:

This IP address has been reported a total of 50 times from 15 distinct sources. 45.3.54.240 was first reported on November 13th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 AvonleaConsulting	2026-04-30 23:07:43 (1 month ago)	Unrecognised attack	IoT Targeted
🇺🇸 nationaleventpros.com	2026-02-15 18:11:25 (3 months ago)	WordPress login attempt	Brute-Force
🇩🇪 big-cloud.nl	2026-02-10 04:43:11 (3 months ago)	Try to access /config/.env	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:24:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:24:05.882370 2026] [security2:error] [pid 1968:tid 1968] [client 45.3.54.240:31543] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kircali.net"] [uri "/.env.local"] [unique_id "aYqk1SflSt_BaNIP6RYpsgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 ketovoila.pl	2026-02-10 00:51:49 (3 months ago)	ketovoila.pl HONEYPOT traffic: count=1, paths=1; sample_path=ketovoila.pl/v2/.git/config; UA=Mozilla ... show more ketovoila.pl HONEYPOT traffic: count=1, paths=1; sample_path=ketovoila.pl/v2/.git/config; UA=Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36; window=2026-02-10T00:29:12Z..2026-02-10T00:29:12Z show less	Port Scan Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-02-09 23:08:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:07:58.275834 2026] [security2:error] [pid 15716:tid 15716] [client 45.3.54.240:40101] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hpepaper.com"] [uri "/.env.staging"] [unique_id "aYpozvJVKUmQ01DCOEZLzgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:21:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:21:21.712717 2026] [security2:error] [pid 25747:tid 25747] [client 45.3.54.240:55817] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hotspringstips.com"] [uri "/wp/.git/config"] [unique_id "aYpd4fpLqc1VL-dVkh-qtAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:24:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:24:06.741215 2026] [security2:error] [pid 28880:tid 28880] [client 45.3.54.240:43555] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kanata.ws"] [uri "/.env.staging"] [unique_id "aYpCZjWy9msYAbm8pu78jgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-11 03:29:37 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 10 22:29:32.116574 2026] [security2:error] [pid 636:tid 636] [client 45.3.54.240:59213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "saintlouiscenter.banis-associates.com"] [uri "/.git/config"] [unique_id "aWMZHBiRDBFJETXtRygLdwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-10 16:47:35 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 10 11:47:30.892885 2026] [security2:error] [pid 10919:tid 10919] [client 45.3.54.240:17611] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "salinabible.org"] [uri "/.git/config"] [unique_id "aWKCoiNrtVk267xW0172uwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-12-25 03:02:30 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇫🇮 Shaik Sai Meera	2025-12-04 18:20:10 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇵🇱 sefinek.net	2025-12-02 15:01:56 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇱🇻 garmtech.com	2025-11-26 22:01:36 (6 months ago)	Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 17:07:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 12:07:44.387022 2025] [security2:error] [pid 22250:tid 22250] [client 45.3.54.240:46047] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.listerman.org"] [uri "/.git/HEAD"] [unique_id "aScz4IG8EgGHRSqNjNGyOAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 50 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇶🇦 2600:1900:4260:40e::125

🇭🇰 203.198.173.137

🇱🇹 141.98.9.227

🇮🇩 103.41.247.76

🇭🇰 101.36.108.9

🇧🇬 91.191.209.198

🇸🇪 85.24.223.224

🇱🇹 81.30.98.62

🇫🇮 34.88.61.230

🇬🇧 2a06:4880:8000::b4

🇺🇸 2607:f8b0:4004:c27::123

🇻🇪 206.0.160.148

🇮🇳 202.62.88.25

🇺🇸 195.184.76.6

🇩🇪 194.88.98.104

🇫🇮 178.20.210.208

🇨🇦 104.28.161.116

🇳🇱 89.248.163.200

🇩🇰 85.203.47.71

🇱🇹 81.30.98.158