JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.54.8

45.3.54.8 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.54.8

Whois 45.3.54.8

IP Abuse Reports for 45.3.54.8:

This IP address has been reported a total of 25 times from 9 distinct sources. 45.3.54.8 was first reported on November 16th 2024, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Bedios GmbH	2026-06-10 01:56:43 (3 hours ago)	SQL backup theft attempt	Hacking
🇨🇳 ThreatBook.io	2026-04-24 00:14:29 (1 month ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/45.3.54.8 2026-04-23 0 ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/45.3.54.8 2026-04-23 06:31:26 /%2e%2e/index.js 2026-04-23 06:48:14 /static/ show less	Web App Attack
🇫🇷 pm33	2026-02-11 20:16:47 (3 months ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇫🇮 000rosiu	2026-02-10 14:11:11 (3 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/1.1 (GET method) Endpoint: /.env.local Timestamp: 2026-02-10T14:00:03Z Ray ID: 9cbc216dadb9dcb5 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Report generated by Cloudflare-WAF-To-AbuseIPDB: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇳🇿 FaB Property Group	2026-02-10 11:44:56 (3 months ago)	Requested file: .env.save	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:09:58 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:09:53.162579 2026] [security2:error] [pid 32362:tid 32362] [client 45.3.54.8:15439] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinhung.com"] [uri "/admin/.git/config"] [unique_id "aYqhgSRvvZN0GxbtyIN19gAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:00:53 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:00:43.042025 2026] [security2:error] [pid 11062:tid 11062] [client 45.3.54.8:10269] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kidswow.net"] [uri "/frontend/.env"] [unique_id "aYqRS4r5hl9Q9jEGb1V7jwAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:47:03 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:46:54.781672 2026] [security2:error] [pid 2616081:tid 2616081] [client 45.3.54.8:29475] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keysenterprise.net"] [uri "/admin/.env"] [unique_id "aYp__nNujYqOt7C2txXFcAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:05:45 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:05:40.754959 2026] [security2:error] [pid 2123059:tid 2123059] [client 45.3.54.8:52869] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kentsavagelaw.com"] [uri "/v2/.git/config"] [unique_id "aYp2VNAYDtAgAqErFMBxOgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:34:26 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:34:15.329414 2026] [security2:error] [pid 7325:tid 7325] [client 45.3.54.8:64931] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kellermoving.com"] [uri "/.env.production"] [unique_id "aYpu98coWw52ikRsYfkNdgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:03:49 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:03:38.153688 2026] [security2:error] [pid 5161:tid 5161] [client 45.3.54.8:29443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathleenhazlett.com"] [uri "/backend/.env"] [unique_id "aYpZuoyU-srokAud8-r4lAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:45:40 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:45:33.846065 2026] [security2:error] [pid 32208:tid 32219] [client 45.3.54.8:56489] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "honorac.com"] [uri "/.env.staging"] [unique_id "aYpHbTLjGA96x6QIS870agAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 19:46:51 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 14:46:44.658098 2026] [security2:error] [pid 12877:tid 12877] [client 45.3.54.8:25873] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "homecheckinmaine.com"] [uri "/.env.staging"] [unique_id "aYo5pHoOB0WNJ6dtGu3AgQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2026-01-02 16:58:36 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1264.71 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-27 19:49:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.54.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 14:49:10.386021 2025] [security2:error] [pid 24600:tid 24600] [client 45.3.54.8:44289] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "biomechanicalwars.com"] [uri "/.env"] [unique_id "aSirNmfNqGz1gpOqq462YwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2a01:4f8:c015:c877::1

🇨🇳 223.199.185.101

🇨🇳 182.245.204.163

🇨🇳 180.95.231.107

🇩🇪 170.168.99.122

🇺🇸 147.185.132.238

🇺🇸 107.180.88.176

🇨🇳 101.249.63.63

🇩🇪 69.5.169.80

🇨🇳 58.19.77.58

🇳🇱 45.148.10.240

🇺🇸 44.220.188.161

🇺🇸 40.83.182.122

🇺🇸 18.190.15.50

🇷🇴 2.57.122.238

🇺🇸 162.216.149.244

🇯🇵 152.32.201.217

🇺🇸 136.144.43.64

🇩🇪 130.61.152.179

🇨🇳 106.75.9.195