JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.62.25

45.3.62.25 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.62.25

Whois 45.3.62.25

IP Abuse Reports for 45.3.62.25:

This IP address has been reported a total of 22 times from 14 distinct sources. 45.3.62.25 was first reported on September 4th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 myagent.site	2026-02-10 02:26:09 (3 months ago)	Blocking for trying to access an exploit file: /test/.git/config	Hacking
🇳🇱 i-turnradio.nl	2026-02-04 04:54:08 (4 months ago)	2026-02-04 05:54:07 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇺🇸 TPI-Abuse	2026-01-02 20:07:01 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.62.25 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.62.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 02 15:06:33.624449 2026] [security2:error] [pid 20833:tid 20833] [client 45.3.62.25:21781] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.joanofartdesign.com"] [uri "/.git/HEAD"] [unique_id "aVglSQJqvqqNw20YAufBjwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2025-12-30 17:57:24 (5 months ago)	Blocked by UFW (TCP on 80) Source port: 20923 TTL: 52 Packet length: 60 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 20923 TTL: 52 Packet length: 60 TOS: 0x00 This report (for 45.3.62.25) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:47:18 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.62.25 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.62.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:47:15.063518 2025] [security2:error] [pid 10086:tid 10086] [client 45.3.62.25:57623] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dunningtons.com"] [uri "/.git/HEAD"] [unique_id "aVIV4_f6OnUyV6aNsmpIPAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:44:28 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.62.25 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.62.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:44:23.734630 2025] [security2:error] [pid 26195:tid 26195] [client 45.3.62.25:59423] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dannyvanryswyk.com"] [uri "/.svn/wc.db"] [unique_id "aVIHJ_JN__PPBJgysCc4rQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:23:49 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.62.25 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.62.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:23:43.383801 2025] [security2:error] [pid 24982:tid 24982] [client 45.3.62.25:28799] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "johnsshoehospital.com"] [uri "/.svn/wc.db"] [unique_id "aVICT0FiT-TSAhumbH8sMwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 03:59:48 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.62.25 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.62.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 22:59:40.511371 2025] [security2:error] [pid 19169:tid 19169] [client 45.3.62.25:36607] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "10bestcountryclubs.com"] [uri "/.env"] [unique_id "aVH8rF8SxfJt46PyGalOKwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 iNetWorker	2025-12-28 16:11:13 (5 months ago)	trolling for resource vulnerabilities	Web App Attack
🇩🇪 ManagedStack	2025-12-28 16:00:14 (5 months ago)	Probing access to unauthorized locations	Hacking Exploited Host Web App Attack
🇮🇹 VHosting	2025-12-23 23:40:32 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-11-14 05:14:47 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇧🇷 hostseries	2025-10-17 12:37:47 (7 months ago)	Trigger: LF_DISTATTACK	Brute-Force
🇨🇦 wil.com	2025-10-13 19:15:39 (7 months ago)	GlobalProtect login attempts with user jlasante.	VPN IP Brute-Force

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.180.246.145

🇩🇪 213.209.159.241

🇮🇳 202.71.25.10

🇧🇴 181.115.147.5

🇪🇸 178.237.230.248

🇺🇸 152.32.150.26

🇸🇬 136.110.59.159

🇧🇬 78.128.114.22

🇺🇸 65.49.1.239

🇩🇪 34.40.125.184

🇺🇸 20.65.194.176

🇳🇱 185.156.73.233

🇺🇸 172.96.182.111

🇰🇷 125.142.37.91

🇨🇳 112.36.11.105

🇺🇦 91.196.98.137

🇭🇺 88.132.229.80

🇳🇱 50.7.230.3

🇲🇾 47.250.133.70

🇺🇸 44.38.70.222