JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.32.246

45.3.32.246 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.32.246

Whois 45.3.32.246

IP Abuse Reports for 45.3.32.246:

This IP address has been reported a total of 21 times from 13 distinct sources. 45.3.32.246 was first reported on February 9th 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 SOC Blue Team	2026-01-16 17:48:47 (4 months ago)	Tatic: TA0006 \| Technique: T1110 \| Source: TAP \| Country Destination: BR	Brute-Force
Anonymous	2025-12-02 10:03:03 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-27 21:34:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.32.246 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.32.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 16:34:21.132896 2025] [security2:error] [pid 29277:tid 29277] [client 45.3.32.246:15907] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fatcaverecords.com"] [uri "/.env"] [unique_id "aSjD3fNEzRuOVt3-fZs5awAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 ingroscart.it	2025-11-26 17:38:20 (6 months ago)	(mod_security) mod_security triggered on hostname [redacted] 45.3.32.246 (US/United States/-)	SQL Injection
🇺🇸 TPI-Abuse	2025-11-26 10:07:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.32.246 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.32.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:07:37.716618 2025] [security2:error] [pid 27552:tid 27552] [client 45.3.32.246:9533] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.terazon.net"] [uri "/.git/HEAD"] [unique_id "aSbRaWRLkm_tWj4aba9NuwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:49:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.32.246 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.32.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:49:13.346660 2025] [security2:error] [pid 3797:tid 3797] [client 45.3.32.246:54277] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.jmwilliamsrealty.com"] [uri "/.git/HEAD"] [unique_id "aSaU2RNZi8xbyV54GLERtwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:06:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.32.246 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.32.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:06:46.524623 2025] [security2:error] [pid 12600:tid 12600] [client 45.3.32.246:19551] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kevinjewell.zombiekillabob.com"] [uri "/.git/HEAD"] [unique_id "aSZuxjWPWKxnoWwtsxTUYAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2025-11-24 08:30:23 (6 months ago)	Accessed trap at '/.git/HEAD'	Web App Attack
🇺🇸 TPI-Abuse	2025-11-13 00:46:47 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 45.3.32.246 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 45.3.32.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 12 19:46:40.228119 2025] [security2:error] [pid 6613:tid 6613] [client 45.3.32.246:14853] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.limegreengirl.michaelward.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.limegreengirl.michaelward.com"] [uri "/s3cmd.ini"] [unique_id "aRUqcPUWJ0AhhIrVTYgYYQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-02 23:10:00 (7 months ago)	Unauthorized connection attempt	Brute-Force
Anonymous	2025-10-18 00:58:42 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇨🇦 wil.com	2025-10-17 14:11:33 (7 months ago)	GlobalProtect login attempts with user klavilla.	VPN IP Brute-Force
Anonymous	2025-10-14 03:03:45 (8 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.14 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.14 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-05 15:13:11 (8 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.05 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-02 16:05:02 (8 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.02 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.02 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.88.98.92

🇵🇪 190.119.168.229

🇧🇷 177.155.133.175

🇺🇸 172.86.114.38

🇩🇪 134.122.93.100

🇧🇩 103.179.198.19

🇮🇳 103.91.246.73

🇰🇷 211.40.167.121

🇲🇽 189.220.43.115

🇭🇰 172.253.6.30

🇪🇸 115.42.55.220

🇵🇰 103.18.10.13

🇰🇪 102.210.149.105

🇳🇱 91.92.40.8

🇱🇹 81.30.98.75

🇯🇵 8.216.11.138

🇫🇷 5.196.147.61

🇦🇺 209.38.26.183

🇺🇸 192.3.196.157

🇳🇱 185.242.226.166