JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.34.187

45.3.34.187 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 15%: ?

15%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.34.187

Whois 45.3.34.187

IP Abuse Reports for 45.3.34.187:

This IP address has been reported a total of 39 times from 17 distinct sources. 45.3.34.187 was first reported on November 4th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-17 05:55:04 (3 weeks ago)	Brute force	Brute-Force
Anonymous	2026-05-11 05:24:28 (4 weeks ago)	45.3.34.187 - - [11/May/2026:07:24:27 +0200] "GET http:///.env HTTP/1.1" 301 169 "-" "Mozilla/5.0 (W ... show more 45.3.34.187 - - [11/May/2026:07:24:27 +0200] "GET http:///.env HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Web App Attack
🇩🇪 Mr-Money	2026-05-10 12:41:00 (4 weeks ago)	45.3.34.187 - - [10/May/2026:14:40:59 +0200] "GET http://angebotscenter.aruna.de/.svn/wc.db HTTP/1.1 ... show more 45.3.34.187 - - [10/May/2026:14:40:59 +0200] "GET http://angebotscenter.aruna.de/.svn/wc.db HTTP/1.1" 404 437 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-02-15 12:19:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:19:49.345796 2026] [security2:error] [pid 18707:tid 18707] [client 45.3.34.187:26657] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "qualtacon.com"] [uri "/new/.git/config"] [unique_id "aZG55XGn47F3KcUSrMOTwgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:29:06 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:29:00.130337 2026] [security2:error] [pid 18284:tid 18284] [client 45.3.34.187:15139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ohiokaisers.com"] [uri "/v2/.git/config"] [unique_id "aZFZnFNhwB9zZ1qhyrNjSgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:00:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:00:21.114740 2026] [security2:error] [pid 274895:tid 274895] [client 45.3.34.187:16719] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nothotmail.org"] [uri "/api/.git/config"] [unique_id "aZFE1Y5h093b4GqNvZXkuwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 00:50:52 (3 months ago)	PSCSERV WPSCAN 45.3.34.187	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-20 23:13:21 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 20 18:13:14.915007 2026] [security2:error] [pid 15862:tid 15862] [client 45.3.34.187:33261] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ssion.com"] [uri "/.git/HEAD"] [unique_id "aXAMCkZQ62viuyynFi5uAgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-01-20 21:48:14 (4 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇩🇪 dklueh79	2026-01-20 21:42:39 (4 months ago)	Probe for vulnerabilities. Path attempted: /.git/HEAD	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:29 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-25 05:16:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:16:10.796176 2025] [security2:error] [pid 842575:tid 842575] [client 45.3.34.187:25755] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.schukin.com"] [uri "/.svn/wc.db"] [unique_id "aSU7mtZeFKS91KGRtJlXpwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:23:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:22:53.489685 2025] [security2:error] [pid 13756:tid 13830] [client 45.3.34.187:9885] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.mecconsultant.com"] [uri "/.svn/wc.db"] [unique_id "aSUvHS2vRx1ksuNuFaHDTAAAAMY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:06:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.34.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:06:29.823885 2025] [security2:error] [pid 30380:tid 30380] [client 45.3.34.187:53507] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.jamisongreen.com"] [uri "/.svn/wc.db"] [unique_id "aSUrRaXUJR-nnGgaeYO_zAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2602:80d:1008::23

🇰🇷 220.124.254.98

🇨🇳 218.29.231.106

🇫🇷 213.32.20.30

🇺🇸 65.49.1.171

🇺🇸 64.62.156.71

🇺🇸 20.65.194.188

🇨🇳 221.198.66.151

🇹🇷 185.226.93.120

🇳🇱 176.65.148.2

🇺🇸 174.138.87.36

🇺🇸 165.232.61.133

🇪🇸 154.70.207.29

🇻🇺 138.226.239.12

🇵🇰 119.158.140.182

🇨🇳 110.249.160.222

🇳🇱 45.156.128.131

🇲🇦 41.143.79.240

🇧🇪 35.195.83.229

🇧🇷 20.226.119.201