JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.36.189

45.3.36.189 was found in our database!

This IP was reported 49 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.36.189

Whois 45.3.36.189

IP Abuse Reports for 45.3.36.189:

This IP address has been reported a total of 49 times from 15 distinct sources. 45.3.36.189 was first reported on December 22nd 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 4server	2026-05-13 11:08:24 (3 weeks ago)	[WedMay1313:08:21.8569452026][security2:error][pid1585612:tid1585755][client45.3.36.189:0]ModSecurit ... show more [WedMay1313:08:21.8569452026][security2:error][pid1585612:tid1585755][client45.3.36.189:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"royalhosting.ch\"][uri\"/.aws/credentials\"][unique_id\"agRbpWiuOsb6v5ebHqmTKAAAARU\"] show less	Port Scan Brute-Force Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-05-12 21:08:02 (3 weeks ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,ice02,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-05-12 19:05:04 (3 weeks ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa01]	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-15 12:58:18 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 15 07:58:13.963458 2026] [security2:error] [pid 7149:tid 7149] [client 45.3.36.189:37095] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pluscures.com"] [uri "/.env"] [unique_id "aWjkZZpRVICFdaPAhToVYgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 06:24:52 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 01:24:42.941619 2025] [security2:error] [pid 6541:tid 6541] [client 45.3.36.189:33155] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eydebrothers.com"] [uri "/.git/HEAD"] [unique_id "aTZvKqxmGbH97r-yU4ZjAgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 01:42:14 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 20:42:08.493217 2025] [security2:error] [pid 13483:tid 13483] [client 45.3.36.189:59941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "notepromd.com"] [uri "/.env"] [unique_id "aTYs8MEn5Qp-3rQvpLoWygAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2025-12-07 23:02:20 (5 months ago)	Auto-ban: >3000 req/min op 2025-12-07	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-07 21:22:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 16:22:30.783955 2025] [security2:error] [pid 13765:tid 13794] [client 45.3.36.189:44999] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "councilofforeignministers.com"] [uri "/.env"] [unique_id "aTXwFtNgTaG_eP-SRUb00QAAAVQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 20:31:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 15:31:14.847741 2025] [security2:error] [pid 21238:tid 21238] [client 45.3.36.189:25279] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adlabsnetworks.net"] [uri "/.git/HEAD"] [unique_id "aTSSkl4YjXfLLAk7g4tc2QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 07:14:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 02:14:38.441872 2025] [security2:error] [pid 25604:tid 25604] [client 45.3.36.189:41307] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kln.ne.jp"] [uri "/.svn/wc.db"] [unique_id "aTPX3lnMmnYHP_tszL9EZgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 11:47:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:47:19.255337 2025] [security2:error] [pid 2165:tid 2165] [client 45.3.36.189:42357] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rondeal.com"] [uri "/.svn/wc.db"] [unique_id "aTLGR00RNs8OPMBc67ssFQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 10:51:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:51:04.429338 2025] [security2:error] [pid 28094:tid 28094] [client 45.3.36.189:22841] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jrbentley.com"] [uri "/.git/HEAD"] [unique_id "aTK5GEYTGwCfbbZjstc5MAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 Johan Finn	2025-11-28 01:54:10 (6 months ago)	malicious activity	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 12:32:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:32:51.500182 2025] [security2:error] [pid 2868891:tid 2868891] [client 45.3.36.189:59431] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.badritual.art"] [uri "/.git/HEAD"] [unique_id "aSbzc2gKTnEm8eziFqudwQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 07:54:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:54:17.402167 2025] [security2:error] [pid 9142:tid 9149] [client 45.3.36.189:16079] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.woodamy.com"] [uri "/.git/HEAD"] [unique_id "aSayKVT3DtRs3FbC9tkLQQAAAMQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 49 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 185.252.232.247

🇳🇱 185.224.128.16

🇯🇵 160.251.206.106

🇫🇷 157.173.116.170

🇭🇰 152.32.171.73

🇨🇳 106.13.174.45

🇷🇺 94.29.124.154

🇸🇬 194.233.69.106

🇭🇰 152.32.212.49

🇨🇳 116.178.128.92

🇺🇸 98.159.37.222

🇨🇳 113.117.73.57

🇳🇱 45.148.10.141

🇳🇱 31.56.233.153

🇩🇪 2a01:4f8:120:735d::2

🇺🇸 193.36.225.173

🇺🇸 165.245.160.129

🇺🇸 147.185.132.207

🇵🇰 119.73.23.234

🇮🇳 111.118.249.34