JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.36.228

45.3.36.228 was found in our database!

This IP was reported 50 times. Confidence of Abuse is 9%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.36.228

Whois 45.3.36.228

IP Abuse Reports for 45.3.36.228:

This IP address has been reported a total of 50 times from 20 distinct sources. 45.3.36.228 was first reported on December 5th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 MatStef132	2026-05-19 20:59:02 (2 weeks ago)	MatShield L7: blocked on dstat.selify.io (click-id-direct-nav)	DDoS Attack
🇫🇷 MatStef132	2026-05-19 20:55:41 (2 weeks ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇫🇷 MatStef132	2026-05-14 21:32:37 (3 weeks ago)	[mathost.eu] ua-q	DDoS Attack Bad Web Bot Web App Attack
🇦🇺 MAGIC	2026-04-08 00:31:04 (1 month ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-02-13 08:59:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:59:34.244146 2026] [security2:error] [pid 17468:tid 17468] [client 45.3.36.228:60525] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "laminasdominicanas.com"] [uri "/.env.local"] [unique_id "aY7n9tIaAuY50XgRFI99OgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:29:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:29:31.094574 2026] [security2:error] [pid 25775:tid 25775] [client 45.3.36.228:36699] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kurikka.eu"] [uri "/api/.git/config"] [unique_id "aY7S22_Z-YaRA1MwhY6lswAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-02-13 06:01:14 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.3.36.228 (US/United States/-): 1 ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.3.36.228 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:53:01 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:52:56.436266 2026] [security2:error] [pid 1394361:tid 1394361] [client 45.3.36.228:59557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "konar-steenberg.com"] [uri "/.env.local"] [unique_id "aY68OBmYq7mhjQx5g-vpzwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:22:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:22:53.592750 2026] [security2:error] [pid 2601945:tid 2601945] [client 45.3.36.228:31681] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kirbysmw.com"] [uri "/.git/config"] [unique_id "aY6nHWRkUEsnVWQnhow2xQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:58:01 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:57:58.103786 2026] [security2:error] [pid 15305:tid 15305] [client 45.3.36.228:43869] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "angeladuffin.com"] [uri "/.git/config"] [unique_id "aY6hRlL2mQFhU2Jj-BvgSAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:18:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:18:50.248519 2026] [security2:error] [pid 11197:tid 11286] [client 45.3.36.228:20291] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "khalessilaw.com"] [uri "/.env"] [unique_id "aY6YGqO58UA0nNnVfPeZ3wAAAgE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:39:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.36.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:39:50.198763 2026] [security2:error] [pid 13154:tid 13154] [client 45.3.36.228:11393] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kennythompson.com"] [uri "/backend/.env"] [unique_id "aY6O9lCpFGygwoTU6OAMZgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ne1for23	2026-02-13 02:13:31 (3 months ago)	Attempting to probe for sensitive information accidently exposed via git config. 45.3.36.228 - - [1 ... show more Attempting to probe for sensitive information accidently exposed via git config. 45.3.36.228 - - [13/Feb/2026:02:13:19 +0000] "GET /dev/.git/config HTTP/1.1" 403 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" show less	Hacking
🇳🇱 homeshowdomain.nl	2026-02-12 23:00:59 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-12	Hacking Web App Attack SSH

Showing 1 to 15 of 50 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.201.44.205

🇩🇪 167.94.146.68

🇨🇦 142.44.220.87

🇳🇱 88.151.34.35

🇩🇪 213.209.159.228

🇨🇭 209.99.188.148

🇸🇬 188.166.215.16

🇲🇽 187.141.71.166

🇨🇳 182.244.0.150

🇺🇸 172.120.11.133

🇻🇳 113.172.124.25

🇨🇳 111.229.131.191

🇩🇪 94.26.106.216

🇱🇹 77.90.185.230

🇵🇭 61.245.14.254

🇳🇱 45.92.1.242

🇰🇷 211.223.107.86

🇧🇪 198.235.24.218

🇹🇼 198.235.24.87

🇧🇷 167.250.191.132