JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.37.172

45.3.37.172 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.37.172

Whois 45.3.37.172

IP Abuse Reports for 45.3.37.172:

This IP address has been reported a total of 25 times from 13 distinct sources. 45.3.37.172 was first reported on October 13th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-02 01:06:13 (1 week ago)	Attac	Brute-Force
🇩🇪 4server	2026-05-11 21:54:22 (1 month ago)	[MonMay1123:54:16.6198052026][security2:error][pid3214823:tid3214953][client45.3.37.172:0]ModSecurit ... show more [MonMay1123:54:16.6198052026][security2:error][pid3214823:tid3214953][client45.3.37.172:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\(\?i\)\(curl\\|wget\\|python\\|nikto\\|sqlmap\\|acunetix\\|fimap\\|dirbuster\\|cmsmap\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"217\"][id\"990210\"][msg\"Suspicioususer-agentblocked\"][hostname\"assistenza-pc-mac-ticino.ch\"][uri\"/wp-json/gravitysmtp/v1/tests/mock-data\"][unique_id\"agJQCAzDG0Nc8nRbqqZMigAAARM\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 03:47:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 22:47:05.945631 2026] [security2:error] [pid 3153763:tid 3153763] [client 45.3.37.172:22671] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "robcohn.com"] [uri "/site/.git/config"] [unique_id "aZU2OSdSCQrdLpGgj3axEgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 00:55:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 19:55:21.682526 2026] [security2:error] [pid 23576:tid 23576] [client 45.3.37.172:52377] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "raaksystems.com"] [uri "/api/.env"] [unique_id "aZUN-azFiXz4zwZ2aPtXPAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 22:59:55 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 17:59:52.063420 2025] [security2:error] [pid 7378:tid 7700] [client 45.3.37.172:39847] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "toastandfigs.com"] [uri "/.git/HEAD"] [unique_id "aVBk6K8D1dJ36h6xBhIx_wAAAVI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 22:21:15 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 17:21:09.778106 2025] [security2:error] [pid 2460:tid 2460] [client 45.3.37.172:31825] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "americaskitchencoach.com"] [uri "/.env"] [unique_id "aVBb1TZRLuG9m70PWP8BSQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 19:26:15 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 14:26:11.043775 2025] [security2:error] [pid 28873:tid 28873] [client 45.3.37.172:47003] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whiddenstudios.com"] [uri "/.git/HEAD"] [unique_id "aVAy07UXkNqPR7cuNDTB1wAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 COMPLEX	2025-12-15 05:41:10 (5 months ago)	Triggered Cloudflare WAF (l7ddos) from US. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protoc ... show more Triggered Cloudflare WAF (l7ddos) from US. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/2 (GET method) Endpoint: / show less	DDoS Attack Bad Web Bot
Anonymous	2025-12-03 06:39:28 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-25 04:02:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:02:20.754956 2025] [security2:error] [pid 17254:tid 17254] [client 45.3.37.172:60117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.sfsdesignsproductions.com"] [uri "/.env"] [unique_id "aSUqTJpVZuEY3ZTXvyjYngAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:29:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:23:01.752765 2025] [security2:error] [pid 3373:tid 3373] [client 45.3.37.172:35623] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.biographicalpainting.com"] [uri "/.git/HEAD"] [unique_id "aST25RKwiCxTq2F8a4LVxwAAAC4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:06:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.37.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:06:16.974570 2025] [security2:error] [pid 13517:tid 13517] [client 45.3.37.172:38081] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.balirealestateadvertiser.com"] [uri "/.svn/wc.db"] [unique_id "aSTy-CKGN0P3_Ixy-LerewAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-11-19 08:23:05 (6 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
🇨🇦 wil.com	2025-10-29 01:28:19 (7 months ago)	GlobalProtect login attempts with user joproce.	VPN IP Brute-Force
🇨🇦 wil.com	2025-10-29 00:30:54 (7 months ago)	GlobalProtect login attempts with user fzarate.	VPN IP Brute-Force

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.13.26.42

🇧🇷 179.184.242.48

🇫🇮 147.185.133.236

🇺🇸 147.185.132.144

🇺🇸 143.20.253.45

🇩🇪 138.124.99.219

🇵🇱 87.251.64.156

🇮🇳 34.131.170.226

🇲🇽 187.190.35.163

🇩🇪 185.242.3.173

🇵🇰 182.190.218.253

🇺🇸 147.185.132.72

🇭🇰 134.159.233.201

🇨🇦 85.217.149.39

🇺🇸 52.146.92.163

🇸🇬 43.173.178.245

🇸🇬 43.160.197.240

🇺🇸 2607:f8b0:4004:1000::128

🇧🇷 205.210.31.128

🇫🇮 178.20.210.151