JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.38.119

45.3.38.119 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 14%: ?

14%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.38.119

Whois 45.3.38.119

IP Abuse Reports for 45.3.38.119:

This IP address has been reported a total of 32 times from 18 distinct sources. 45.3.38.119 was first reported on November 16th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-15 00:28:47 (3 weeks ago)	RDWeb scan	Web App Attack
🇬🇧 PeravixGroup	2026-05-07 11:12:45 (4 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-04-22 15:28:46 (1 month ago)	Attempt to scan vulnerabilities	Hacking
Anonymous	2026-04-13 23:21:51 (1 month ago)	Attempt to scan vulnerabilities	Hacking
🇩🇪 stinpriza	2026-02-09 17:52:01 (3 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-01-21 18:19:47 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.119 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 21 13:19:41.045995 2026] [security2:error] [pid 5685:tid 5685] [client 45.3.38.119:30745] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rnance.com"] [uri "/.git/HEAD"] [unique_id "aXEYvaXTqUFldcAfZ1ObGAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-01-21 13:38:18 (4 months ago)	"GET /.env HTTP/1.1"	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-01-20 20:21:53 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.119 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 20 15:21:43.968462 2026] [security2:error] [pid 17464:tid 17464] [client 45.3.38.119:33797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tek-front.com"] [uri "/.env"] [unique_id "aW_j19LsVfh5H1EnCLR1RQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2026-01-01 21:03:58 (5 months ago)	(From [email protected]) Hi, Instead of hiring locally at high rates, you can outsource y ... show more (From [email protected]) Hi, Instead of hiring locally at high rates, you can outsource your digital marketing workload to a dedicated assistant for $250/month. They handle SEO, ads, emails, social media, and admin tasks—full time. Your first month is 100% free. Fill out the form to proceed. Direct Google link: https://docs.google.com/forms/d/e/1FAIpQLSdfVsEbHZ8ONCILtiWxC8Nz4dMDX4XytsWbDm9ZehvJq0dshA/viewform GLE Link to Google Forms: https://forms.gle/hUcK6pGk3DeYNonL7 Short link: https://shorturl.at/sIc0l show less	Phishing Web Spam
🇺🇸 nowyouknow	2026-01-01 15:46:42 (5 months ago)	(From [email protected]) Hi, For just $250/month, you can add a dedicated Digital Marketi ... show more (From [email protected]) Hi, For just $250/month, you can add a dedicated Digital Marketing Assistant to your team—managing SEO, ad campaigns, social media, email marketing, and daily operational tasks. The first month is free, allowing you to start without any commitment. Simply complete the form to begin. Direct Google link: https://docs.google.com/forms/d/e/1FAIpQLSdfVsEbHZ8ONCILtiWxC8Nz4dMDX4XytsWbDm9ZehvJq0dshA/viewform GLE Link to Google Forms: https://forms.gle/hUcK6pGk3DeYNonL7 Short link: https://shorturl.at/sIc0l show less	Phishing Web Spam
🇦🇺 oncord	2025-12-25 06:58:40 (5 months ago)	Form spam	Web Spam
🇮🇹 VHosting	2025-12-22 22:07:48 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-11 01:38:57 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.119 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 20:38:49.195591 2025] [security2:error] [pid 11606:tid 11606] [client 45.3.38.119:38015] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gooma-ai.com"] [uri "/.env"] [unique_id "aTogqeM3e1pCowXqAQMZYAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 23:27:40 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.119 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 18:27:33.984660 2025] [security2:error] [pid 31917:tid 31917] [client 45.3.38.119:55631] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sarawagnergrants.com"] [uri "/.git/HEAD"] [unique_id "aTYNZZEUhbQ4be_yTW17mQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 11:59:52 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.119 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 06:59:47.153471 2025] [security2:error] [pid 18281:tid 18281] [client 45.3.38.119:49937] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "goldengatecorgis.org"] [uri "/.git/HEAD"] [unique_id "aTVsM5tL6yg28pN4PLpYsQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.151

🇺🇸 162.216.150.201

🇨🇳 118.249.191.163

🇦🇹 89.144.210.236

🇺🇸 45.146.54.165

🇷🇴 2.57.121.112

🇪🇸 185.242.251.171

🇬🇧 185.216.145.175

🇻🇳 171.244.39.95

🇧🇬 79.124.60.146

🇩🇪 43.228.157.21

🇹🇼 35.229.135.179

🇺🇸 216.73.163.247

🇮🇩 203.128.78.87

🇧🇷 191.245.36.16

🇬🇭 143.105.209.155

🇳🇱 85.121.127.143

🇲🇽 45.134.9.27

🇧🇪 34.62.136.236

🇺🇸 20.221.68.115