JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.38.182

45.3.38.182 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 22%: ?

22%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.38.182

Whois 45.3.38.182

IP Abuse Reports for 45.3.38.182:

This IP address has been reported a total of 38 times from 14 distinct sources. 45.3.38.182 was first reported on January 24th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-06-16 05:26:06 (1 day ago)	(y4) Failed scan -byebye- from 45.3.38.182 (US/United States/-): (CF_ENABLE)	Hacking
🇪🇸 librebit	2026-06-10 03:52:27 (1 week ago)	Brute force	Brute-Force
🇨🇳 ThreatBook.io	2026-05-07 22:43:41 (1 month ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/45.3.38.182 2026-05-07 12:4 ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/45.3.38.182 2026-05-07 12:43:57 / 2026-05-07 13:37:32 / 2026-05-07 12:46:32 / show less	Web App Attack
🇬🇧 PeravixGroup	2026-05-07 05:38:58 (1 month ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-06 19:08:57 (1 month ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 paissangroup	2026-03-23 06:58:33 (2 months ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-01-27 22:49:18 (4 months ago)	Probing to gain illegal access	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:09 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-12-14 12:49:46 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-26 11:16:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.182 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:16:05.134461 2025] [security2:error] [pid 27873:tid 27873] [client 45.3.38.182:41823] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.calsha.me"] [uri "/.svn/wc.db"] [unique_id "aSbhdXgtjphyaOUhlt7TtAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 07:00:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.182 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:00:44.053690 2025] [security2:error] [pid 15033:tid 15033] [client 45.3.38.182:23245] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.atmoorehealthcare.com"] [uri "/.env"] [unique_id "aSalnPLv9FHSUaP1PyT8LQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:07:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.182 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:07:13.428437 2025] [security2:error] [pid 7706:tid 7706] [client 45.3.38.182:59129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.cosmicdebris.org"] [uri "/.git/HEAD"] [unique_id "aSaZEcj30S_KX-uKiWVHZAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:50:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.182 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:50:42.034137 2025] [security2:error] [pid 5980:tid 5980] [client 45.3.38.182:21985] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.romancewritersfoundation.org"] [uri "/.env"] [unique_id "aSaVMisAZIPxgeMVGitHRAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:00:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.182 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:00:09.137983 2025] [security2:error] [pid 3365543:tid 3365672] [client 45.3.38.182:34007] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.pilargarciamanzanares.com"] [uri "/.env"] [unique_id "aSZtOWzJ-U6IElkF6xOD3gAAAdc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:31:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.182 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:31:06.652371 2025] [security2:error] [pid 16988:tid 16988] [client 45.3.38.182:35553] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.convtek.com"] [uri "/.svn/wc.db"] [unique_id "aSQXyk8ZUttIrVsTg3uBlgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 202.145.0.18

🇩🇪 192.109.200.78

🇰🇷 152.69.235.217

🇳🇱 141.144.207.3

🇨🇳 14.218.28.193

🇷🇴 2.57.122.177

🇰🇷 222.97.195.179

🇺🇸 170.247.220.126

🇧🇩 165.101.222.20

🇨🇳 114.80.37.177

🇳🇱 89.21.67.164

🇺🇸 75.137.186.155

🇫🇷 185.91.220.194

🇺🇸 170.247.223.170

🇫🇷 85.217.140.13

🇺🇸 76.132.238.43

🇯🇵 8.221.140.241

🇳🇱 185.107.80.93

🇪🇨 178.93.133.227

🇺🇸 162.0.211.124