JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.38.231

45.3.38.231 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.38.231

Whois 45.3.38.231

IP Abuse Reports for 45.3.38.231:

This IP address has been reported a total of 23 times from 9 distinct sources. 45.3.38.231 was first reported on October 3rd 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 cmbplf	2026-05-27 08:38:00 (1 week ago)	1.817 POST requests with url.path */wp-login.php	Brute-Force Bad Web Bot
🇬🇧 PeravixGroup	2026-05-07 05:49:05 (4 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2026-03-05 04:00:03 (3 months ago)	Forum/form spam	Web Spam
🇬🇧 relianoid.com	2026-02-21 14:18:48 (3 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 TPI-Abuse	2026-02-09 21:54:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.231 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:54:16.291355 2026] [security2:error] [pid 23422:tid 23422] [client 45.3.38.231:62797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "katabigrock.net"] [uri "/new/.git/config"] [unique_id "aYpXiK9He1WSJKaEg-8D5wAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:12:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.231 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:12:35.666428 2026] [security2:error] [pid 27860:tid 27860] [client 45.3.38.231:11495] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "horizontravelgroup.com"] [uri "/.env.staging"] [unique_id "aYpNw5rzOKJ6gLzDmG84VgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:00:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.231 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:00:18.630163 2025] [security2:error] [pid 21992:tid 21992] [client 45.3.38.231:47115] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.partybusdaytonabeach.com"] [uri "/.env"] [unique_id "aSQCgis0VIw-tmM0at7wlAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:58:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.231 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:58:32.938157 2025] [security2:error] [pid 31462:tid 31462] [client 45.3.38.231:48415] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.crescentcitycafe.com"] [uri "/.svn/wc.db"] [unique_id "aSP0CAu2aKLWP9Br5-iotAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:25:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.231 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:25:01.788637 2025] [security2:error] [pid 25021:tid 25021] [client 45.3.38.231:39393] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.lynellejonsson.com"] [uri "/.svn/wc.db"] [unique_id "aSPQDQXWRgaSqNhITrXg2wAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 00:31:36 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-10-27 15:56:20 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.27 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.27 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-22 20:03:48 (7 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.22 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.22 is noted in report timestamp show less	Hacking Brute-Force
🇨🇦 wil.com	2025-10-17 13:44:08 (7 months ago)	GlobalProtect login attempts with user lbenden.	VPN IP Brute-Force
Anonymous	2025-10-16 09:41:31 (7 months ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.10.16 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.10.16 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.149.138

🇫🇷 143.244.57.118

🇦🇿 95.86.142.203

🇱🇧 78.40.181.77

🇳🇱 45.148.10.141

🇳🇱 194.26.192.168

🇺🇸 172.217.46.28

🇺🇸 162.216.149.228

🇮🇳 157.49.118.55

🇮🇳 122.183.45.27

🇩🇪 69.5.169.187

🇩🇪 69.5.169.173

🇺🇸 195.184.76.201

🇬🇪 185.228.135.197

🇿🇦 105.186.221.86

🇮🇳 103.158.40.65

🇳🇱 51.15.59.186

🇧🇷 38.211.30.252

🇺🇸 20.65.184.116

🇧🇴 200.105.167.197