JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.38.254

45.3.38.254 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.38.254

Whois 45.3.38.254

IP Abuse Reports for 45.3.38.254:

This IP address has been reported a total of 28 times from 10 distinct sources. 45.3.38.254 was first reported on January 3rd 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 MatStef132	2026-05-19 21:05:47 (2 weeks ago)	MatShield L7: blocked on anonymous (ua-quarantined)	Bad Web Bot
🇳🇱 MatStef132	2026-05-19 20:59:02 (2 weeks ago)	MatShield L7: blocked on dstat.selify.io (ua-quarantined)	Bad Web Bot
🇫🇷 MatStef132	2026-05-19 20:57:53 (2 weeks ago)	MatShield L7: blocked on mathost.eu (click-id-direct-nav)	DDoS Attack
🇫🇷 MatStef132	2026-05-19 20:55:41 (2 weeks ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇳🇱 MatStef132	2026-05-15 13:29:59 (2 weeks ago)	MatShield L7 blocked request to fivemtest.mathost.eu for reason ua-q	DDoS Attack Bad Web Bot Web App Attack
🇫🇷 MatStef132	2026-05-14 22:03:10 (3 weeks ago)	MatShield L7 blocked request to mathost.eu for reason ua-q	DDoS Attack Bad Web Bot Web App Attack
🇫🇷 MatStef132	2026-05-14 21:32:37 (3 weeks ago)	[mathost.eu] ua-q	DDoS Attack Bad Web Bot Web App Attack
🇪🇸 el-brujo	2026-04-28 15:44:20 (1 month ago)	Cloudflare WAF: Request Path: /123456 Request Query: ?gclid=MS4WhMuODroWOx Host: elhacker.net userAg ... show more Cloudflare WAF: Request Path: /123456 Request Query: ?gclid=MS4WhMuODroWOx Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.130 Safari/537.36 Action: block Source: ratelimit ASN Description: 3xK Tech GmbH Country: US Method: GET Timestamp: 2026-04-28T15:44:20Z ruleId: 11a71ad4659e48b29b5173e3bcc61b4a. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2025-12-01 23:18:56 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-25 04:08:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.254 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:08:30.532095 2025] [security2:error] [pid 10031:tid 10031] [client 45.3.38.254:23527] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.exploratorymusic.net"] [uri "/.git/HEAD"] [unique_id "aSUrvviy_kQHOhI5lfUUcgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:12:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.254 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:12:28.942637 2025] [security2:error] [pid 31680:tid 31680] [client 45.3.38.254:35441] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.captpalpreschool.com"] [uri "/.git/HEAD"] [unique_id "aSUenNc0OVp12x-6ral6oAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:27:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.254 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:27:21.751903 2025] [security2:error] [pid 16336:tid 16336] [client 45.3.38.254:46347] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mymiata.paladinmicro.com"] [uri "/.svn/wc.db"] [unique_id "aSUF-WgO5RHbA0oXmqImxQAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:44:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.254 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:44:48.077341 2025] [security2:error] [pid 26009:tid 26009] [client 45.3.38.254:29983] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "store.drjaymissdiana.com"] [uri "/.git/HEAD"] [unique_id "aST8AEOCEIeYR80MrKO-cwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:23:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.254 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:22:57.485524 2025] [security2:error] [pid 12557:tid 12557] [client 45.3.38.254:56255] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.pacificintermountain.com"] [uri "/.svn/wc.db"] [unique_id "aST24WglvRKFhCADWfGNnwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.206.182.214

🇭🇺 188.36.7.196

🇸🇬 172.217.43.152

🇫🇮 147.185.133.94

🇦🇷 131.161.184.46

🇨🇳 122.115.224.56

🇳🇬 102.219.153.126

🇫🇷 91.196.152.239

🇺🇸 40.124.186.100

🇻🇳 27.79.40.33

🇺🇸 2001:470:1:fb5::216

🇬🇧 217.146.80.120

🇬🇧 188.240.59.43

🇨🇳 180.76.112.91

🇺🇸 179.61.232.244

🇺🇸 172.253.9.150

🇺🇸 147.185.132.82

🇨🇳 110.249.201.174

🇩🇪 82.165.184.35

🇸🇪 46.59.89.5