JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.38.3

45.3.38.3 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 12%: ?

12%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.38.3

Whois 45.3.38.3

IP Abuse Reports for 45.3.38.3:

This IP address has been reported a total of 35 times from 18 distinct sources. 45.3.38.3 was first reported on November 4th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 wlt-blocker	2026-05-20 09:38:19 (2 weeks ago)	Unauthorized access to webpage admin	Web App Attack
🇩🇪 4server	2026-05-20 08:17:27 (2 weeks ago)	[WedMay2010:17:25.9749792026][security2:error][pid4182846:tid4182922][client45.3.38.3:0]ModSecurity: ... show more [WedMay2010:17:25.9749792026][security2:error][pid4182846:tid4182922][client45.3.38.3:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.cpfacilityservices.ch\"][uri\"/.aws/credentials\"][unique_id\"ag1uFbJd4yYwKmKif-HlwwAAAI8\"] show less	Port Scan Brute-Force Web App Attack
🇦🇺 MAGIC	2026-03-03 01:41:49 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-12 00:20:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 19:20:16.283421 2026] [security2:error] [pid 32216:tid 32216] [client 45.3.38.3:29105] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "armandselmwoodpark.com"] [uri "/app/.git/config"] [unique_id "aY0cwPkuue1SON6HM9epXwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 23:49:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 18:49:18.020191 2026] [security2:error] [pid 2473:tid 2473] [client 45.3.38.3:32505] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arklatexds.com"] [uri "/.env.production"] [unique_id "aY0Vflndv_07LL_Mx0n3dgAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 15:32:27 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 10:32:20.373101 2026] [security2:error] [pid 8568:tid 8568] [client 45.3.38.3:32383] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "10besthotels.com"] [uri "/config/.env"] [unique_id "aYtPhEp1tSPCiudhKWzwQQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:09:43 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:09:40.100825 2026] [security2:error] [pid 693:tid 693] [client 45.3.38.3:64463] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinhung.com"] [uri "/.env.local"] [unique_id "aYqhdE52lTdZNwPIjz8aIQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 i-turnradio.nl	2026-02-10 02:55:43 (3 months ago)	2026-02-10 03:55:43 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:37:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:37:09.357119 2026] [security2:error] [pid 20755:tid 20755] [client 45.3.38.3:59827] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kevintheadventurer.org"] [uri "/api/.env"] [unique_id "aYp9tS9WqqnkfOwLjObHzwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-09 22:59:35 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-09	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-09 22:56:08 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:55:59.731898 2026] [security2:error] [pid 7982:tid 7982] [client 45.3.38.3:58775] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "howietaylor.com"] [uri "/config/.env"] [unique_id "aYpl__SqX4AcMzKUZyaVWgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-09 22:44:43 (3 months ago)	Blocking for trying to access an exploit file: /.env.production	Hacking
🇺🇸 TPI-Abuse	2026-02-09 22:40:39 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:40:31.081492 2026] [security2:error] [pid 12747:tid 12747] [client 45.3.38.3:17089] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "macryder.com"] [uri "/app/.git/config"] [unique_id "aYpiX8iwAx-jd10fblXfegAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:20:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:20:07.058557 2026] [security2:error] [pid 717735:tid 717754] [client 45.3.38.3:25661] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kaukabsiddique.net"] [uri "/admin/.env"] [unique_id "aYpdl1e2saaLoPBOZVpWSQAAAEg"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-30 16:20:08 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.239.251.12

🇲🇽 201.161.46.130

🇹🇭 165.154.51.221

🇺🇸 136.109.236.244

🇭🇰 101.36.118.248

🇺🇸 91.246.176.8

🇬🇧 81.19.219.237

🇳🇱 45.148.10.141

🇺🇸 209.141.47.217

🇩🇪 194.5.207.168

🇳🇱 172.253.7.214

🇦🇫 149.54.62.170

🇺🇸 147.185.132.191

🇰🇷 118.37.214.187

🇵🇰 103.4.92.110

🇷🇺 95.165.68.145

🇺🇸 91.246.176.10

🇧🇷 45.205.1.244

🇧🇷 45.205.1.5

🇺🇸 43.159.177.40