JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.38.4

45.3.38.4 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 22%: ?

22%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.38.4

Whois 45.3.38.4

IP Abuse Reports for 45.3.38.4:

This IP address has been reported a total of 29 times from 17 distinct sources. 45.3.38.4 was first reported on December 20th 2024, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Reinhard	2026-06-02 23:08:05 (5 days ago)	Parameter or path manipulation, hacking. /mysql.sql	Hacking
🇨🇭 backslash	2026-05-23 05:12:19 (2 weeks ago)		Bad Web Bot
🇮🇹 LTM	2026-05-11 06:20:01 (4 weeks ago)	WebServer - Attempts to exploit	Hacking Brute-Force Web App Attack
🇬🇧 PeravixGroup	2026-05-08 22:54:37 (4 weeks ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇵🇱 sefinek.net	2026-03-30 01:20:35 (2 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: / \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇬🇧 Swiptly	2026-01-07 18:57:10 (5 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack
🇺🇸 TPI-Abuse	2026-01-07 13:56:19 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.4 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 07 08:56:16.717847 2026] [security2:error] [pid 26060:tid 26060] [client 45.3.38.4:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sportsbookcommission.com"] [uri "/.env"] [unique_id "aV5mAGkqDgXemaFELe1WSgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:57:00 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.4 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:56:53.784635 2025] [security2:error] [pid 32327:tid 32327] [client 45.3.38.4:60775] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "theknowledgemaster.com"] [uri "/.env"] [unique_id "aVIYJTZNJhBO_HwnohBWbgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:00:34 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.4 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:00:28.180644 2025] [security2:error] [pid 16824:tid 16824] [client 45.3.38.4:47209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "restaurantehaowey.com"] [uri "/.svn/wc.db"] [unique_id "aVIK7Evi9U_PqBKdPng-1AAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-12-04 11:39:24 (6 months ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
🇮🇹 flws	2025-11-25 05:52:06 (6 months ago)	Using APIs to sign up a huge number of fake users	Exploited Host Web App Attack
🇵🇱 sefinek.net	2025-11-24 10:35:37 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12.5; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-11-13 22:53:11 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇵🇱 sefinek.net	2025-11-04 09:04:54 (7 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 178.16.52.163

🇮🇳 168.144.148.219

🇵🇪 161.132.50.236

🇭🇰 146.70.79.47

🇮🇳 125.19.253.154

🇺🇸 69.74.29.21

🇺🇸 64.62.197.197

🇹🇼 35.201.245.21

🇦🇺 34.151.155.12

🇶🇦 20.173.116.24

🇳🇱 5.83.143.115

🇮🇷 80.210.47.222

🇧🇬 78.128.114.82

🇹🇳 41.225.238.233

🇬🇭 154.161.253.113

🇩🇪 150.241.68.127

🇨🇳 125.124.183.254

🇱🇹 81.30.98.158

🇺🇸 65.49.1.212

🇩🇪 46.225.237.210