JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.38.78

45.3.38.78 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.38.78

Whois 45.3.38.78

IP Abuse Reports for 45.3.38.78:

This IP address has been reported a total of 23 times from 13 distinct sources. 45.3.38.78 was first reported on March 26th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-20 03:24:14 (2 days ago)	Web App Attack	Web App Attack
🇫🇷 masterguru	2026-04-02 21:07:28 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 45.3.38.78 (US/United States/-): 1 in the last ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 45.3.38.78 (US/United States/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇬🇧 catalink.com	2026-02-25 17:48:55 (3 months ago)	Brute forcing Wordpress login	Exploited Host Web App Attack
🇳🇱 jjnxpct	2025-12-31 04:47:44 (5 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /.env] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-30 12:20:38 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.78 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 07:20:31.751014 2025] [security2:error] [pid 111538:tid 111547] [client 45.3.38.78:16523] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.rawsynergy.com"] [uri "/.env"] [unique_id "aVPDj1XDtQlHeRyg7qj_JQAAAIc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 11:15:29 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.78 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 06:15:21.961923 2025] [security2:error] [pid 9346:tid 9346] [client 45.3.38.78:49765] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "spottedeaglearts.com"] [uri "/.svn/wc.db"] [unique_id "aVJiyQwh1ry2PFGmL7sKtwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-29 09:16:11 (5 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-12-29 06:38:14 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.78 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:38:08.091331 2025] [security2:error] [pid 2624:tid 2624] [client 45.3.38.78:27995] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "redwingboot.com"] [uri "/.svn/wc.db"] [unique_id "aVIh0NVjjL3o4VrKEQhK_AAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:07:35 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.38.78 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.38.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:07:30.765425 2025] [security2:error] [pid 25522:tid 25522] [client 45.3.38.78:24289] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blueskyfederal.com"] [uri "/.svn/wc.db"] [unique_id "aVIaojc3UHQp2VMvu0fpbQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 BSG Webmaster	2025-12-28 04:17:40 (5 months ago)	Hacking Attempt using path [/]cart on 2025-12-28 01:37:40	Hacking
🇮🇹 VHosting	2025-12-24 07:40:13 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-11-13 23:42:58 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 octageeks.com	2025-11-13 05:08:44 (7 months ago)	Wordpress malicious attack:[octablocked]	Web App Attack
Anonymous	2025-11-02 15:33:47 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:23:25	Port Scan Brute-Force Exploited Host Web App Attack
Anonymous	2025-10-15 10:58:19 (8 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 153.66.28.132

🇺🇸 104.248.50.150

🇺🇸 104.210.55.152

🇮🇳 103.68.176.234

🇨🇾 94.46.212.2

🇬🇧 87.236.176.183

🇲🇽 201.161.46.133

🇺🇸 174.179.77.35

🇧🇷 138.122.140.200

🇮🇳 106.51.92.114

🇺🇸 74.125.186.145

🇬🇧 193.163.125.56

🇷🇺 188.170.82.181

🇺🇿 185.191.141.115

🇳🇱 176.65.148.158

🇩🇪 138.197.191.87

🇺🇸 104.171.24.204

🇺🇸 3.133.105.224

🇩🇪 194.113.233.25

🇬🇧 193.163.125.20