JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.39.197

45.3.39.197 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 9%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.39.197

Whois 45.3.39.197

IP Abuse Reports for 45.3.39.197:

This IP address has been reported a total of 34 times from 16 distinct sources. 45.3.39.197 was first reported on September 5th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-30 15:42:18 (2 weeks ago)	Brute force	Brute-Force
🇪🇸 librebit	2026-05-13 23:44:27 (1 month ago)	RDWeb scan	Web App Attack
Anonymous	2026-04-27 17:21:36 (1 month ago)	Forum/form spam	Web Spam
Anonymous	2026-04-13 23:38:52 (2 months ago)	Attempt to scan vulnerabilities	Hacking
Anonymous	2026-04-12 06:19:35 (2 months ago)	Attempt to scan vulnerabilities	Hacking
🇬🇧 relianoid.com	2026-03-30 09:18:02 (2 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇦🇺 MAGIC	2026-01-29 02:12:39 (4 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇬🇧 relianoid.com	2026-01-19 06:02:34 (4 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
Anonymous	2025-12-02 02:09:58 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-24 09:29:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.39.197 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.39.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:29:15.114820 2025] [security2:error] [pid 14435:tid 14435] [client 45.3.39.197:9905] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rainwaterconstruction.net"] [uri "/.env"] [unique_id "aSQlaw0LtB8NB-u3_NKRTwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:07:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.39.197 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.39.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:07:10.656770 2025] [security2:error] [pid 18704:tid 18704] [client 45.3.39.197:46467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.purelywhimsical.com"] [uri "/.env"] [unique_id "aSQgPnzPWOdAMdWaWmZ0PQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:34:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.39.197 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.39.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:34:08.425368 2025] [security2:error] [pid 10818:tid 10818] [client 45.3.39.197:33081] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.golfmastercanada.com"] [uri "/.env"] [unique_id "aSQYgLRxCL20RthqJl3tOQAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:17:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.39.197 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.39.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:17:27.889439 2025] [security2:error] [pid 3459976:tid 3459976] [client 45.3.39.197:55299] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.amosmillerstudio.com"] [uri "/.svn/wc.db"] [unique_id "aSQGh5HyaagGVetCMvvZwAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:01:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.39.197 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.39.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:01:37.482692 2025] [security2:error] [pid 22086:tid 22086] [client 45.3.39.197:49149] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.toolsandtutorialsforauthors.com"] [uri "/.svn/wc.db"] [unique_id "aSPmsYhqWIBT7vFtq-T50AAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 17:30:25 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 185.216.145.172

🇺🇸 159.65.191.190

🇳🇱 134.122.54.212

🇬🇧 81.19.219.209

🇺🇸 66.132.172.151

🇳🇱 176.65.131.215

🇳🇱 89.21.67.134

🇺🇸 71.6.134.204

🇳🇱 176.65.140.201

🇩🇪 167.94.145.17

🇳🇱 91.92.40.12

🇷🇴 80.94.92.171

🇧🇷 43.164.195.160

🇺🇸 35.161.67.125

🇨🇦 20.151.108.150

🇻🇳 14.225.46.21

🇨🇱 216.155.93.75

🇲🇽 187.161.119.24

🇺🇸 146.88.241.67

🇹🇼 128.14.237.43