JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.48.156

45.3.48.156 was found in our database!

This IP was reported 49 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.48.156

Whois 45.3.48.156

IP Abuse Reports for 45.3.48.156:

This IP address has been reported a total of 49 times from 18 distinct sources. 45.3.48.156 was first reported on January 2nd 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-04-06 01:02:33 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 45.3.48.156 (US/United States/-): 1 in the las ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 45.3.48.156 (US/United States/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇫🇷 LRob.fr	2026-02-23 19:15:03 (3 months ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇩🇪 DocNetzwerk	2026-02-15 12:26:02 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 45.3.48.156 (US/United States/-)	SQL Injection
🇮🇹 pantanet	2026-02-15 12:07:48 (3 months ago)	Fail2Ban nginx jail: nginx-badbots	Port Scan Hacking Brute-Force
Anonymous	2026-02-15 11:23:57 (3 months ago)	45.3.48.156 - - [15/Feb/2026:11:23:46 +0000] "GET /admin/.env HTTP/1.1" 403 2404 "-" "Mozilla/5.0 (W ... show more 45.3.48.156 - - [15/Feb/2026:11:23:46 +0000] "GET /admin/.env HTTP/1.1" 403 2404 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:07:30 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:07:23.103803 2026] [security2:error] [pid 5110:tid 5110] [client 45.3.48.156:20967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seizethisseason.com"] [uri "/.git/config"] [unique_id "aZGo68Ui19vfV7eXq-D0sAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Swiptly	2026-02-15 06:35:52 (3 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:33:19 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:33:14.510687 2026] [security2:error] [pid 13387:tid 13387] [client 45.3.48.156:26009] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "scraggw.com"] [uri "/frontend/.env"] [unique_id "aZFoqkGsUWNjXYfvL8CWtgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:09:37 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:09:32.272014 2026] [security2:error] [pid 450316:tid 450337] [client 45.3.48.156:41129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "projectmanagementcertification.org"] [uri "/wp/.git/config"] [unique_id "aZFjHB0sx_eeMebJ82N3WgAAAJE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:39:32 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:39:25.022434 2026] [security2:error] [pid 23286:tid 23300] [client 45.3.48.156:29949] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "okorganicgardening.org"] [uri "/new/.git/config"] [unique_id "aZFcDZO6c80OtUPzKnPHAwAAAUY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:58:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:58:22.704257 2026] [security2:error] [pid 22847:tid 22847] [client 45.3.48.156:49647] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sarahpeebles.net"] [uri "/backup/.git/config"] [unique_id "aZFSbigYuuaGupulKPoCrgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-15 04:55:39 (3 months ago)	Blocking for trying to access an exploit file: /dev/.git/config	Hacking
🇫🇷 dynamix	2026-02-15 04:52:19 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:09:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:09:31.579089 2026] [security2:error] [pid 2463946:tid 2463946] [client 45.3.48.156:12575] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "powerlinemagazine.com"] [uri "/admin/.env"] [unique_id "aZFG-81EIkmekrxArln6kwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:49:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:48:55.485999 2026] [security2:error] [pid 18498:tid 18498] [client 45.3.48.156:21447] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "portraitsinblues.com"] [uri "/backend/.env"] [unique_id "aZFCJzO6KNe2INRCfmaWYAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 49 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 178.62.10.24

🇵🇱 172.253.206.53

🇻🇳 123.20.3.72

🇷🇺 45.132.18.40

🇮🇩 36.66.16.233

🇨🇳 27.18.68.229

🇬🇧 5.226.140.109

🇲🇾 203.121.40.210

🇦🇹 194.118.215.86

🇭🇰 154.92.17.30

🇸🇬 145.223.131.66

🇫🇮 135.181.182.250

🇵🇰 119.152.228.104

🇺🇸 107.172.39.175

🇵🇱 87.251.64.145

🇸🇦 82.167.51.141

🇪🇸 79.155.102.13

🇨🇳 60.25.70.161

🇲🇽 46.250.175.234

🇰🇪 41.60.232.172