JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.48.192

45.3.48.192 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.48.192

Whois 45.3.48.192

IP Abuse Reports for 45.3.48.192:

This IP address has been reported a total of 32 times from 17 distinct sources. 45.3.48.192 was first reported on March 11th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-13 23:03:32 (1 month ago)	Brute force	Brute-Force
🇫🇮 as211431.net	2026-05-07 23:30:12 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /index.php UA: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:136.0) Gecko/20100101 Firefox/136.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-04-10 23:04:39 (2 months ago)	bot-sentry: blocked JA4=t13d311000_e8f1e7e78f70_518fb456ca59 UA="Mozilla/5.0 (Windows NT 10.0; WOW64 ... show more bot-sentry: blocked JA4=t13d311000_e8f1e7e78f70_518fb456ca59 UA="Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/" show less	Bad Web Bot Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-02-23 09:50:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 04:50:50.382134 2026] [security2:error] [pid 3020:tid 3040] [client 45.3.48.192:56485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "private.emehache.com"] [uri "/.git/config"] [unique_id "aZwi-uI_MtWwndF6S1p_3wAAARA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 07:30:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 02:30:55.836070 2025] [security2:error] [pid 6295:tid 6295] [client 45.3.48.192:33695] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "braleygroup.com"] [uri "/.git/HEAD"] [unique_id "aTZ-r1bpKYZdYtWo_IP6NwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 19:13:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 14:13:42.452548 2025] [security2:error] [pid 10454:tid 10454] [client 45.3.48.192:56301] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ebolabooks.com"] [uri "/.git/HEAD"] [unique_id "aTXR5hBIisHjnFcNCJSFcAAAADw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:49:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:49:29.988810 2025] [security2:error] [pid 13030:tid 13054] [client 45.3.48.192:9517] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rosicrucian.net"] [uri "/.svn/wc.db"] [unique_id "aTQYScr_yrJadsRL9junLwAAANY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 16:46:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 11:46:13.022293 2025] [security2:error] [pid 5577:tid 5577] [client 45.3.48.192:20713] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thinkingepic.com"] [uri "/.git/HEAD"] [unique_id "aTMMVTXGkDhoPEfZV649PwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 10:41:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:41:29.754344 2025] [security2:error] [pid 5244:tid 5244] [client 45.3.48.192:32215] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rokket.com"] [uri "/.git/HEAD"] [unique_id "aTK22TvpKKNQX-QT0ajuZgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:13:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:13:18.105269 2025] [security2:error] [pid 6272:tid 6272] [client 45.3.48.192:28733] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.dougscomputers.com"] [uri "/.env"] [unique_id "aSPbXiVJ9lDq_em8_e2fNAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-13 21:54:49 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-11-11 02:51:37 (7 months ago)	(mod_security) mod_security (id:210831) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210831) triggered by 45.3.48.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 10 21:51:28.851458 2025] [security2:error] [pid 30898:tid 30898] [client 45.3.48.192:44217] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|backstore.com\|F\|4"] [data "a href="] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "backstore.com"] [uri "/usage_202511.html"] [unique_id "aRKksIfisfYUC563SjkwdgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 fbarela	2025-11-06 04:00:27 (7 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇧🇪 madeit	2025-11-04 15:35:20 (7 months ago)		Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.243.147.237

🇨🇳 121.43.195.151

🇮🇩 43.165.198.144

🇺🇸 2607:f8b0:4864:20::745

🇺🇸 216.25.89.136

🇺🇸 104.236.53.110

🇳🇱 91.92.40.11

🇮🇳 59.96.210.36

🇺🇸 52.3.246.61

🇬🇧 35.203.211.241

🇩🇪 217.248.4.67

🇺🇸 173.90.211.194

🇷🇴 92.118.39.62

🇫🇮 45.91.193.105

🇭🇰 43.155.40.91

🇳🇱 5.61.209.92

🇺🇸 2001:470:1:c84::1be

🇰🇷 211.53.58.10

🇮🇳 182.95.126.26

🇰🇷 114.30.180.58