JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.49.163

45.3.49.163 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.49.163

Whois 45.3.49.163

IP Abuse Reports for 45.3.49.163:

This IP address has been reported a total of 40 times from 16 distinct sources. 45.3.49.163 was first reported on October 11th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-05-14 23:12:34 (3 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 02-12.45.3.49.163.web-spammers ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 02-12.45.3.49.163.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-05-08 16:33:44 (4 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 19-33.45.3.49.163.web-spammers ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 19-33.45.3.49.163.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-05-08 07:18:54 (4 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 10-18.45.3.49.163.web-spammers ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 10-18.45.3.49.163.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇩🇪 LRob.fr	2026-03-07 14:45:07 (2 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-02-15 12:29:44 (3 months ago)	45.3.49.163 - - [15/Feb/2026:14:29:43 +0200] "GET /app/.env HTTP/1.1" 404 351 "-" "Mozilla/5.0 (Wind ... show more 45.3.49.163 - - [15/Feb/2026:14:29:43 +0200] "GET /app/.env HTTP/1.1" 404 351 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 45.3.49.163 - - [15/Feb/2026:14:29:44 +0200] "GET /backend/.env HTTP/1.1" 404 351 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Web App Attack
🇺🇸 mnsf	2026-02-15 12:05:23 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:46:32 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:46:24.673832 2026] [security2:error] [pid 30811:tid 30811] [client 45.3.49.163:29641] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "page-wide.com"] [uri "/backend/.env"] [unique_id "aZGyEPpvS5XyCYZpwWrjqQAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 11:22:12 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 45.3.49.163 (US/United States/-)	SQL Injection
🇺🇸 TPI-Abuse	2026-02-15 06:57:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:57:30.894288 2026] [security2:error] [pid 797:tid 797] [client 45.3.49.163:45973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seapens.org"] [uri "/.env.staging"] [unique_id "aZFuWnp3RTefwMzcAmV8ewAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:25:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:24:55.046400 2026] [security2:error] [pid 8347:tid 8347] [client 45.3.49.163:44911] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "savoiapower.com"] [uri "/admin/.env"] [unique_id "aZFYp4jDEA5a6WVyZsRkewAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:01:48 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:01:41.168852 2026] [security2:error] [pid 28609:tid 28609] [client 45.3.49.163:33709] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sarawagnergrants.com"] [uri "/test/.git/config"] [unique_id "aZFTNdB8zHkrjRv4S1l0pgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:34:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:34:07.542053 2026] [security2:error] [pid 27696:tid 27696] [client 45.3.49.163:48087] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "prcs.biz"] [uri "/backend/.env"] [unique_id "aZFMv8Nskje1capmbGPf_QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 poundawebsiteltd	2026-02-15 04:03:35 (3 months ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 45.3.49.163 - - [15/Feb/2026:04:0 ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 45.3.49.163 - - [15/Feb/2026:04:03:33 +0000] GET /app/.git/config HTTP/1.1 403 213 - Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:58:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:57:55.623993 2026] [security2:error] [pid 4329:tid 4329] [client 45.3.49.163:47377] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "notariapenco.cl"] [uri "/new/.git/config"] [unique_id "aZFEQ-9QhTKy_x_4zcQ7VQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:39:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.49.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:39:33.545010 2026] [security2:error] [pid 4355:tid 4355] [client 45.3.49.163:47789] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "noramsg.com"] [uri "/.env.staging"] [unique_id "aZE_9WdtCLgKfgeYzjhouAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 66.132.172.104

🇺🇸 52.173.219.145

🇮🇳 202.62.68.117

🇨🇴 148.222.199.193

🇸🇬 148.66.142.9

🇺🇸 147.185.132.162

🇨🇳 115.191.40.50

🇺🇸 52.173.162.41

🇺🇸 52.165.192.88

🇸🇪 13.61.26.221

🇨🇱 200.89.69.247

🇧🇴 181.188.148.74

🇹🇭 147.50.231.135

🇭🇰 144.48.8.10

🇹🇼 128.14.237.154

🇭🇰 103.210.22.17

🇺🇸 52.154.131.99

🇩🇪 51.89.91.196

🇺🇦 46.149.191.249

🇺🇸 40.124.81.157