JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.220.45.93

31.220.45.93 was found in our database!

This IP was reported 86 times. Confidence of Abuse is 100%: ?

100%

ISP	HostHatch LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS63473
Domain Name	hosthatch.com
Country	🇳🇱 Netherlands
City	Lelystad, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.220.45.93

Whois 31.220.45.93

IP Abuse Reports for 31.220.45.93:

This IP address has been reported a total of 86 times from 78 distinct sources. 31.220.45.93 was first reported on June 12th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-19 18:47:39 (1 week ago)	fail2ban: apache-php-scan jail (1 hits in 2419200s) on skipper	Web App Attack Hacking
🇩🇪 AetherFox	2026-06-19 17:37:26 (1 week ago)	AetherFox VoidGuard detected: [Fri Jun 19 17:37:21.243868 2026] [authz_core:error] [pid 1252402:tid ... show more AetherFox VoidGuard detected: [Fri Jun 19 17:37:21.243868 2026] [authz_core:error] [pid 1252402:tid 1252443] [client 31.220.45.93:14592] AH01630: client denied by server configuration: proxy:http://[MASKED]/.env [Fri Jun 19 17:37:21.243967 2026] [authz_core:error] [pid 1252402:tid 1252443] [client 31.220.45.93:14592] AH01630: client denied by server configuration: /var/www/html/ERRORpages/403.html [Fri Jun 19 17:37:25.204969 2026] [authz_core:error] [pid 1252402:tid 1252418] [client 31.220.45.93:14592] AH01630: client denied by server configuration: proxy:http://[MASKED]/.env.example [Fri Jun 19 17:37:25.205147 2026] [authz_core:error] [pid 1252402:tid 1252418] [client 31.220.45.93:14592] AH01630: client denied by server configuration: /var/www/html/ERRORpages/403.html [Fri Jun 19 17:37:26.472299 2026] [authz_core:error] [pid 1252402:tid 1252432] [client 31.220.45.93:14592] AH01630: client denied by server configuration: proxy:http://[MASKED]/.env.developme ... show less	Bad Web Bot Web App Attack
🇫🇮 WinnieHoneypots	2026-06-19 16:22:01 (1 week ago)	Probe hitting /.gitlab-ci.yml detected. Whatcha lookin for in there?!	Brute-Force Bad Web Bot Web App Attack
🇫🇮 agaesteves	2026-06-19 14:33:58 (1 week ago)	[SISHIPISMO 360] TipoAtaque.EXT_PROBE \| Extensão de arquivo suspeita no path: /wp-config.php \| Paths ... show more [SISHIPISMO 360] TipoAtaque.EXT_PROBE \| Extensão de arquivo suspeita no path: /wp-config.php \| Paths: /wp-config.php \| UA: Mozilla/5.0 (compatible) show less	Web App Attack
🇺🇸 chronos	2026-06-18 15:16:03 (1 week ago)	[AUTORAVALT][[18/06/2026 - 12:16:03 -03:00 UTC] Attack from [31.220.45.93] Action: BLocKed Hacking. ... show more [AUTORAVALT][[18/06/2026 - 12:16:03 -03:00 UTC] Attack from [31.220.45.93] Action: BLocKed Hacking... Unauthorized attempts to access the server. Web App Attack -> Attempts to probe for or exploit installed web applications such as a CMS like WordPress/Drupal, e-commerce solutions, forum software, phpMyAdmin and various other software plugins/solutions. ] ... show less	Hacking Web App Attack
🇺🇸 masterguru	2026-06-18 14:59:20 (1 week ago)	Host header is a numeric IP address. Pattern match "^ (920350-164)	Hacking Bad Web Bot
🇺🇸 aks4226	2026-06-18 14:58:40 (1 week ago)	Bot search, attacking common web applications.	Web App Attack
🇫🇷 GabrielJST	2026-06-18 13:08:00 (1 week ago)	Port Scan detected from 31.220.45.93 (-).	Port Scan
🇨🇦 Blinker73	2026-06-18 12:58:38 (1 week ago)	2026-06-18T08:54 kernel: OUT= SRC=31.220.45.93 LEN=44 TOS=0x00 PREC=0x00 TTL=240 ID=13772 PROT ... show more 2026-06-18T08:54 kernel: OUT= SRC=31.220.45.93 LEN=44 TOS=0x00 PREC=0x00 TTL=240 ID=13772 PROTO=TCP SPT=47071 DPT=5000 WINDOW=1025 RES=0x00 SYN URGP=0 2026-06-18T08:55 kernel: OUT= SRC=31.220.45.93 LEN=44 TOS=0x00 PREC=0x00 TTL=239 ID=6702 PROTO=TCP SPT=47076 DPT=5000 WINDOW=1025 RES=0x00 SYN URGP=0 2026-06-18T08:57 kernel: OUT= SRC=31.220.45.93 LEN=44 TOS=0x00 PREC=0x00 TTL=239 ID=6409 PROTO=TCP SPT=47174 DPT=8000 WINDOW=1025 RES=0x00 SYN URGP= show less	Port Scan
🇨🇦 Tanados	2026-06-18 12:53:20 (1 week ago)	Blocked by UFW [9090/tcp] Source port: 47174 TTL: 242 Packet length: 44 TOS: 0x00 This report was g ... show more Blocked by UFW [9090/tcp] Source port: 47174 TTL: 242 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 thecocasio	2026-06-17 13:09:32 (1 week ago)	HellPot honeypot: .env secret-file probe — observed request "GET /.env" against a honeypot host wher ... show more HellPot honeypot: .env secret-file probe — observed request "GET /.env" against a honeypot host where no such application or resource exists. Detected at 2026-06-17T13:09:31Z. show less	Web App Attack
🇩🇪 Roper123	2026-06-17 12:25:55 (1 week ago)	Web exploits	Web App Attack
🇳🇱 tpjg	2026-06-17 11:44:20 (1 week ago)	Automated: 15 requests with error status in 120s window from 31.220.45.93. Evidence: /wp-config.php: ... show more Automated: 15 requests with error status in 120s window from 31.220.45.93. Evidence: /wp-config.php:404,/.env.development:404,/.env.example:404,/backend/.env:404,/.env.dev:404,/.env.save:404,/.env.old:404,/.env.bak:404,/.env.staging:404,/.env.backup:404,/.env.prod:404,/.env.local:404,/.env.production:404,/config/.env:404,/.env:404 show less	Web App Attack
🇫🇷 maxxsense	2026-06-17 06:18:57 (1 week ago)	(mod_security) mod_security triggered on hostname [redacted] 31.220.45.93 (-)	SQL Injection
🇩🇪 reznekcs	2026-06-17 05:39:47 (1 week ago)	F2B apache-noscript ban. Logs: [Wed Jun 17 07:39:44.064666 2026] [proxy_fcgi:error] [pid 2040717] [c ... show more F2B apache-noscript ban. Logs: [Wed Jun 17 07:39:44.064666 2026] [proxy_fcgi:error] [pid 2040717] [client 31.220.45.93:2712] AH01071: Got error 'Primary script unknown' [Wed Jun 17 07:39:46.674244 2026] [proxy_fcgi:error] [pid 2056784] [client 31.220.45.93:2716] AH01071: Got error 'Primary script unknown' [Wed Jun 17 07:39:46.675334 2026] [proxy_fcgi:error] [pid 2045055] [client 31.220.45.93:2736] AH01071: Got error 'Primary script unknown' show less	Web App Attack

Showing 1 to 15 of 86 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 213.166.84.44

🇧🇷 191.253.50.189

🇳🇱 160.119.76.61

🇺🇸 135.119.112.78

🇲🇼 105.234.156.197

🇪🇸 93.93.115.216

🇫🇷 85.217.140.52

🇺🇸 20.65.217.120

🇻🇳 222.252.1.34

🇰🇷 222.239.251.12

🇳🇱 209.38.97.254

🇦🇺 194.195.253.86

🇸🇬 159.65.1.24

🇬🇧 157.245.36.108

🇺🇸 143.198.57.70

🇩🇪 69.5.169.204

🇺🇸 65.49.1.172

🇨🇳 59.52.178.105

🇸🇬 47.84.186.19

🇯🇵 8.216.6.127