JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.42.220

45.3.42.220 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 19%: ?

19%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.42.220

Whois 45.3.42.220

IP Abuse Reports for 45.3.42.220:

This IP address has been reported a total of 19 times from 12 distinct sources. 45.3.42.220 was first reported on October 1st 2024, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-06-15 22:13:17 (2 hours ago)	(y4) Failed scan -byebye- from 45.3.42.220 (GB/United Kingdom/-): (CF_ENABLE)	Hacking
🇩🇪 georgengelmann	2026-06-15 18:22:10 (6 hours ago)	Failed login attempt for letmeseehaha_2026	Brute-Force Web App Attack
🇬🇷 setupgr	2026-06-15 17:08:26 (7 hours ago)	(mod_security) mod_security (id:900001) triggered by 45.3.42.220: 1 in the last 86400 secs; Ports: * ... show more (mod_security) mod_security (id:900001) triggered by 45.3.42.220: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Jun 15 20:08:21.641516 2026] [security2:error] [pid 1917013:tid 1917194] [client 45.3.42.220:52485] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: setworldup.com"] [severity "CRITICAL"] [tag "security"] [hostname "setworldup.com"] [uri "/wp-login.php"] [unique_id "ajAxhUEA9pRZS3vlJ2utcgAAAJY"], referer: https://setworldup.com/wp-login.php show less	Port Scan
Anonymous	2026-01-05 20:18:25 (5 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.05 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-25 03:19:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.42.220 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.42.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:19:46.388303 2025] [security2:error] [pid 2874:tid 2874] [client 45.3.42.220:15651] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dennisstokley.com"] [uri "/.env"] [unique_id "aSUgUgbd_lsLodHwLjGhwAAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 webbfabriken	2025-10-30 18:29:29 (7 months ago)	Invalid WordPress login attempt Attack reported by Webbfabriken Security API - WFSecAPI	Brute-Force
🇳🇿 billyborsht	2025-10-27 06:12:53 (7 months ago)	2025-10-27T19:12:52.399666+13:00 southern wordpress(leanpolicy.org)[486981]: Authentication attempt ... show more 2025-10-27T19:12:52.399666+13:00 southern wordpress(leanpolicy.org)[486981]: Authentication attempt for unknown user leanpolicy.org from 45.3.42.220 ... show less	Hacking Web App Attack
🇺🇸 nowyouknow	2025-10-08 21:02:02 (8 months ago)	(From [email protected]) 3 clicks instead of 30 tools. Delegate the grind to AI and keep the p ... show more (From [email protected]) 3 clicks instead of 30 tools. Delegate the grind to AI and keep the profit https://www.youtube.com/watch?v=GY1x2NWs9EA show less	Phishing Web Spam
🇺🇸 oncord	2025-10-08 18:40:24 (8 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2024-12-19 11:10:50 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.42.220 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.42.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 19 06:10:44.232847 2024] [security2:error] [pid 18269:tid 18269] [client 45.3.42.220:34191] [client 45.3.42.220] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|thorhauer.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "thorhauer.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z2P_NOae7nTCUvlJHE5ZwwAAAAw"], referer: https://thorhauer.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-11-25 01:54:02 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 45.3.42.220 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 45.3.42.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 24 20:53:55.369329 2024] [security2:error] [pid 8770:tid 8770] [client 45.3.42.220:28869] [client 45.3.42.220] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|pronio.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pronio.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z0PYs-fgJ9jUKkmt_lXViwAAAAo"], referer: https://pronio.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 PulseServers	2024-11-10 00:51:09 (1 year ago)	Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com ... show more Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com - ISUS1 ... show less	DDoS Attack Exploited Host
🇺🇸 PulseServers	2024-11-09 03:26:38 (1 year ago)	Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com ... show more Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com - ISUS2 ... show less	DDoS Attack Exploited Host
🇺🇸 PulseServers	2024-11-08 00:47:06 (1 year ago)	Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com ... show more Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com - ISUS1 ... show less	DDoS Attack Exploited Host
🇺🇸 PulseServers	2024-11-04 04:56:08 (1 year ago)	Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com ... show more Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com - ISUS2 ... show less	DDoS Attack Exploited Host

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 179.228.54.137

🇩🇪 151.243.11.245

🇩🇪 151.243.11.37

🇺🇸 2607:f8b0:400e:c1e::128

🇰🇷 211.253.9.49

🇨🇴 200.10.29.235

🇮🇩 160.22.193.35

🇺🇸 150.107.38.251

🇳🇱 94.102.49.193

🇫🇷 91.238.181.10

🇫🇷 91.231.89.186

🇫🇷 91.231.89.172

🇫🇷 91.231.89.170

🇩🇪 87.106.60.123

🇺🇸 47.251.161.178

🇺🇸 40.77.167.73

🇩🇴 38.75.82.14

🇬🇧 2.97.44.189

🇺🇸 216.73.216.214

🇧🇷 201.18.68.42