JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.49.86

45.3.49.86 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 52%: ?

52%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.49.86

Whois 45.3.49.86

IP Abuse Reports for 45.3.49.86:

This IP address has been reported a total of 30 times from 20 distinct sources. 45.3.49.86 was first reported on August 21st 2024, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇹 Malta	2026-06-14 06:31:39 (11 hours ago)	45.3.49.86 - - [14/Jun/2026:08:31:39 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; I ... show more 45.3.49.86 - - [14/Jun/2026:08:31:39 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇬🇷 setupgr	2026-06-13 12:01:02 (1 day ago)	(mod_security) mod_security (id:900001) triggered by 45.3.49.86: 1 in the last 86400 secs; Ports: ; ... show more (mod_security) mod_security (id:900001) triggered by 45.3.49.86: 1 in the last 86400 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 13 15:00:57.256575 2026] [security2:error] [pid 784504:tid 784676] [client 45.3.49.86:64309] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: villa-izabela.com"] [severity "CRITICAL"] [tag "security"] [hostname "villa-izabela.com"] [uri "/wp-login.php"] [unique_id "ai1GecEgqLHd_cJk2hHJJwAAAIk"], referer: https://villa-izabela.com/wp-login.php show less	Port Scan
🇺🇸 lostswordfish.com	2026-06-12 22:02:04 (1 day ago)	Wordfence waf block on decarcerationnation	Web App Attack
Anonymous	2026-06-03 13:15:31 (1 week ago)	WordPress Brute Force	Brute-Force
🇫🇷 ELYAZ	2026-05-31 04:14:51 (2 weeks ago)	(y4) Failed scan -byebye- from 45.3.49.86 (US/United States/-): (CF_ENABLE)	Hacking
🇺🇸 oncord	2026-05-30 21:07:14 (2 weeks ago)	Form spam	Web Spam
🇩🇪 FeG Deutschland	2026-05-30 07:44:38 (2 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
Anonymous	2026-05-30 04:20:31 (2 weeks ago)	Web attack blocked by Wordfence on kunstkringhenrijonas.nl (1 hit). Reported by CRMON.	Web App Attack
🇲🇽 octageeks.com	2026-05-30 04:12:14 (2 weeks ago)	Wordpress malicious attack:[octaflood]	Web App Attack
Anonymous	2026-05-29 02:46:01 (2 weeks ago)	[ssd5.kdns.gr] httpd-login-spray-site: sites=weihnachtsbasar-athen.gr; logs=/var/log/httpd/domains/w ... show more [ssd5.kdns.gr] httpd-login-spray-site: sites=weihnachtsbasar-athen.gr; logs=/var/log/httpd/domains/weihnachtsbasar-athen.gr.log; samples=site_wide=true \| distinct_ips=16 \| /wp-login.php show less	Hacking Web App Attack
🇫🇮 as211431.net	2026-05-14 16:11:51 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /index.php UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-05-11 10:23:57 (1 month ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2025-12-05 07:30:23 (6 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2025-12-02 21:15:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.49.86 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.49.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 16:15:20.102061 2025] [security2:error] [pid 18298:tid 18298] [client 45.3.49.86:27571] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arkml.com"] [uri "/.svn/wc.db"] [unique_id "aS9W6CbFo7dCm1_V6tfkQwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 08:15:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.49.86 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.49.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 03:15:18.138564 2025] [security2:error] [pid 2274:tid 2274] [client 45.3.49.86:34175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "1writeforthegrant.com"] [uri "/.svn/wc.db"] [unique_id "aS6gFsC_rtRRwBj_CXrQXAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 136.248.121.226

🇺🇸 109.105.210.77

🇩🇪 77.239.121.60

🇺🇸 172.253.196.154

🇨🇦 85.217.149.5

🇳🇱 84.107.35.202

🇺🇸 65.49.1.30

🇰🇷 218.155.71.60

🇧🇷 205.210.31.142

🇧🇪 198.235.24.252

🇵🇰 175.107.217.3

🇫🇮 157.22.126.159

🇩🇪 155.117.127.214

🇮🇳 117.228.184.112

🇺🇸 157.230.150.187

🇨🇳 124.222.127.107

🇹🇭 117.121.214.50

🇺🇸 104.207.44.50

🇲🇾 47.250.124.182

🇸🇬 43.133.61.254