JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 217.181.80.12

217.181.80.12 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 35%: ?

35%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 217.181.80.12

Whois 217.181.80.12

IP Abuse Reports for 217.181.80.12:

This IP address has been reported a total of 8 times from 6 distinct sources. 217.181.80.12 was first reported on March 5th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-03 17:35:46 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 217.181.80.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 217.181.80.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 13:35:39.190276 2026] [security2:error] [pid 21323:tid 21342] [client 217.181.80.12:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bacalodgecom.sloveniaflyfishing.com"] [uri "/.env.production"] [unique_id "aiBl65Ar3PWQsW3oVasiegAAAJA"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Axel	2026-06-03 11:26:48 (2 days ago)	Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env.product ... show more Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env.production Server: UK-01 show less	Web App Attack Hacking SQL Injection
🇺🇸 mnsf	2026-06-02 22:05:48 (3 days ago)	Abuse Detected (1)	Brute-Force Web App Attack
Anonymous	2026-05-26 22:22:02 (1 week ago)	Malicious activity detected	Hacking Web App Attack
🇳🇱 homeshowdomain.nl	2026-04-28 22:05:39 (1 month ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-04-27. show less	Web App Attack SSH Hacking
🇨🇭 backslash	2026-04-23 13:21:00 (1 month ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2026-03-14 20:41:08 (2 months ago)	(mod_security) mod_security (id:210350) triggered by 217.181.80.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 217.181.80.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 16:41:03.700171 2026] [security2:error] [pid 3286535:tid 3286535] [client 217.181.80.12:14900] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.nekstlevel.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.nekstlevel.com"] [uri "/wp-login.php"] [unique_id "abXH3xTh7hNB9sJ9z595dwAAABA"], referer: https://www.nekstlevel.com/wp-login.php show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-05 06:08:09 (3 months ago)	(mod_security) mod_security (id:210350) triggered by 217.181.80.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 217.181.80.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 05 01:08:04.533854 2026] [security2:error] [pid 27500:tid 27500] [client 217.181.80.12:16494] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.indiahouseportland.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.indiahouseportland.com"] [uri "/wp-login.php"] [unique_id "aakdxHpFEHL-GGCurasRBgAAAAo"], referer: https://www.indiahouseportland.com/wp-login.php show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇩 103.153.110.190

🇺🇸 64.62.156.191

🇮🇳 223.181.49.133

🇨🇳 183.134.40.84

🇧🇼 168.167.72.132

🇺🇸 151.240.67.87

🇷🇴 89.37.117.103

🇨🇳 8.134.159.4

🇩🇪 138.197.187.72

🇨🇳 123.163.55.147

🇨🇳 112.94.9.223

🇨🇳 101.96.202.189

🇺🇸 98.90.93.233

🇬🇧 35.203.211.101

🇺🇸 3.128.168.107

🇩🇪 213.209.159.236

🇰🇭 202.79.29.108

🇺🇸 173.239.240.103

🇺🇸 172.253.244.147

🇳🇱 160.119.78.102