JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.3.33.80

45.3.33.80 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.3.33.80

Whois 45.3.33.80

IP Abuse Reports for 45.3.33.80:

This IP address has been reported a total of 23 times from 15 distinct sources. 45.3.33.80 was first reported on October 19th 2024, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-05-07 06:27:13 (4 weeks ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 Axel	2026-05-01 21:50:47 (1 month ago)	[2026-05-01 21:50:47 UTC] Honeypot WebLogic connection attempt \| AXFRA HONEYPOT	Web App Attack
🇳🇱 homeshowdomain.nl	2026-01-02 23:00:51 (5 months ago)	Auto-ban: >3000 req/min op 2026-01-02	Hacking Web App Attack SSH
Anonymous	2025-12-09 22:20:00 (5 months ago)	botnet	DDoS Attack
Anonymous	2025-12-04 03:21:31 (6 months ago)	2025-12-04T05:21:30.679284+02:00 zanati wp(www.sahpa.co.za)[382619]: Blocked authentication attempt ... show more 2025-12-04T05:21:30.679284+02:00 zanati wp(www.sahpa.co.za)[382619]: Blocked authentication attempt for [email protected] from 45.3.33.80 ... show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:47:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.33.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.33.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:46:56.518764 2025] [security2:error] [pid 3965259:tid 3965343] [client 45.3.33.80:11277] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.miraclebrow.com"] [uri "/.git/HEAD"] [unique_id "aSPxUMHsvdKIeQe-cM9LHAAAAVI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:11:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 45.3.33.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.3.33.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:11:10.614693 2025] [security2:error] [pid 18542:tid 18542] [client 45.3.33.80:18523] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.chipnado.com"] [uri "/.env"] [unique_id "aSPo7iP2l3wclthp1Tr2LgAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-11-19 08:19:48 (6 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
🇭🇺 zolav8	2025-11-08 04:46:30 (6 months ago)	SQL injection / web attack attempt	Hacking SQL Injection
Anonymous	2025-11-07 06:59:41 (6 months ago)	[redacted] 45.3.33.80 - - [07/Nov/2025:07:58:47 +0100] "POST /xmlrpc.php HTTP/2.0" 200 444 "-" "Mozi ... show more [redacted] 45.3.33.80 - - [07/Nov/2025:07:58:47 +0100] "POST /xmlrpc.php HTTP/2.0" 200 444 "-" "Mozilla/5.0 (Linux; Android 7.0; Moto C Build/NRD90M.059) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Mobile Safari/537.36" [redacted] 45.3.33.80 - - [07/Nov/2025:07:59:27 +0100] "POST /xmlrpc.php HTTP/2.0" 200 444 "-" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/534.30 (KHTML, like Gecko) Ubuntu/11.04 Chromium/12.0.742.112 Chrome/12.0.742.112 Safari/534.30" [redacted] 45.3.33.80 - - [07/Nov/2025:07:59:29 +0100] "POST /xmlrpc.php HTTP/2.0" 200 444 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; Trident/7.0; rv:11.0) like Gecko" [redacted] 45.3.33.80 - - [07/Nov/2025:07:59:30 +0100] "POST /xmlrpc.php HTTP/2.0" 200 444 "-" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; InfoPath.1; .NET CLR 3.0.04506.648)" [redacted] 45.3.33.80 - - [07/Nov/2025:07:59:31 +0100] "POST /xmlrpc.php HTTP/ ... show less	Hacking Web App Attack
Anonymous	2025-10-30 15:05:13 (7 months ago)	WordPress Brute Force	Brute-Force
🇩🇪 Marc	2025-10-29 17:56:48 (7 months ago)		Brute-Force Web App Attack
🇱🇻 garmtech.com	2025-10-21 11:30:12 (7 months ago)	IM360 WAF: SQL Injection Attack: Common DB Names Detected	SQL Injection
Anonymous	2025-10-17 18:50:02 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.17 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.17 is noted in report timestamp show less	Hacking Brute-Force
🇨🇦 wil.com	2025-10-14 01:14:11 (7 months ago)	GlobalProtect login attempts with user jleggett.	VPN IP Brute-Force

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.154.184

🇲🇽 186.96.151.198

🇺🇸 162.216.149.70

🇮🇳 152.52.209.54

🇩🇪 69.5.169.174

🇩🇪 69.5.169.166

🇫🇷 51.159.149.103

🇨🇳 42.123.124.192

🇺🇸 37.19.200.160

🇬🇧 35.203.210.237

🇧🇬 212.91.161.162

🇺🇦 193.107.110.41

🇨🇳 183.223.156.154

🇨🇳 123.56.11.51

🇵🇰 110.38.234.222

🇷🇺 91.78.160.123

🇪🇸 62.37.209.72

🇺🇸 44.234.120.135

🇬🇧 35.203.210.170

🇬🇧 35.203.210.164