JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.43.64.80

45.43.64.80 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 0%: ?

ISP	SYN LTD
Usage Type	Fixed Line ISP
ASN	AS64080
Domain Name	syn.uk
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	London, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.43.64.80

Whois 45.43.64.80

IP Abuse Reports for 45.43.64.80:

This IP address has been reported a total of 32 times from 10 distinct sources. 45.43.64.80 was first reported on November 27th 2023, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-16 05:22:33 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 00:22:25.128026 2026] [security2:error] [pid 31571:tid 31571] [client 45.43.64.80:33157] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.nbcnewsradio.com"] [uri "/.svn/entries"] [unique_id "aWnLEeGV-82FUDkqmv7C3QAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 23:51:31 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 18:51:23.434488 2025] [security2:error] [pid 15402:tid 15402] [client 45.43.64.80:52915] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.farmers123.com\|F\|2"] [data ".com.db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.farmers123.com"] [uri "/farmers123.com.db"] [unique_id "aS97e8cnAD9kpFvDfwv9wgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-01 15:44:33 (8 months ago)	(mod_security) mod_security (id:210492) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 01 11:44:28.995342 2025] [security2:error] [pid 30109:tid 30118] [client 45.43.64.80:56865] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.kettlehill.com"] [uri "/.env.production"] [unique_id "aN1MXJmcYLK3QOnvb-93QQAAAYI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-05 20:07:24 (9 months ago)	(mod_security) mod_security (id:210730) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 05 16:07:19.135870 2025] [security2:error] [pid 22548:tid 22548] [client 45.43.64.80:47107] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.nbcnewsradio.com\|F\|2"] [data ".key"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.nbcnewsradio.com"] [uri "/www.key"] [unique_id "aJJkdxUPFUTCD_qj-tkYAgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Alejandro Docasar	2024-11-26 17:54:56 (1 year ago)		Web App Attack
🇺🇸 TPI-Abuse	2024-10-27 02:24:41 (1 year ago)	(mod_security) mod_security (id:211190) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:211190) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 26 22:23:48.756855 2024] [security2:error] [pid 18545:tid 18558] [client 45.43.64.80:58771] [client 45.43.64.80] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|ftp.kettlehill.net\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.kettlehill.net"] [uri "/XMII/Catalog"] [unique_id "Zx2kNLpEimJ-QQL1ZoqeBgAAAEs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-09-03 18:39:32 (1 year ago)	(mod_security) mod_security (id:211190) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:211190) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 03 14:39:03.966857 2024] [security2:error] [pid 9715:tid 9715] [client 45.43.64.80:46255] [client 45.43.64.80] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|mail.stdavids-media.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /pages/setup.php?defaultlanguage=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.stdavids-media.com"] [uri "/pages/setup.php"] [unique_id "ZtdXx1wvS5d7aQWB7lPzEgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-08-07 23:05:33 (1 year ago)	(mod_security) mod_security (id:217280) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:217280) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 07 19:05:26.756807 2024] [security2:error] [pid 19848:tid 19848] [client 45.43.64.80:37415] [client 45.43.64.80] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?:\\\\n\|\\\\r)+(?:get\|post\|head\|options\|connect\|put\|delete\|trace\|propfind\|propatch\|mkcol\|copy\|move\|lock\|unlock)\\\\s+" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "137"] [id "217280"] [rev "6"] [msg "COMODO WAF: HTTP Request Smuggling Attack\|\|ventivhealthcare.com\|F\|2"] [data "Matched Data: get found within MATCHED_VAR"] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "ventivhealthcare.com"] [uri "/scripts/form-a772-86d8.php"] [unique_id "ZrP9tsP9OJju7WZHYV1uxAAAAAk"], referer: http://ventivhealthcare.com/Contact-Us.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 semmelbroesel	2024-08-07 20:31:52 (1 year ago)	Web form spam - triggered honeypot - submitted data: (First Name - Honeypot field): Alycia * (Name ... show more Web form spam - triggered honeypot - submitted data: (First Name - Honeypot field): Alycia * (Name): Alycia Hutchens * (Email): [email protected] * (Message): Fed up of your site being slow and being unavailable occasionally? Check out Cloudways Autonomous... Easy, Robust, Dependable & Scalable WordPress Hosting! Get a hosting solution with zero configurations, 1-click operations, and zero downtimes. Host your website and focus on growing your venture, while Autonomous handles it all! - Hands-off Experience - Automatically Scales - Always Available - Start Free with $100 Credit Tap into the capabilities of your site today: https://bit.ly/3WEGGef You can unsubscribe by filling this form: https://bit.ly/removefrmlist 40 Auricht Road, Nangwarry, SA, Australia, 5277 show less	Web Spam
🇺🇸 nowyouknow	2024-08-06 20:48:19 (1 year ago)	(From [email protected]) Upgrade your toolkit with the finest air tools from Japan! Tend Indu ... show more (From [email protected]) Upgrade your toolkit with the finest air tools from Japan! Tend Industrial Supplies proudly presents Shinano Air Tools, now available for professionals like you. Loaded with features, extremely durable, and built to last, you can count on these tools for years of heavy use. What makes Shinano Air Tools stand out? For over five decades, Shinano has led the way in air tool manufacturing, combining precision engineering with remarkable durability. Suited for the construction field, Shinano tools deliver performance you can depend on. Advantages of Using Shinano Air Tools: - Japanese Craftsmanship: Shinano tools are known for their exceptional craftsmanship, offering unparalleled durability and longevity. - Cutting-Edge Features: Designed with the user in mind, these tools come equipped with features that enhance efficiency and ease of use. - Robust Build: Ideal for heavy-duty tasks, Shinano air tools are built to provide reliable, high-quality performance. * U show less	Phishing Web Spam
🇺🇸 oncord	2024-07-28 22:55:15 (1 year ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2024-07-27 20:24:40 (1 year ago)	(mod_security) mod_security (id:211190) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:211190) triggered by 45.43.64.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 27 16:23:55.659969 2024] [security2:error] [pid 23119:tid 23150] [client 45.43.64.80:38303] [client 45.43.64.80] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|staging.kettlehill.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /cgi-bin/wapopen?B1=OK&NO=CAM_16&REFRESH_TIME=Auto_00&FILECAMERA=../../etc/passwd%00&REFRESH_HTML=auto.htm&ONLOAD_HTML=onload.htm&STREAMING_HTML=streaming.htm&NAME=admin&PWD=admin&PIC_SIZE=0"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "staging.kettlehill.com"] [uri "/cgi-bin/wapopen"] [unique_id "ZqVXW9C5xPF3XKcxXkCllwAAAZQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2024-07-23 12:33:20 (1 year ago)	Form spam	Web Spam
🇺🇸 nowyouknow	2024-07-20 00:51:30 (1 year ago)	(From [email protected]) Imagine having entry to over 5 million business contacts through ... show more (From [email protected]) Imagine having entry to over 5 million business contacts throughout the USA, carefully organized into 7,900 specialized databases. For just $49, our 20GB of freshly scraped data provides you with the most up-to-date and accurate information to enhance your marketing campaigns. Unlock the potential of your business with our extensive contact database. Download a free sample now. Order now: https://bit.ly/B2BCFL Unsubscribe here if you want to stop receiving these great emails: https://bit.ly/3LmI8fS Stratinghweg 135, Groningen, GR, Netherlands, 9731 Cs show less	Phishing Web Spam
🇦🇺 oncord	2024-07-18 12:06:15 (1 year ago)	Form spam	Web Spam

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 212.73.148.36

🇨🇭 209.99.184.143

🇧🇷 187.120.72.223

🇺🇸 107.150.98.168

🇳🇱 45.148.10.152

🇳🇱 45.148.10.147

🇧🇷 187.120.72.124

🇯🇵 172.104.93.159

🇳🇱 85.121.127.144

🇺🇸 66.132.195.62

🇯🇵 54.248.17.61

🇳🇱 45.148.10.121

🇷🇺 45.91.64.7

🇨🇳 42.123.126.29

🇺🇸 18.116.163.70

🇨🇴 143.105.99.113

🇨🇳 111.39.167.59

🇫🇮 147.185.133.89

🇧🇬 78.128.112.6

🇺🇸 52.2.83.227