JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.66.35.34

45.66.35.34 was found in our database!

This IP was reported 507 times. Confidence of Abuse is 100%: ?

100%

This address is a Tor exit node. Neither the owner nor the provider are directly behind the offending action.

ISP	SABOTAGE LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS61125
Hostname(s)	ams14.torexit.nl
Domain Name	sabotage.net
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.66.35.34

Whois 45.66.35.34

IP Abuse Reports for 45.66.35.34:

This IP address has been reported a total of 507 times from 158 distinct sources. 45.66.35.34 was first reported on September 26th 2024, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 sverson	2026-06-04 22:56:05 (6 hours ago)	Automated report	Hacking
🇩🇪 ger-stg-sifi1	2026-06-03 02:59:20 (2 days ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 mnsf	2026-06-03 02:05:37 (2 days ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-01 22:45:36 (3 days ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 nationaleventpros.com	2026-05-31 22:26:00 (4 days ago)	WordPress login attempt	Brute-Force
🇺🇸 Ar1s	2026-05-31 04:39:27 (5 days ago)	[1:2522000] ET TOR Known Tor Relay/Router (Not Exit) Node Traffic ::: Port: 443/TCP	Exploited Host
🇩🇪 big-cloud.nl	2026-05-30 22:00:32 (5 days ago)	Try to access /xmlrpc.php	Web App Attack
🇩🇪 Spiderpiggy	2026-05-30 21:32:37 (5 days ago)	Automatically reported via Blackhole honeypot on phpbbextnl.be. Attempted access to restricted endpo ... show more Automatically reported via Blackhole honeypot on phpbbextnl.be. Attempted access to restricted endpoint: /bad-bots-stoker show less	Brute-Force Bad Web Bot SSH
🇺🇸 nodepile	2026-05-30 18:47:30 (5 days ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/toyota-prius-10-15-xb-led-f ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/toyota-prius-10-15-xb-led-front-rear-turn-signal-kit.html ua='Mozilla/5.0 (Linux; Android 8.1.0; SM-J260F Build/M1AJB) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.117 Mobile Safari/537.36 YaApp_Android/10.51 YaSearchBrowser/10.51') show less	Web App Attack Exploited Host
🇺🇸 LotPhantom	2026-05-30 17:29:02 (5 days ago)	45.66.35.34 - - [30/May/2026:17:28:42 +0000] "GET /?utm_campaign=300126+10+-+PL+-+290126+2+%28689290 ... show more 45.66.35.34 - - [30/May/2026:17:28:42 +0000] "GET /?utm_campaign=300126+10+-+PL+-+290126+2+%28689290%29+-+Stanis%C5%82aw+Sojka+-+%D0%B7%D0%B0%D0%B2%D0%B5%D1%89%D0%B0%D0%BD%D0%B8%D0%B5+%2810%29+25%2B+Lead+1-1-10&utm_source=fb&utm_placement=Facebook_Desktop_Feed&campaign_id=120239275971170193&adset_id=120239275971180193&ad_id=120239276004320193&adset_name=300126+10+-+1&ad_name=New+Leads+Ad+-+Copy&utm_medium=paid&utm_id=120239275971170193&utm_content=120239276004320193&utm_term=120239275971180193&media_type=image&fbclid=IwY2 HTTP/1.1" 404 0 "https://job-search-api.bridginggaps.tech/?utm_campaign=300126+10+-+PL+-+290126+2+%28689290%29+-+Stanis%C5%82aw+Sojka+-+%D0%B7%D0%B0%D0%B2%D0%B5%D1%89%D0%B0%D0%BD%D0%B8%D0%B5+%2810%29+25%2B+Lead+1-1-10&utm_source=fb&utm_placement=Facebook_Desktop_Feed&campaign_id=120239275971170193&adset_id=120239275971180193&ad_id=120239276004320193&adset_name=300126+10+-+1&ad_name=New+Leads+Ad+-+Copy&utm_medium=paid&utm_id=120239275971170193&utm_content=1202392760043 ... show less	Web App Attack
🇩🇪 LRob.fr	2026-05-29 21:45:07 (6 days ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇫🇮 6kilowatti	2026-05-28 00:30:39 (1 week ago)	45.66.35.34 - - [28/May/2026:03:30:38 +0300] "GET /oh6kw-admin HTTP/1.1" 404 41 "http://6kw.fi/oh6kw ... show more 45.66.35.34 - - [28/May/2026:03:30:38 +0300] "GET /oh6kw-admin HTTP/1.1" 404 41 "http://6kw.fi/oh6kw-admin" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:135.0) Gecko/20100101 Firefox/135.0" ... show less	Web App Attack
🇺🇸 etu brutus	2026-05-27 14:10:22 (1 week ago)	45.66.35.34 Blocked by [Attack Vector List] ...	Hacking Brute-Force Exploited Host
🇩🇪 4server	2026-05-25 18:00:35 (1 week ago)	[MonMay2520:00:31.3971572026][security2:error][pid261909:tid261965][client45.66.35.34:0]ModSecurity: ... show more [MonMay2520:00:31.3971572026][security2:error][pid261909:tid261965][client45.66.35.34:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"ci-ticino.ch\"][uri\"/\"][unique_id\"ahSOP1H6KYGek2jpdFmhLgAAAFE\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 Ar1s	2026-05-25 06:09:23 (1 week ago)	[1:2522000] ET TOR Known Tor Relay/Router (Not Exit) Node Traffic ::: Port: 443/TCP	Exploited Host

Showing 1 to 15 of 507 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.100

🇹🇼 198.235.24.94

🇬🇧 195.250.23.247

🇺🇸 184.105.139.99

🇷🇴 140.233.190.89

🇧🇷 129.121.33.174

🇧🇳 119.160.166.237

🇩🇪 116.203.204.171

🇨🇳 111.21.105.250

🇲🇾 47.250.192.18

🇬🇧 5.226.140.96

🇰🇷 220.71.199.64

🇷🇴 193.32.162.13

🇪🇨 181.39.158.25

🇵🇭 120.28.212.172

🇮🇳 103.162.217.237

🇹🇼 60.199.224.2

🇨🇳 58.54.34.14

🇺🇸 35.212.208.86

🇬🇧 35.203.210.45