JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.80.104.52

45.80.104.52 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 15%: ?

15%

ISP	Hosting servers physically located in United Kingdom
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	apexdatasolutions.online
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.80.104.52

Whois 45.80.104.52

IP Abuse Reports for 45.80.104.52:

This IP address has been reported a total of 19 times from 15 distinct sources. 45.80.104.52 was first reported on May 28th 2021, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-11 02:15:31 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 45.80.104.52 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 45.80.104.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 22:15:01.555772 2026] [security2:error] [pid 32062:tid 32062] [client 45.80.104.52:58757] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rdhtrucking.com"] [uri "/wp-config.php.swp"] [unique_id "aioaJdxTiRMZk8TxRDk8TQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-05-21 21:23:04 (1 month ago)	Web password guessing	Brute-Force
🇫🇷 tilellit.pro	2026-05-05 18:55:13 (1 month ago)	Fail2Ban banned 45.80.104.52 for security violations in jail wp-armour. Log: 2026/05/05 18:55:12 [er ... show more Fail2Ban banned 45.80.104.52 for security violations in jail wp-armour. Log: 2026/05/05 18:55:12 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 45.80.104.52 \| Target: wplogin" , client: 45.80.104.52, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇩🇪 kjaerulff	2026-04-03 08:44:47 (2 months ago)	Failed Wordpress login using wp-login.php	Web App Attack
🇺🇸 TPI-Abuse	2026-03-29 11:19:13 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 45.80.104.52 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 45.80.104.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 07:19:07.253718 2026] [security2:error] [pid 11980:tid 11980] [client 45.80.104.52:12129] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mcgmcg.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mcgmcg.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ackKqzcMjaUytO9CBChyEwAAAA8"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-21 00:59:55 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 45.80.104.52 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 45.80.104.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 20:59:46.907536 2026] [security2:error] [pid 7658:tid 7658] [client 45.80.104.52:51513] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|coroneta.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "coroneta.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ab3tgqR4WiMXZEu_fnjIPwAAACA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-17 20:15:45 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 45.80.104.52 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 45.80.104.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 17 16:15:41.689494 2026] [security2:error] [pid 1084:tid 1084] [client 45.80.104.52:56435] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|vandromme.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "vandromme.net"] [uri "/wp-json/wp/v2/users"] [unique_id "abm2bbjSHd4m-AqLxpjvuQAAAAc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-03-12 06:53:47 (3 months ago)	Blocked by CSF 13 firewall - Rule: WPLOGIN GB/United Kingdom/-	Web App Attack
🇩🇪 kjaerulff	2026-03-11 14:33:34 (3 months ago)	Failed Wordpress login using wp-login.php	Web App Attack
🇦🇺 oncord	2025-10-14 12:42:04 (8 months ago)	Form spam	Web Spam
🇺🇸 agenciahypelab.com.br	2025-09-26 20:22:58 (8 months ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇩🇪 SCHAPPY	2025-07-06 06:02:04 (11 months ago)	Wordpress attack: user enumeration attempt detected.	Web App Attack
Anonymous	2025-06-10 11:36:10 (1 year ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
🇧🇷 hostseries	2025-06-09 14:01:34 (1 year ago)	Brute-force cPanel Services	Brute-Force
🇨🇳 ThreatBook.io	2025-04-11 23:33:42 (1 year ago)	2025-04-11 07:05:55 /+CSCOE+/logon.html	Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.36

🇳🇱 77.83.39.10

🇸🇪 45.159.12.1

🇳🇱 45.148.10.157

🇷🇺 212.3.155.8

🇺🇸 136.118.174.157

🇻🇳 116.110.219.122

🇰🇷 112.216.129.27

🇮🇩 103.245.17.220

🇫🇮 85.192.31.14

🇧🇬 79.124.56.146

🇩🇪 69.5.169.91

🇨🇳 203.76.241.18

🇮🇶 185.187.78.110

🇷🇺 178.178.222.53

🇵🇭 136.158.37.242

🇰🇷 121.142.87.218

🇨🇳 112.195.135.214

🇮🇳 103.153.105.51

🇫🇷 94.183.188.94