JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.78.184.206

149.78.184.206 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 0%: ?

ISP	QNAX LTDA
Usage Type	Data Center/Web Hosting/Transit
ASN	AS268581
Domain Name	ufinet.com
Country	🇧🇷 Brazil
City	Barueri, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.78.184.206

Whois 149.78.184.206

IP Abuse Reports for 149.78.184.206:

This IP address has been reported a total of 19 times from 14 distinct sources. 149.78.184.206 was first reported on August 17th 2023, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 penjaga BRIN	2025-07-22 11:12:33 (10 months ago)	apache-alfa-113	Web App Attack
Anonymous	2025-07-16 17:05:21 (10 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-07-12 12:03:23 (11 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 AF	2025-05-08 02:47:39 (1 year ago)	Activity: Malicious scanning activity detected from IP 149.78.184.206 Action taken: Blocked by host ... show more Activity: Malicious scanning activity detected from IP 149.78.184.206 Action taken: Blocked by host firewall. Response: 400 Timestamp: 2025-05-08T02:47:40Z Protocol: HTTP/1.1 (GET) Endpoint: / HTTP Referrer: http://<host_IP>:80 UA: WanScannerBot/1.0 HTTP_X_Forwarded_For: None show less	Exploited Host Web App Attack
🇺🇸 AF	2025-05-08 02:47:39 (1 year ago)	Activity: Malicious scanning activity detected from IP 149.78.184.206 Action taken: Blocked by host ... show more Activity: Malicious scanning activity detected from IP 149.78.184.206 Action taken: Blocked by host firewall. Response: 400 Timestamp: 2025-05-08T02:47:40Z Protocol: HTTP/1.1 (GET) Endpoint: / HTTP Referrer: http://<host_IP>:80 UA: WanScannerBot/1.0 HTTP_X_Forwarded_For: None show less	Exploited Host Web App Attack
🇦🇹 urnilxfgbez	2025-05-06 22:45:00 (1 year ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 Admins@FBN	2025-05-06 01:29:20 (1 year ago)	FW-PortScan: Traffic Blocked srcport=58944 dstport=22	Port Scan Hacking SSH
Anonymous	2025-05-05 22:29:26 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-03-04 12:57:48 (1 year ago)	Aggressive web scan	Web App Attack
🇩🇪 marzzzello	2025-01-23 02:46:30 (1 year ago)	Ports: 3x 54918	Port Scan
🇩🇪 marzzzello	2025-01-21 00:11:28 (1 year ago)	Ports: 3x 4459	Port Scan
🇧🇷 sawyerwill	2024-07-30 13:30:00 (1 year ago)	unauthorized connection attempt	Hacking SQL Injection Brute-Force Exploited Host Web App Attack
🇫🇷 COMAITE	2024-05-26 03:48:36 (2 years ago)	Suspicious URL access.	Web App Attack
🇬🇧 CrystalMaker	2024-05-18 21:30:48 (2 years ago)	Vulnerability scan - GET /.env	Hacking
🇺🇸 TPI-Abuse	2024-05-18 21:30:36 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 149.78.184.206 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 149.78.184.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 18 17:30:30.338055 2024] [security2:error] [pid 2459] [client 149.78.184.206:37306] [client 149.78.184.206] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "127.0.0.1"] [uri "/.env"] [unique_id "Zkkd9j6UPFgd3Xd4WEWywAAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 212.64.19.167

🇧🇴 200.105.141.172

🇺🇸 172.93.106.153

🇫🇮 147.185.133.50

🇳🇵 103.235.199.20

🇪🇸 91.146.99.41

🇺🇦 37.57.114.31

🇨🇳 183.236.130.182

🇩🇪 164.90.167.85

🇩🇪 130.12.182.140

🇨🇳 101.126.147.62

🇨🇦 99.234.145.99

🇺🇸 50.6.228.32

🇧🇷 45.205.1.246

🇺🇸 45.33.105.76

🇭🇰 43.155.72.127

🇺🇸 216.73.161.157

🇳🇱 172.94.9.120

🇺🇸 135.119.27.130

🇺🇿 92.63.206.8