JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 170.80.48.16

170.80.48.16 was found in our database!

This IP was reported 356 times. Confidence of Abuse is 100%: ?

100%

ISP	Ponte Digital
Usage Type	Fixed Line ISP
ASN	AS266374
Domain Name	pontedigital.com.br
Country	🇧🇷 Brazil
City	Cabo de Santo Agostinho, Pernambuco

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 170.80.48.16

Whois 170.80.48.16

IP Abuse Reports for 170.80.48.16:

This IP address has been reported a total of 356 times from 203 distinct sources. 170.80.48.16 was first reported on November 27th 2025, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-15 09:52:16 (5 hours ago)	Reported from Nginx log analysis 11. Log: 170.80.48.16 - - [15/Jun/2026:xx:xx:xx 0200] "GET /robots ... show more Reported from Nginx log analysis 11. Log: 170.80.48.16 - - [15/Jun/2026:xx:xx:xx 0200] "GET /robots.txt HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (compatible; FreePBX-Scanner/1.0)" "-" "BR Brazil Jaboat\xC3\xA3o dos Guararapes" "AS266374" "Ponte Digital" \| 170.80.48.16 - - [15/Jun/2026:xx:xx:xx 0200] "GET /robots.txt HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (compatible; FreePBX-Scanner/1.0)" "-" "BR Brazil Jaboat\xC3\xA3o dos Guararapes" "AS266374" "Ponte Digital" show less	Port Scan Brute-Force SSH
🇩🇪 Viveronese	2026-06-15 06:06:13 (9 hours ago)	HTTP vulnerability scanning	Web App Attack
🇩🇪 Phenix Info	2026-06-15 06:01:42 (9 hours ago)	SmallGuard.fr/Prestashop Massive 403	Web App Attack
🇵🇱 rafamiga	2026-06-15 05:55:08 (9 hours ago)	fail2ban/ufw - Port scan detected. ...	Port Scan
🇺🇸 sefinek.net	2026-06-15 05:48:02 (9 hours ago)	Blocked by UFW on NY01 [80/tcp] \| SPT: 61001 \| TTL: 246 \| LEN: 44 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on NY01 [80/tcp] \| SPT: 61001 \| TTL: 246 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 Andrew	2026-06-15 05:46:53 (9 hours ago)	Blocked by UFW (TCP on port 80). Source port: 61001 TTL: 238 Packet length: 44 TOS: 0x00 This repor ... show more Blocked by UFW (TCP on port 80). Source port: 61001 TTL: 238 Packet length: 44 TOS: 0x00 This report (for 170.80.48.16) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇲🇹 neilcaruana	2026-06-15 05:45:11 (9 hours ago)	Sentinel detected an attack on port [80]	Hacking
🇺🇸 Starburst SysOp Team	2026-06-15 02:25:08 (13 hours ago)	Request Missing a Host Header. Operator EQ matched 0 at REQUEST_HEADERS. (920280-iad5-2)	Hacking
🇺🇸 cwytech	2026-06-15 02:24:19 (13 hours ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/wordpress-geofence-sus.	Bad Web Bot Web App Attack
🇫🇷 bellovacorp	2026-06-15 02:24:10 (13 hours ago)	GET /admin/config.php	Port Scan Brute-Force
🇫🇮 6kilowatti	2026-06-15 02:23:50 (13 hours ago)	170.80.48.16 - - [15/Jun/2026:05:23:49 +0300] "GET /admin/config.php HTTP/1.0" 404 153 "-" "xfa1" .. ... show more 170.80.48.16 - - [15/Jun/2026:05:23:49 +0300] "GET /admin/config.php HTTP/1.0" 404 153 "-" "xfa1" ... show less	Web App Attack
🇺🇸 Axel	2026-06-15 02:22:44 (13 hours ago)	Blocked by UFW on MVI [443/tcp] \| SPT: 61001 \| TTL: 237 \| LEN: 44 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [443/tcp] \| SPT: 61001 \| TTL: 237 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 ne1for23	2026-06-15 01:39:00 (13 hours ago)	Attempt to access invalid virtual host name (-). Likely attempt to exploit misconfiguration or acce ... show more Attempt to access invalid virtual host name (-). Likely attempt to exploit misconfiguration or access private resources. 170.80.48.16 - - [15/Jun/2026:01:38:59 +0000] "GET /admin/config.php HTTP/1.0" 403 153 "-" "xfa1" "-" show less	Hacking
🇳🇱 Yachiyo Runami	2026-06-15 01:06:37 (14 hours ago)	Port Scan on Honeypot \| Ports: 80/HTTP \| Proto: TCP(1) \| Flags: all SYN \| TTL: 232 \| Len: 44B \| Win: ... show more Port Scan on Honeypot \| Ports: 80/HTTP \| Proto: TCP(1) \| Flags: all SYN \| TTL: 232 \| Len: 44B \| Win: 1024(1) \| F2B/ufw-honeypot@2026-06-15T01:06:37Z show less	Port Scan Hacking
🇺🇸 itsnixk	2026-06-14 23:40:26 (15 hours ago)	(mod_security) mod_security (id:920280) triggered by 170.80.48.16 (BR/Brazil/-): 1 in the last 3600 ... show more (mod_security) mod_security (id:920280) triggered by 170.80.48.16 (BR/Brazil/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sun Jun 14 19:40:24.464618 2026] [security2:error] [pid 359028:tid 359170] [client 170.80.48.16:61001] ModSecurity: Access denied with code 406 (phase 1). Operator EQ matched 0 at REQUEST_HEADERS. [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "566"] [id "920280"] [msg "Request Missing a Host Header"] [severity "CRITICAL"] [ver "OWASP_CRS/4.26.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL-ENFORCEMENT"] [tag "capec/1000/210/272"] [redacted] [uri "/admin/config.php"] [unique_id "ai876HA5rsQYG22YZ8gWGwAAAHs"] show less	Port Scan

Showing 1 to 15 of 356 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.203.224.88

🇺🇸 136.41.5.20

🇨🇳 120.77.248.58

🇨🇦 34.118.138.63

🇸🇪 188.151.60.103

🇦🇺 170.64.198.23

🇹🇷 149.102.229.198

🇹🇭 147.50.231.135

🇩🇪 65.111.26.140

🇩🇪 62.55.137.19

🇩🇪 47.254.150.185

🇺🇸 47.251.177.200

🇽🇰 46.99.188.194

🇩🇪 45.135.194.113

🇺🇸 45.42.88.54

🇧🇷 43.164.195.69

🇺🇸 34.125.30.243

🇺🇸 2604:a880:400:d1:0:4:9636:e001

🇳🇱 185.242.226.17

🇮🇩 114.10.47.235