JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 178.249.211.82

178.249.211.82 was found in our database!

This IP was reported 52 times. Confidence of Abuse is 28%: ?

28%

ISP	Hostuj to s.r.o.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-178-249-211-82.datapacket.com
Domain Name	hostuj.to
Country	🇮🇹 Italy
City	Milan, Lombardy

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 178.249.211.82

Whois 178.249.211.82

IP Abuse Reports for 178.249.211.82:

This IP address has been reported a total of 52 times from 36 distinct sources. 178.249.211.82 was first reported on December 15th 2023, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-01 14:26:29 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇮🇪 hollenal	2026-05-26 09:45:01 (2 weeks ago)	Failed to log in. User: admin. Source IP: 178.249.211.82	Brute-Force Web App Attack
🇨🇭 backslash	2026-05-18 01:42:00 (4 weeks ago)	block ruleset Badbot using very old user-agents 5CF3CDB778C7D82564405B86B9242E612F378C68	Bad Web Bot
🇬🇧 consul.to	2026-05-03 17:10:44 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇿🇦 Tokolosh Hunters	2026-04-28 20:17:21 (1 month ago)	AutoBlockWindow-Known bad useragent query-2026-04-28 20:17:20	Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-28 11:13:31 (1 month ago)	(mod_security) mod_security (id:210831) triggered by 178.249.211.82 (unn-178-249-211-82.datapacket.c ... show more (mod_security) mod_security (id:210831) triggered by 178.249.211.82 (unn-178-249-211-82.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 07:13:25.298234 2026] [security2:error] [pid 26446:tid 26517] [client 178.249.211.82:49578] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.aapm.info\|F\|4"] [data "grub-client"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.aapm.info"] [uri "/iapm-articled4fa.html"] [unique_id "afCWVbnNLbxGCmYJDnt1KwAAAYs"] show less	Brute-Force Bad Web Bot Web App Attack
🇯🇵 HeliJP	2026-04-27 18:45:31 (1 month ago)	2026-04-27T18:29:34Z - Recognized attacks\bad behavior from IP address 178.249.211.82 on port 443\80 ... show more 2026-04-27T18:29:34Z - Recognized attacks\bad behavior from IP address 178.249.211.82 on port 443\80 (3 daily hits): SQL Injection Attack: Common Injection Testing Detected, Request Missing an Accept Header show less	Hacking SQL Injection
🇮🇩 Burayot	2026-04-27 01:01:54 (1 month ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 178.249.211.82 (IT/Italy/unn-178-249 ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 178.249.211.82 (IT/Italy/unn-178-249-211-82.datapacket.com): 1 in the last 3600 secs show less	Web App Attack
🇵🇹 Information Security	2026-04-22 20:52:58 (1 month ago)	Web App Attack	Web App Attack
🇩🇪 FeG Deutschland	2026-04-21 13:38:14 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 28	Exploited Host Web App Attack
🇩🇪 FeG Deutschland	2026-04-18 00:33:43 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 28	Exploited Host Web App Attack
🇩🇪 FeG Deutschland	2026-04-17 11:07:36 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack
🇫🇷 conseilgouz	2026-04-17 10:42:48 (1 month ago)	loe-12 : Block return, carriage return, ... characters=>/kunena/a-lire-avant-de-poster/feed?format=f ... show more loe-12 : Block return, carriage return, ... characters=>/kunena/a-lire-avant-de-poster/feed?format=feed%27&type=rss(') show less	Hacking
🇩🇪 FeG Deutschland	2026-04-13 10:06:04 (2 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 28	Exploited Host Web App Attack
🇬🇧 AvonleaConsulting	2026-04-08 11:38:37 (2 months ago)	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	Bad Web Bot Web App Attack

Showing 1 to 15 of 52 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 2a09:bac1:6500:8::19c:2af

🇰🇷 222.108.100.117

🇳🇱 213.177.179.12

🇬🇧 185.56.45.50

🇮🇳 152.59.46.56

🇺🇸 147.185.132.200

🇷🇴 80.94.92.102

🇮🇩 41.216.177.55

🇨🇦 20.63.33.52

🇮🇷 5.238.111.68

🇷🇴 2.57.121.112

🇲🇽 187.191.48.4

🇺🇸 134.209.69.232

🇳🇱 91.92.40.25

🇺🇸 195.184.76.197

🇺🇸 172.217.107.158

🇺🇸 107.150.109.196

🇺🇸 104.168.54.175

🇹🇷 88.244.88.115

🇮🇱 79.177.139.154