JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.70.246.30

212.70.246.30 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 11%: ?

11%

ISP	Net Bull S.r.l.
Usage Type	Fixed Line ISP
ASN	AS16141
Domain Name	netbull.it
Country	🇮🇹 Italy
City	Turin, Piedmont

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.70.246.30

Whois 212.70.246.30

IP Abuse Reports for 212.70.246.30:

This IP address has been reported a total of 5 times from 3 distinct sources. 212.70.246.30 was first reported on January 9th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-06-14 23:41:48 (1 day ago)	WAF PoW failure, possible botnet behavior, IP mismatch, POST request made by 212.70.246.30 was not I ... show more WAF PoW failure, possible botnet behavior, IP mismatch, POST request made by 212.70.246.30 was not IP who made PoW GET request earlier show less	DDoS Attack Exploited Host
🇺🇸 kosada.com	2026-05-01 07:44:19 (1 month ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇮🇩 hermawan	2026-03-16 09:15:17 (2 months ago)	2026-03-15T20:43:11.504203+07:00 staklim-malang kernel: Ipt-PREROUCOBA:DROP IN=eth0 OUT= MAC=c4:37:7 ... show more 2026-03-15T20:43:11.504203+07:00 staklim-malang kernel: Ipt-PREROUCOBA:DROP IN=eth0 OUT= MAC=c4:37:72:f5:bf:f3:90:e2:ba:b3:7b:52:08:00 SRC=212.70.246.30 DST=103.166.156.58 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=18449 DF PROTO=TCP SPT=35579 DPT=443 WINDOW=43080 RES=0x00 SYN URGP=0 ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-02-07 06:42:57 (4 months ago)	[Sat Feb 07 13:42:26.353185 2026] [security2:error] [pid 484271:tid 140537282647744] [client 212.70. ... show more [Sat Feb 07 13:42:26.353185 2026] [security2:error] [pid 484271:tid 140537282647744] [client 212.70.246.30:38147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".webp" at REQUEST_LINE. [file "/etc/modsecurity/coreruleset-4.22.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "466"] [id "440010"] [msg "BAD REQUEST Bro, 206 Partial Content"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: identity found within REQUEST_LINE: GET /plant-t.webp HTTP/2.0 request_line = GET /plant-t.webp HTTP/2.0 Request URI RAW = /plant-t.webp Request Basename = plant-t.webp"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/plant-t.webp"] [unique_id "aYbe0jgoUwZWWUN5aC8pVQACFgk"], referer https://staklim-jatim.bmkg.go.id/index.php/informasi-iklim/infografis-iklim/infografis-bulanan/infografis-bulanan-buletin [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[484308] [vcdyNXbiN4I] [aYbe0jgoUwZWWUN5aC8pVQACFgk] keep_ ... show less	Hacking Web App Attack
🇮🇩 hermawan	2026-01-09 22:14:49 (5 months ago)	[Sat Jan 10 05:14:48.245860 2026] [security2:error] [pid 292658:tid 139884137273024] [client 212.70. ... show more [Sat Jan 10 05:14:48.245860 2026] [security2:error] [pid 292658:tid 139884137273024] [client 212.70.246.30:37499] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".webp" at REQUEST_LINE. [file "/etc/modsecurity/coreruleset-4.22.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "463"] [id "440010"] [msg "BAD REQUEST Bro, 206 Partial Content"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: identity found within REQUEST_LINE: GET /arrow-up.webp HTTP/2.0 request_line = GET /arrow-up.webp HTTP/2.0 Request URI RAW = /arrow-up.webp Request Basename = arrow-up.webp"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/arrow-up.webp"] [unique_id "aWF92E0XxCW54O-24Y5DLAAAEAM"], referer https://staklim-jatim.bmkg.go.id/index.php/profil/meteorologi/list-all-categories [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[292662] [+Gx22jvQjWA] [aWF92E0XxCW54O-24Y5DLAAAEAM] keep_alive=[1] [2026-01-10 05:14:48.2458 ... show less	Hacking Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.159.80.91

🇺🇸 204.48.21.41

🇺🇸 195.184.76.242

🇺🇸 195.184.76.140

🇺🇸 172.253.249.53

🇺🇸 135.119.27.130

🇨🇳 117.132.5.139

🇮🇹 91.80.157.107

🇮🇷 79.127.66.250

🇧🇪 34.38.24.246

🇨🇳 218.25.89.208

🇵🇹 176.61.149.165

🇺🇸 172.253.15.213

🇺🇸 172.200.228.35

🇻🇳 160.191.87.178

🇨🇿 159.26.111.4

🇺🇸 147.185.132.66

🇺🇸 104.218.199.151

🇫🇷 91.238.181.10

🇫🇷 91.231.89.221