JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 80.76.49.49

80.76.49.49 was found in our database!

This IP was reported 365 times. Confidence of Abuse is 0%: ?

ISP	Virtuo Networks France SAS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS399486
Domain Name	virtuo.host
Country	🇺🇸 United States of America
City	Edison, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 80.76.49.49

Whois 80.76.49.49

IP Abuse Reports for 80.76.49.49:

This IP address has been reported a total of 365 times from 230 distinct sources. 80.76.49.49 was first reported on April 29th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-20 17:27:53 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 20 12:27:46.390676 2026] [security2:error] [pid 3696:tid 3696] [client 80.76.49.49:51293] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|mathewsdental.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "mathewsdental.com"] [uri "/index.php"] [unique_id "aW-7EgfaXXV9xX4Edy4XpQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 conseilgouz	2026-01-20 03:24:37 (4 months ago)	vee-12 : Block return, carriage return, ... characters=>/component/weblinks/weblink/2-retromobile?It ... show more vee-12 : Block return, carriage return, ... characters=>/component/weblinks/weblink/2-retromobile?Itemid=1029&Itemid=%27&catid=13&task=weblink.g...(') show less	Hacking
🇲🇾 Rizzy	2026-01-20 01:55:25 (4 months ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-01-20 00:33:31 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 19 19:33:26.535318 2026] [security2:error] [pid 17698:tid 17698] [client 80.76.49.49:55386] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.oualierealty.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.oualierealty.com"] [uri "/index.php"] [unique_id "aW7NVkfssP40BYTw7NFgbwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 fortypoundhead	2026-01-20 00:03:20 (4 months ago)	SQL Injection Attempt	SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2026-01-19 19:46:13 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 19 14:46:05.054739 2026] [security2:error] [pid 9581:tid 9581] [client 80.76.49.49:62900] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.krislajeskiedesign.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.krislajeskiedesign.com"] [uri "/Artist.asp"] [unique_id "aW6J_UxlaXLtBkMI_AlWTAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-19 19:08:29 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 19 14:08:25.260080 2026] [security2:error] [pid 4460:tid 4460] [client 80.76.49.49:64723] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.marveldirectory.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.marveldirectory.com"] [uri "/xoops/modules/wordbook/entry.php"] [unique_id "aW6BKbtOYLyMzbTVP1UyqgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 3202931de	2026-01-19 18:30:07 (4 months ago)	Tamper SQL Requests by script code injection	SQL Injection Web App Attack
🇫🇷 COMAITE	2026-01-19 18:09:23 (4 months ago)	SQL injection attempt from 80.76.49.49.	Web App Attack
🇺🇸 TPI-Abuse	2026-01-19 18:03:55 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 19 13:03:49.864740 2026] [security2:error] [pid 398337:tid 398337] [client 80.76.49.49:52857] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.mooseled.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.mooseled.com"] [uri "/index.php"] [unique_id "aW5yBdL5W3sftbUZWhif3QAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-01-19 17:50:58 (4 months ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2026-01-19 16:37:36 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 19 11:37:32.533474 2026] [security2:error] [pid 32523:tid 32523] [client 80.76.49.49:51844] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.naturephotographyadventures.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.naturephotographyadventures.com"] [uri "/machform/embed.php"] [unique_id "aW5dzFHQxr5SD7-KSUGiAAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-19 16:11:13 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 19 11:11:07.337175 2026] [security2:error] [pid 3009193:tid 3009199] [client 80.76.49.49:51376] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.peluqueriabuhos.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.peluqueriabuhos.com"] [uri "/index.php/component/mailto/"] [unique_id "aW5Xm-B6atobtAaUpser1wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-19 15:54:02 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 19 10:53:54.714082 2026] [security2:error] [pid 8123:tid 8123] [client 80.76.49.49:49224] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|panierduvillage.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "panierduvillage.com"] [uri "/index.php"] [unique_id "aW5TkiWsVJAlqAaf_J0LjwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-19 15:07:23 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210350) triggered by 80.76.49.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 19 10:07:18.085604 2026] [security2:error] [pid 25728:tid 25728] [client 80.76.49.49:58370] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.cybersoftware.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.cybersoftware.org"] [uri "/"] [unique_id "aW5IpuxcsQctwHscJvj-1gAAAAY"], referer: http://afs.pure-hosting.com/afs/login.php?autologin=1 show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 365 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇹 81.30.98.44

🇦🇪 20.203.42.204

🇷🇴 193.32.162.125

🇰🇿 185.97.113.135

🇦🇷 181.47.9.103

🇧🇷 170.80.34.66

🇩🇪 167.235.199.140

🇺🇸 147.185.132.235

🇰🇷 125.135.9.33

🇺🇸 103.143.10.140

🇨🇳 1.192.189.251

🇨🇳 202.46.62.27

🇪🇬 156.199.90.148

🇺🇸 75.111.100.171

🇺🇸 64.62.197.177

🇫🇮 45.154.244.2

🇬🇧 34.39.47.141

🇩🇪 213.209.159.142

🇲🇽 187.141.71.166

🇮🇳 103.180.212.135