JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 80.78.25.213

80.78.25.213 was found in our database!

This IP was reported 61 times. Confidence of Abuse is 0%: ?

ISP	Materialism s.r.l.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS39287
Hostname(s)	504e19d5.host.njalla.net
Domain Name	materiali.sm
Country	🇸🇪 Sweden
City	Malmo, Skane

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 80.78.25.213

Whois 80.78.25.213

IP Abuse Reports for 80.78.25.213:

This IP address has been reported a total of 61 times from 33 distinct sources. 80.78.25.213 was first reported on April 1st 2025, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-12-11 00:34:23 (6 months ago)	(mod_security) mod_security (id:210350) triggered by 80.78.25.213 (504e19d5.host.njalla.net): 1 in t ... show more (mod_security) mod_security (id:210350) triggered by 80.78.25.213 (504e19d5.host.njalla.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 19:34:18.721298 2025] [security2:error] [pid 3733:tid 3733] [client 80.78.25.213:34068] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|tracdynamics.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "tracdynamics.com"] [uri "/"] [unique_id "aToRiqzycnGrIy5tMYPjTgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 23:49:46 (6 months ago)	(mod_security) mod_security (id:210350) triggered by 80.78.25.213 (504e19d5.host.njalla.net): 1 in t ... show more (mod_security) mod_security (id:210350) triggered by 80.78.25.213 (504e19d5.host.njalla.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 18:49:40.241736 2025] [security2:error] [pid 25954:tid 25976] [client 80.78.25.213:51476] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|siraceservices.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "siraceservices.com"] [uri "/"] [unique_id "aToHFBm_lPOYHY1OewxK2wAAAFQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 19:58:48 (6 months ago)	(mod_security) mod_security (id:210350) triggered by 80.78.25.213 (504e19d5.host.njalla.net): 1 in t ... show more (mod_security) mod_security (id:210350) triggered by 80.78.25.213 (504e19d5.host.njalla.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 14:58:42.918038 2025] [security2:error] [pid 13938:tid 14023] [client 80.78.25.213:39866] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|deathbyaudiostore.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "deathbyaudiostore.com"] [uri "/"] [unique_id "aTnQ8mw9lXk3gHiNvVOjhQAAAM4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 19:17:09 (6 months ago)	(mod_security) mod_security (id:210350) triggered by 80.78.25.213 (504e19d5.host.njalla.net): 1 in t ... show more (mod_security) mod_security (id:210350) triggered by 80.78.25.213 (504e19d5.host.njalla.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 14:17:03.778317 2025] [security2:error] [pid 22056:tid 22056] [client 80.78.25.213:40120] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|blacktieokc.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "blacktieokc.com"] [uri "/"] [unique_id "aTnHL8mx2ESUtOX5p388aQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 13:06:05 (6 months ago)	(mod_security) mod_security (id:210350) triggered by 80.78.25.213 (504e19d5.host.njalla.net): 1 in t ... show more (mod_security) mod_security (id:210350) triggered by 80.78.25.213 (504e19d5.host.njalla.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 08:05:57.281747 2025] [security2:error] [pid 24023:tid 24023] [client 80.78.25.213:47936] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|automotiveforms.net\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "automotiveforms.net"] [uri "/"] [unique_id "aTgetax21N-MQph_UVrzzgAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 04:31:46 (6 months ago)	(mod_security) mod_security (id:210350) triggered by 80.78.25.213 (504e19d5.host.njalla.net): 1 in t ... show more (mod_security) mod_security (id:210350) triggered by 80.78.25.213 (504e19d5.host.njalla.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 23:31:38.989404 2025] [security2:error] [pid 29503:tid 29508] [client 80.78.25.213:45264] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|seracon.com.ec\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "seracon.com.ec"] [uri "/"] [unique_id "aTemKs_KRQOX4Q8UNZEh1gAAAME"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 IROK	2025-12-09 04:26:43 (6 months ago)	Malware/WebShell Scan blocked by ModSecurity ...	Hacking
🇳🇱 Savvii	2025-11-05 14:55:28 (7 months ago)	26 attempts against mh-misbehave-ban on ec102967	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Savvii	2025-11-05 07:07:39 (7 months ago)	20 attempts against mh-misbehave-ban on bud	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Savvii	2025-11-05 00:14:30 (7 months ago)	20 attempts against mh-misbehave-ban on taro	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Savvii	2025-11-04 09:04:46 (7 months ago)	20 attempts against mh_ha-misbehave-ban on sonic	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Savvii	2025-11-04 08:08:21 (7 months ago)	20 attempts against mh-misbehave-ban on hydra	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Savvii	2025-11-04 05:09:59 (7 months ago)	20 attempts against mh_ha-misbehave-ban on iron	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Savvii	2025-11-04 04:46:03 (7 months ago)	20 attempts against mh-misbehave-ban on iron	Brute-Force Bad Web Bot Web App Attack
🇫🇷 centurion	2025-11-03 03:28:59 (7 months ago)	Blocked by UFW on dc00 [443/tcp] Source port: 54418 TTL: 54 Packet length: 60 TOS: 0x00 This report ... show more Blocked by UFW on dc00 [443/tcp] Source port: 54418 TTL: 54 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack

Showing 1 to 15 of 61 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇱 194.180.49.104

🇺🇸 192.119.33.110

🇮🇶 185.166.25.150

🇺🇸 162.216.149.182

🇺🇸 66.132.186.181

🇨🇳 61.240.156.16

🇳🇱 35.204.200.243

🇵🇭 27.49.238.44

🇳🇱 5.255.102.83

🇬🇧 193.8.186.31

🇧🇷 179.175.242.208

🇨🇳 121.57.226.179

🇮🇹 95.248.47.56

🇺🇸 65.111.10.157

🇺🇸 34.198.240.149

🇳🇱 213.127.244.74

🇺🇸 205.210.31.97

🇳🇱 176.65.139.242

🇺🇸 162.217.160.238

🇸🇬 157.245.204.205