JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.165.80.52

82.165.80.52 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 27%: ?

27%

ISP	IONOS SE
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8560
Hostname(s)	infong609.clienthosting.eu
Domain Name	ionos.com
Country	🇩🇪 Germany
City	Karlsruhe, Baden-Wurttemberg

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.165.80.52

Whois 82.165.80.52

IP Abuse Reports for 82.165.80.52:

This IP address has been reported a total of 18 times from 11 distinct sources. 82.165.80.52 was first reported on December 29th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-13 17:20:42 (4 days ago)	Web attack blocked by Wordfence on kunstkringhenrijonas.nl (2 hits). Reported by CRMON.	Web App Attack
🇩🇪 FeG Deutschland	2026-06-13 09:13:43 (5 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 01:06:42 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 82.165.80.52 (infong609.clienthosting.eu): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 82.165.80.52 (infong609.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 21:06:34.390805 2026] [security2:error] [pid 6958:tid 6958] [client 82.165.80.52:54002] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|amywoodruff.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "amywoodruff.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiytGtc07zsdw7HoUXIvvQAAAAQ"], referer: https://amywoodruff.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇲🇹 Malta	2026-06-05 00:17:06 (1 week ago)	82.165.80.52 - - [05/Jun/2026:02:17:06 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Ubuntu; ... show more 82.165.80.52 - - [05/Jun/2026:02:17:06 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇩🇪 FeG Deutschland	2026-05-24 06:18:26 (3 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇫🇷 solution.it	2026-02-16 14:57:03 (4 months ago)	[Mon Feb 16 15:57:03.188084 2026] [php7:error] [pid 511638:tid 511638] [client 82.165.80.52:44308] s ... show more [Mon Feb 16 15:57:03.188084 2026] [php7:error] [pid 511638:tid 511638] [client 82.165.80.52:44308] script '/var/www/html/blog.solution.it/wp-login.php' not found or unable to stat show less	Web App Attack
🇵🇱 bmino.pl	2026-02-16 08:55:26 (4 months ago)	Autoban IP(2): unknown - Hostname: unknown - City: unknown - Region: unknown - Country: unknown - Lo ... show more Autoban IP(2): unknown - Hostname: unknown - City: unknown - Region: unknown - Country: unknown - Location: unknown - Organization: unknown - failed attempts. show less	Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-02-01 14:45:38 (4 months ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [wa02]	Bad Web Bot Web App Attack
🇺🇸 [email protected]	2026-02-01 01:01:00 (4 months ago)	Fail2Ban jail apache-json-scanners detected activity on 2026-02-01T01:01:00Z	Brute-Force
🇺🇸 [email protected]	2026-02-01 00:45:31 (4 months ago)	Fail2Ban jail apache-json-scanners detected activity on 2026-02-01T00:45:31Z	Brute-Force
🇺🇸 [email protected]	2026-02-01 00:30:07 (4 months ago)	Fail2Ban jail apache-json-scanners detected activity on 2026-02-01T00:30:07Z	Brute-Force
🇺🇸 [email protected]	2026-02-01 00:15:05 (4 months ago)	Fail2Ban jail apache-json-scanners detected activity on 2026-02-01T00:15:05Z	Brute-Force
🇺🇸 [email protected]	2026-01-31 23:59:58 (4 months ago)	Fail2Ban jail apache-json-scanners detected activity on 2026-01-31T23:59:58Z	Brute-Force
🇳🇱 BlueWire Hosting	2026-01-31 12:50:43 (4 months ago)	Probing websites for vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-01-24 22:17:12 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 82.165.80.52 (infong609.clienthosting.eu): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 82.165.80.52 (infong609.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 24 17:17:07.577265 2026] [security2:error] [pid 1247:tid 1247] [client 82.165.80.52:50686] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|westernmassaa.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "westernmassaa.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aXVE43WgdrgoTUa281TX8QAAABU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 200.153.86.250

🇬🇧 193.163.125.69

🇺🇸 192.185.4.147

🇦🇪 5.32.88.70

🇮🇳 103.206.97.61

🇫🇷 91.231.89.217

🇳🇱 88.210.63.126

🇸🇬 47.128.125.86

🇺🇸 20.65.193.174

🇯🇵 8.216.10.242

🇯🇵 133.18.180.27

🇺🇸 47.251.104.135

🇸🇬 43.160.251.13

🇿🇦 41.24.73.82

🇮🇳 20.244.95.134

🇺🇸 20.65.154.83

🇮🇹 4.232.80.255

🇺🇸 208.84.100.196

🇺🇸 193.3.53.6

🇩🇪 167.94.146.61