JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.165.84.43

82.165.84.43 was found in our database!

This IP was reported 194 times. Confidence of Abuse is 0%: ?

ISP	IONOS SE
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8560
Hostname(s)	infongp-de14.clienthosting.eu
Domain Name	ionos.com
Country	🇩🇪 Germany
City	Karlsruhe, Baden-Wurttemberg

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.165.84.43

Whois 82.165.84.43

IP Abuse Reports for 82.165.84.43:

This IP address has been reported a total of 194 times from 74 distinct sources. 82.165.84.43 was first reported on November 7th 2022, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 technojoe99	2025-08-19 09:07:05 (10 months ago)	Exploit scan from 82.165.84.43. HEAD /new.zip HTTP/1.1.	Web App Attack
Anonymous	2025-08-18 14:08:39 (10 months ago)	82.165.84.43 - - [18/Aug/2025:16:08:39 +0200] "HEAD /docs.zip HTTP/1.1" 403 124 "-" "-" ...	Web App Attack
🇧🇪 Ivo Vynckier	2025-08-16 16:53:00 (10 months ago)	82.165.84.43 - - [15/Aug/2025:21:26:05 +0200] "HEAD /new.zip HTTP/2.0" 404 0 "-" "-" 82.165.84.43 - ... show more 82.165.84.43 - - [15/Aug/2025:21:26:05 +0200] "HEAD /new.zip HTTP/2.0" 404 0 "-" "-" 82.165.84.43 - - [15/Aug/2025:21:26:05 +0200] "HEAD /data.zip HTTP/2.0" 404 0 "-" "-" 82.165.84.43 - - [15/Aug/2025:21:26:05 +0200] "HEAD /temp.zip HTTP/2.0" 404 0 "-" "-" 82.165.84.43 - - [15/Aug/2025:21:26:06 +0200] "HEAD /old.zip HTTP/2.0" 404 0 "-" "-" show less	Web App Attack
🇩🇪 FeG Deutschland	2025-07-31 06:49:15 (10 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 24	Exploited Host Web App Attack
🇳🇿 Tripwire	2025-07-29 20:47:55 (10 months ago)	Scanning for backup files - /archive.zip	Web App Attack
🇩🇪 FeG Deutschland	2025-07-23 16:37:20 (11 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 24	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2025-07-19 13:10:19 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 ... show more (mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 19 09:10:14.424768 2025] [security2:error] [pid 5429:tid 5429] [client 82.165.84.43:47026] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hotdamnsam.com"] [uri "/wp-config.php_orig"] [unique_id "aHuZNi6UcABfARV2o5xlUQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-19 04:15:50 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 ... show more (mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 19 00:15:44.613199 2025] [security2:error] [pid 3210:tid 3210] [client 82.165.84.43:38942] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.southshorestreetrods.com"] [uri "/wp-config.php_orig"] [unique_id "aHsb8N9tFn3XVyZs3QLfeQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-18 12:23:31 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 ... show more (mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 18 08:23:28.034848 2025] [security2:error] [pid 27338:tid 27338] [client 82.165.84.43:56704] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kingfish.bet"] [uri "/wp-config.php1"] [unique_id "aHo8wPb8gLVvsWJyivL43QAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-16 08:02:20 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 ... show more (mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 16 04:02:16.507036 2025] [security2:error] [pid 30891:tid 30891] [client 82.165.84.43:38454] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "xn--lyngr-yua.net"] [uri "/wp-config.php1"] [unique_id "aHdciJPmzseOBA4sEp9f6gAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-16 05:54:28 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 ... show more (mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 16 01:54:24.747402 2025] [security2:error] [pid 16764:tid 16817] [client 82.165.84.43:58420] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "poeticdialogues.com"] [uri "/wp-config.php1"] [unique_id "aHc-kNkM-PJ163daDqHOsAAAAE4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-15 09:23:28 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 ... show more (mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 15 05:23:23.337317 2025] [security2:error] [pid 28682:tid 28682] [client 82.165.84.43:47904] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "femalestripperslaquinta.com"] [uri "/wp-config.php1"] [unique_id "aHYeCysiLNW9VHi-09K6QQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-07-15 03:59:04 (11 months ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
🇩🇪 XICTRON	2025-07-14 08:20:03 (11 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2025-07-13 19:06:58 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 ... show more (mod_security) mod_security (id:210492) triggered by 82.165.84.43 (infongp-de14.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 13 15:06:50.691348 2025] [security2:error] [pid 5704:tid 5704] [client 82.165.84.43:35370] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.proprocessor.com"] [uri "/deerprocessingequipment.htm/wp-config.php.old"] [unique_id "aHQDyh7xiDH-n-GwvqiAyAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 194 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.88.98.108

🇺🇸 191.102.187.251

🇮🇹 172.253.12.217

🇻🇳 171.251.235.224

🇩🇪 51.89.39.44

🇳🇱 45.148.10.147

🇺🇸 205.210.31.71

🇳🇱 195.178.110.30

🇹🇭 182.52.236.235

🇺🇸 172.172.196.177

🇨🇳 123.145.27.184

🇳🇬 102.89.34.73

🇵🇱 87.251.64.157

🇱🇹 62.60.130.219

🇺🇸 52.224.241.44

🇺🇸 47.77.182.54

🇳🇱 45.148.10.141

🇺🇸 20.169.49.41

🇬🇧 185.247.137.41

🇫🇷 185.177.72.49