JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.24.249.105

82.24.249.105 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 0%: ?

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51765
Domain Name	netutils.io
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.24.249.105

Whois 82.24.249.105

IP Abuse Reports for 82.24.249.105:

This IP address has been reported a total of 3 times from 2 distinct sources. 82.24.249.105 was first reported on December 27th 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-17 00:14:46 (5 months ago)	(mod_security) mod_security (id:212620) triggered by 82.24.249.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:212620) triggered by 82.24.249.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 19:13:58.797506 2026] [security2:error] [pid 25990:tid 25990] [client 82.24.249.105:57977] ModSecurity: Access denied with code 403 (phase 2). Pattern match "<script\\\\b" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "65"] [id "212620"] [rev "4"] [msg "COMODO WAF: Cross-site Scripting (XSS) Attack\|\|ftp.nbcnewsradio.com\|F\|2"] [data "Matched Data: <script found within REQUEST_URI: /q9ds67ha\\x22><script>alert(document.domain)</script>/..cfide/wizards/common/_authenticatewizarduser.cfm"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "ftp.nbcnewsradio.com"] [uri "/q9dS67ha\\"><script>alert(document.domain)</script>/..CFIDE/wizards/common/_authenticatewizarduser.cfm"] [unique_id "aWrURiM_fZb0HdpWUfR7lwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 19:38:31 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 82.24.249.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 82.24.249.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 14:38:23.572402 2025] [security2:error] [pid 29977:tid 29999] [client 82.24.249.105:46715] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.kettlehill.net\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.kettlehill.net"] [uri "/404.php.bak"] [unique_id "aVLYrzWelXmsIDHwJWbe-QAAAZQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-27 03:30:02 (5 months ago)	\| Shellshock attack detected	Hacking SQL Injection Web App Attack

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇬 102.91.72.35

🇳🇱 91.92.40.238

🇳🇱 89.21.67.169

🇺🇸 57.151.105.154

🇺🇸 43.135.134.180

🇺🇸 23.239.11.64

🇧🇷 20.226.81.252

🇳🇱 5.255.104.130

🇧🇪 198.235.24.206

🇺🇸 172.253.0.29

🇺🇸 147.185.132.252

🇨🇦 85.217.149.12

🇺🇿 84.54.70.101

🇨🇳 61.240.17.66

🇷🇺 46.39.254.221

🇺🇸 23.234.104.44

🇰🇷 221.156.126.1

🇹🇼 218.32.102.30

🇺🇸 161.35.129.204

🇺🇸 147.185.132.112