JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.80.249.134

82.80.249.134 was found in our database!

This IP was reported 52 times. Confidence of Abuse is 30%: ?

30%

ISP	BEZEQINT-HOSTING
Usage Type	Fixed Line ISP
ASN	AS8551
Hostname(s)	bzq-82-80-249-134.dcenter.bezeqint.net
Domain Name	bezeqint.net
Country	🇮🇱 Israel
City	Jerusalem, Jerusalem

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.80.249.134

Whois 82.80.249.134

IP Abuse Reports for 82.80.249.134:

This IP address has been reported a total of 52 times from 31 distinct sources. 82.80.249.134 was first reported on October 2nd 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 hbrks	2026-06-24 06:28:04 (4 days ago)	4 attack(s) detected, such as these: {"event":"web_block","ip":"82.80.249.134","host":"intellicis.ar ... show more 4 attack(s) detected, such as these: {"event":"web_block","ip":"82.80.249.134","host":"intellicis.art","request":"GET / HTTP/1.1","user_agent":"","reason":"Status-503","timestamp":"2026-06-24T06:28:04 00:00","logentry":"intellicis.art 82.80.249.134 - - [24/Jun/2026:06:28:04 0000] \"GET / HTTP/1.1\" 503 190 \"-\" \"-\" \"-\""} * Report Details : https://p4u.xyz/GPTQCO6RH7U/1 IP Details *: https://p4u.xyz/GPTQCO6RH7U/2 show less	Web Spam Hacking Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-20 22:23:56 (1 week ago)	(mod_security) mod_security (id:210381) triggered by 82.80.249.134 (bzq-82-80-249-134.dcenter.bezeqi ... show more (mod_security) mod_security (id:210381) triggered by 82.80.249.134 (bzq-82-80-249-134.dcenter.bezeqint.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 18:23:51.153137 2026] [security2:error] [pid 7698:tid 7698] [client 82.80.249.134:59088] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt\|\|www.cultiplant.com\|F\|4"] [data "REQUEST_URI=/uploads/products/CULTIPLANT_Manganese_Sulphate_32%_TDS.pdf"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.cultiplant.com"] [uri "/uploads/products/CULTIPLANT_Manganese_Sulphate_32%_TDS.pdf"] [unique_id "ajcS9yjA4tMjGeCiDcakYgAAAAk"], referer: https://www.cultiplant.com/en/products/trace-elements show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-06-11 19:37:25 (2 weeks ago)	IM360 WAF: PHP code tags in HTTP headers MV:https://scand.lv/ru/shop/:>;;5:F88-<515;8/45BA:0O-<>4C;L ... show more IM360 WAF: PHP code tags in HTTP headers MV:https://scand.lv/ru/shop/:>;;5:F88-<515;8/45BA:0O-<>4C;L=0O-:>;;5:F8O-smart/gulta-city-2-max-280@0A?@>4060-M:A?>78F88-2-A2O78-A-7/ show less	Web App Attack
🇺🇸 ipblock.com	2026-05-31 02:51:00 (4 weeks ago)	IPBlock protected site ID [4678-sl]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-05-20 23:06:21 (1 month ago)	22.734 requests in 1 hour (5d14h59m)	Brute-Force Bad Web Bot
🇦🇺 MAGIC	2026-05-06 01:10:21 (1 month ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-01 21:50:47 (1 month ago)	(mod_security) mod_security (id:217291) triggered by 82.80.249.134 (bzq-82-80-249-134.dcenter.bezeqi ... show more (mod_security) mod_security (id:217291) triggered by 82.80.249.134 (bzq-82-80-249-134.dcenter.bezeqint.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 01 17:50:42.735995 2026] [security2:error] [pid 9564:tid 9564] [client 82.80.249.134:64955] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(\\\\n\|\\\\r)" at ARGS_NAMES:\\r\\nfromwhere. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "145"] [id "217291"] [rev "2"] [msg "HTTP Header Injection Attack via payload (CR/LF detected)\|\|www.lovechicks.com\|F\|2"] [data "Matched Data: \\x0d found within ARGS_NAMES:\\x5cr\\x5cnfromwhere: \\x0d\\x0afromwhere"] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "www.lovechicks.com"] [uri "/g12privacy.php"] [unique_id "afUgMv-dHdUiixNjcsnSfAAAAAc"], referer: http://www.lovechicks.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-28 16:06:11 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 82.80.249.134 (bzq-82-80-249-134.dcenter.bezeqi ... show more (mod_security) mod_security (id:210730) triggered by 82.80.249.134 (bzq-82-80-249-134.dcenter.bezeqint.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 12:06:03.955489 2026] [security2:error] [pid 31561:tid 31561] [client 82.80.249.134:57730] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.ipostsocialmedia.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.ipostsocialmedia.com"] [uri "/[email protected]"] [unique_id "afDa6y9kr-AG4fJe72ydBwAAABE"], referer: http://www.ipostsocialmedia.com/contactus.html show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 philipplindner	2026-04-27 19:10:52 (2 months ago)	Vulnerability scan on www.philipp-lindner.de	Hacking
🇺🇸 TPI-Abuse	2026-04-16 23:57:58 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 82.80.249.134 (bzq-82-80-249-134.dcenter.bezeqi ... show more (mod_security) mod_security (id:210730) triggered by 82.80.249.134 (bzq-82-80-249-134.dcenter.bezeqint.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 16 19:57:53.322070 2026] [security2:error] [pid 367303:tid 367303] [client 82.80.249.134:62193] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.john-bell-associates.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.john-bell-associates.com"] [uri "/reddit.com"] [unique_id "aeF3gT1NG4c5h7NymG4mpAAAABE"], referer: http://www.john-bell-associates.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-06 14:20:09 (2 months ago)	\| [Dangerous/Israel] Aggressive IP 82.80.249.134 (~30 hits). Type: DoS Defender- Web server 400 erro ... show more \| [Dangerous/Israel] Aggressive IP 82.80.249.134 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇩🇪 conseilgouz	2026-04-01 19:24:43 (2 months ago)	vew-(visforms) : try to access forms...	Hacking
🇱🇻 garmtech.com	2026-04-01 18:24:42 (2 months ago)	IM360 WAF: PHP code tags in HTTP headers MV:https://www.lanastyle.lv/ru/product/020=30@4-?5@<0=5=B-? ... show more IM360 WAF: PHP code tags in HTTP headers MV:https://www.lanastyle.lv/ru/product/020=30@4-?5@<0=5=B-?>;L70-?83<5=B-5<;/ show less	Web App Attack
🇺🇸 r3versedk	2026-03-28 00:30:05 (3 months ago)	🛡️ Automated Threat Report from maxjensen.dk 🎯 Attack Type: Botnet Fingerprint 🚨 Severity: CRITICAL ... show more 🛡️ Automated Threat Report from maxjensen.dk 🎯 Attack Type: Botnet Fingerprint 🚨 Severity: CRITICAL 📊 Threat Score: 95/100 📈 Total Attacks: 432 (database verified, seen over today) 🔍 Peak Score: 95/100 🎯 Common Types: Botnet Fingerprint(1x) 🔍 Fingerprint: 9f96b00ce11bc787 🤖 AI/ML: 🤝 Multi-Model Consensus (neural-network, q-learning, gpt) - 🧠 NN (55%): block (95.9%) \| 🎮 QL (23%): block (75.0%) \| 🤖 Claude (23%): monitor (70.0%) \| ⚖️ dynamic+boosted weights... Detected: 2026-03-28T00:30:05.817Z show less	Bad Web Bot
Anonymous	2026-03-21 15:03:32 (3 months ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: IL, Attack patterns: Mali ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: IL, Attack patterns: Malicious User-Agent show less	Bad Web Bot Web App Attack

Showing 1 to 15 of 52 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇬 196.168.30.194

🇨🇱 186.10.86.130

🇺🇸 141.11.88.116

🇹🇷 89.252.157.42

🇺🇸 66.132.172.192

🇰🇷 1.235.192.214

🇰🇷 211.43.100.45

🇮🇳 165.101.134.130

🇨🇳 113.67.8.114

🇺🇸 107.152.44.215

🇺🇸 72.63.20.203

🇳🇱 45.148.10.141

🇺🇸 23.95.8.134

🇺🇸 20.102.98.53

🇬🇧 2a06:4880:a000::b7

🇧🇷 205.210.31.254

🇺🇸 172.59.67.0

🇦🇺 158.178.141.16

🇺🇸 147.185.132.252

🇿🇦 102.209.87.196