JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.207.17.82

103.207.17.82 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 96%: ?

96%

ISP	WAVENET BROADBAND PVT LTD
Usage Type	Fixed Line ISP
ASN	AS150648
Domain Name	wavenetbroadband.in
Country	🇮🇳 India
City	Lucknow, Uttar Pradesh

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.207.17.82

Whois 103.207.17.82

IP Abuse Reports for 103.207.17.82:

This IP address has been reported a total of 24 times from 17 distinct sources. 103.207.17.82 was first reported on June 19th 2026, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-25 10:34:29 (15 hours ago)	(mod_security) mod_security (id:240335) triggered by 103.207.17.82 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 103.207.17.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 06:34:21.596632 2026] [security2:error] [pid 6028:tid 6028] [client 103.207.17.82:56212] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.207.17.82 (+1 hits since last alert)\|agworldmissions.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "agworldmissions.org"] [uri "/xmlrpc.php"] [unique_id "aj0ELeiIxT1-RzSJRXzZ2AAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-25 09:23:13 (16 hours ago)	Attac	Brute-Force
Anonymous	2026-06-25 06:46:05 (19 hours ago)	103.207.17.82 - - [25/Jun/2026:08:45:48 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack/12.0 ... show more 103.207.17.82 - - [25/Jun/2026:08:45:48 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack/12.0; WordPress/6.4; http://site67221987.com" 103.207.17.82 - - [25/Jun/2026:08:45:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/12.0; WordPress/6.4; http://site67221987.com" 103.207.17.82 - - [25/Jun/2026:08:45:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com" 103.207.17.82 - - [25/Jun/2026:08:45:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com" 103.207.17.82 - - [25/Jun/2026:08:46:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack/12.5; WordPress/6.1; http://site93708640.com" ... show less	Brute-Force Web App Attack
Anonymous	2026-06-25 03:07:50 (23 hours ago)		Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 11:49:39 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 103.207.17.82 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 103.207.17.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 07:49:34.996319 2026] [security2:error] [pid 18541:tid 18541] [client 103.207.17.82:59472] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|newhopepetgrooming.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "newhopepetgrooming.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajvETldXjRQfnhPLW6tlWQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-24 05:06:52 (1 day ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇪🇸 alferez	2026-06-24 04:11:12 (1 day ago)	xmlrpc.php attack DOS	Hacking Exploited Host Web App Attack
🇫🇷 dynamix	2026-06-24 04:02:02 (1 day ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇫🇷 tecnicorioja	2026-06-23 22:00:12 (2 days ago)	POST /xmlrpc.php [23/Jun/2026:12:47:05	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 12:27:36 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 103.207.17.82 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 103.207.17.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 08:27:32.228476 2026] [security2:error] [pid 1584:tid 1584] [client 103.207.17.82:56432] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.207.17.82 (+1 hits since last alert)\|edmestonfd.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "edmestonfd.com"] [uri "/xmlrpc.php"] [unique_id "ajp7tLw0_zQp055_lKpTPAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-23 10:06:26 (2 days ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇧🇪 cmbplf	2026-06-23 07:30:11 (2 days ago)	3.338 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-23 06:44:50 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 103.207.17.82 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 103.207.17.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 02:44:42.504583 2026] [security2:error] [pid 24386:tid 24386] [client 103.207.17.82:64252] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.207.17.82 (+1 hits since last alert)\|nolaanime.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "nolaanime.com"] [uri "/xmlrpc.php"] [unique_id "ajorWiKq9dhAX-uqMBdVigAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 03:33:10 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 103.207.17.82 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 103.207.17.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 23:33:07.290065 2026] [security2:error] [pid 3561:tid 3561] [client 103.207.17.82:64438] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.207.17.82 (+1 hits since last alert)\|jellisonrepair.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "jellisonrepair.com"] [uri "/xmlrpc.php"] [unique_id "ajn-cwc4jIgA0D-4lpa8AAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-22 11:49:04 (3 days ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 192.71.2.5

🇫🇷 91.231.89.90

🇺🇸 2607:f8b0:4001:c11::129

🇹🇼 198.235.24.64

🇺🇸 195.184.76.95

🇩🇪 185.30.32.9

🇺🇸 172.234.221.84

🇺🇸 172.222.52.59

🇨🇳 121.229.156.75

🇬🇧 82.197.75.147

🇷🇴 80.94.92.55

🇩🇪 46.101.180.162

🇳🇱 45.156.87.93

🇹🇼 35.229.249.121

🇸🇬 35.187.231.181

🇧🇪 35.187.41.22

🇳🇱 34.34.5.122

🇭🇰 199.45.154.156

🇳🇱 192.144.89.219

🇧🇷 177.99.193.135