JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.39.82.74

194.39.82.74 was found in our database!

This IP was reported 180 times. Confidence of Abuse is 77%: ?

77%

ISP	TINS LLC
Usage Type	Fixed Line ISP
ASN	AS207980
Hostname(s)	ip-194-39-82-74.tins.am
Domain Name	tins.am
Country	🇦🇲 Armenia
City	Sevan, Gegharkunik

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.39.82.74

Whois 194.39.82.74

IP Abuse Reports for 194.39.82.74:

This IP address has been reported a total of 180 times from 66 distinct sources. 194.39.82.74 was first reported on September 5th 2024, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 kosada.com	2026-06-29 15:58:02 (6 hours ago)	Web bot: denial-of-service flood	DDoS Attack Bad Web Bot
🇩🇪 Vegascosmetics	2026-06-29 08:22:43 (14 hours ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after suspicious activity. Vegas Security	DDoS Attack Hacking Exploited Host
🇳🇱 Site.eu	2026-06-27 21:50:16 (2 days ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-06-26 19:30:35 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 194.39.82.74 (ip-194-39-82-74.tins.am): 1 in th ... show more (mod_security) mod_security (id:240335) triggered by 194.39.82.74 (ip-194-39-82-74.tins.am): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 15:30:32.369601 2026] [security2:error] [pid 10766:tid 10787] [client 194.39.82.74:56964] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 194.39.82.74 (+1 hits since last alert)\|metalartgate.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "metalartgate.com"] [uri "/xmlrpc.php"] [unique_id "aj7TWEXhcHnxVdlmykRppQAAANA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-23 07:40:38 (6 days ago)	[redacted] 194.39.82.74 - - [23/Jun/2026:09:39:54 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Wo ... show more [redacted] 194.39.82.74 - - [23/Jun/2026:09:39:54 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 194.39.82.74 - - [23/Jun/2026:09:40:05 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.5; WordPress/6.3; http://site97332643.com" [redacted] 194.39.82.74 - - [23/Jun/2026:09:40:15 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.1)" [redacted] 194.39.82.74 - - [23/Jun/2026:09:40:26 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.3)" [redacted] 194.39.82.74 - - [23/Jun/2026:09:40:37 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" ... show less	Hacking Web App Attack
🇺🇸 integrantservices.com	2026-06-21 11:21:14 (1 week ago)	(wordpress) Failed wordpress login from 194.39.82.74 (AM/Armenia/ip-194-39-82-74.tins.am)	Brute-Force
🇪🇸 DXC-0	2026-06-20 03:00:28 (1 week ago)	Multiple attacks on Honeypot servers	Web Spam Brute-Force Web App Attack Hacking
🇫🇷 sthoyer.de	2026-06-19 23:16:42 (1 week ago)	Jun 20 01:16:41 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 20 01:16:41 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=194.39.82.74 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=31083 DF PROTO=TCP SPT=61230 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇩🇪 HoneyPot-FrPri	2026-06-18 00:56:28 (1 week ago)	1781744187 - 06/18/2026 02:56:27 Host: 194.39.82.74/194.39.82.74 Port: 139 TCP Blocked ...	Port Scan
🇺🇸 TPI-Abuse	2026-06-17 19:32:36 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 194.39.82.74 (ip-194-39-82-74.tins.am): 1 in th ... show more (mod_security) mod_security (id:240335) triggered by 194.39.82.74 (ip-194-39-82-74.tins.am): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 15:32:28.875395 2026] [security2:error] [pid 7474:tid 7479] [client 194.39.82.74:58504] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 194.39.82.74 (+1 hits since last alert)\|cynosureinternetservices.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "cynosureinternetservices.com"] [uri "/xmlrpc.php"] [unique_id "ajL2TMye4KMCjDjuZhSdlAAAAMI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 11:07:48 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 194.39.82.74 (ip-194-39-82-74.tins.am): 1 in th ... show more (mod_security) mod_security (id:240335) triggered by 194.39.82.74 (ip-194-39-82-74.tins.am): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 07:07:43.176469 2026] [security2:error] [pid 1587:tid 1587] [client 194.39.82.74:56129] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 194.39.82.74 (+1 hits since last alert)\|techoutletec.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "techoutletec.com"] [uri "/xmlrpc.php"] [unique_id "ajJ__7X5JO8ItSex5zROlAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Kenshin869	2026-06-17 05:32:27 (1 week ago)	Wordpress unauthorized access attempt	Brute-Force
🇺🇸 TPI-Abuse	2026-06-17 04:33:04 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 194.39.82.74 (ip-194-39-82-74.tins.am): 1 in th ... show more (mod_security) mod_security (id:240335) triggered by 194.39.82.74 (ip-194-39-82-74.tins.am): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 00:32:56.778401 2026] [security2:error] [pid 2671:tid 2671] [client 194.39.82.74:50287] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 194.39.82.74 (+1 hits since last alert)\|travelwithjenniferb.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "travelwithjenniferb.com"] [uri "/xmlrpc.php"] [unique_id "ajIjeAlc2a98dfXomKUItgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 ConsulHosting	2026-06-17 04:17:39 (1 week ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 01:31:06 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 194.39.82.74 (ip-194-39-82-74.tins.am): 1 in th ... show more (mod_security) mod_security (id:240335) triggered by 194.39.82.74 (ip-194-39-82-74.tins.am): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 21:31:01.028690 2026] [security2:error] [pid 384:tid 384] [client 194.39.82.74:53418] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 194.39.82.74 (+1 hits since last alert)\|texascottagebakers.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "texascottagebakers.com"] [uri "/xmlrpc.php"] [unique_id "ajH41dFhKbpEMeFPfByZuwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 180 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.79

🇺🇸 195.184.76.237

🇳🇱 195.178.110.30

🇺🇸 184.168.31.238

🇷🇺 176.193.109.143

🇻🇳 171.231.182.149

🇺🇸 162.216.149.67

🇨🇳 111.42.183.124

🇨🇳 101.33.33.44

🇹🇷 94.154.43.43

🇩🇪 62.133.60.87

🇳🇱 45.156.87.204

🇬🇧 2a06:4880:c000::e6

🇺🇸 2604:a880:400:d1:0:4:6c7e:6001

🇨🇳 218.0.63.25

🇺🇸 216.25.89.76

🇳🇱 193.110.157.47

🇮🇩 103.189.201.73

🇧🇩 103.183.62.1

🇮🇩 103.67.80.61