JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 77.242.24.212

77.242.24.212 was found in our database!

This IP was reported 49 times. Confidence of Abuse is 0%: ?

ISP	Abissnet sh.a.
Usage Type	Fixed Line ISP
ASN	AS35047
Hostname(s)	ip-77-242-24-212.net.abissnet.al
Domain Name	abissnet.al
Country	🇦🇱 Albania
City	Tirana, Tirana

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 77.242.24.212

Whois 77.242.24.212

IP Abuse Reports for 77.242.24.212:

This IP address has been reported a total of 49 times from 20 distinct sources. 77.242.24.212 was first reported on September 15th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 SuperEvilLuke	2024-10-24 18:16:01 (1 year ago)	DDoS attack detected on my website via Cloudflare logs	Port Scan
🇫🇷 LRob.fr	2024-10-24 14:20:00 (1 year ago)	"Botnet or malicious host used for DDoS: 59 Attempts"	DDoS Attack
Anonymous	2024-10-20 13:06:50 (1 year ago)	botnet	DDoS Attack
🇲🇹 Malta	2024-10-17 09:07:22 (1 year ago)	77.242.24.212 - - [17/Oct/2024:11:07:25 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows N ... show more 77.242.24.212 - - [17/Oct/2024:11:07:25 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" show less	Hacking Web App Attack
🇩🇪 FeG Deutschland	2024-10-16 12:34:02 (1 year ago)	Looking for CMS/PHP/SQL vulnerablilities - 13	Exploited Host Web App Attack
Anonymous	2024-10-16 12:31:11 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇳🇿 Tripwire	2024-10-16 12:30:35 (1 year ago)	Wordpress login attempts	Brute-Force Web App Attack
Anonymous	2024-10-15 11:40:37 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇲🇹 Malta	2024-09-24 06:03:00 (1 year ago)	77.242.24.212 - - [24/Sep/2024:08:02:59 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux ... show more 77.242.24.212 - - [24/Sep/2024:08:02:59 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.6613.138 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack
🇩🇪 Ba-Yu	2024-09-21 17:18:40 (1 year ago)	WP-xmlrpc exploit	Web Spam Blog Spam Hacking Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2024-09-21 14:57:50 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 77.242.24.212 (ip-77-242-24-212.net.abissnet.al ... show more (mod_security) mod_security (id:240335) triggered by 77.242.24.212 (ip-77-242-24-212.net.abissnet.al): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 21 10:57:44.737098 2024] [security2:error] [pid 23881:tid 23881] [client 77.242.24.212:36019] [client 77.242.24.212] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 77.242.24.212 (+1 hits since last alert)\|www.samemahama2024.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.samemahama2024.com"] [uri "/xmlrpc.php"] [unique_id "Zu7e6IcqbEckcZq04TRR7gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-09-21 14:39:57 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 77.242.24.212 (ip-77-242-24-212.net.abissnet.al ... show more (mod_security) mod_security (id:240335) triggered by 77.242.24.212 (ip-77-242-24-212.net.abissnet.al): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 21 10:39:53.027461 2024] [security2:error] [pid 2382573:tid 2382573] [client 77.242.24.212:37401] [client 77.242.24.212] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 77.242.24.212 (+1 hits since last alert)\|www.jdeloa.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.jdeloa.com"] [uri "/xmlrpc.php"] [unique_id "Zu7aufVvimkTrx0_uwn_LQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇹 Malta	2024-09-21 00:31:49 (1 year ago)	77.242.24.212 - - [21/Sep/2024:02:31:49 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux ... show more 77.242.24.212 - - [21/Sep/2024:02:31:49 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.6613.138 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack
Anonymous	2024-09-20 14:34:03 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack
Anonymous	2024-09-20 14:34:03 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack

Showing 1 to 15 of 49 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.250.10.12

🇳🇱 185.242.226.106

🇺🇸 172.253.2.16

🇺🇸 135.237.124.61

🇮🇳 103.139.56.29

🇨🇦 85.217.149.27

🇺🇸 74.82.47.5

🇩🇪 43.228.157.136

🇺🇸 34.106.98.240

🇭🇰 8.210.88.252

🇲🇦 196.127.31.47

🇷🇴 193.32.162.13

🇮🇪 185.192.16.190

🇺🇸 165.154.172.72

🇺🇸 162.216.150.68

🇺🇸 162.216.149.90

🇫🇮 147.185.133.141

🇻🇳 115.84.183.240

🇨🇳 112.86.146.178

🇺🇸 74.63.17.242