JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.179.94.21

82.179.94.21 was found in our database!

This IP was reported 48 times. Confidence of Abuse is 0%: ?

ISP	Kabardino-Balkar State University
Usage Type	University/College/School
ASN	AS3267
Hostname(s)	www.kbsu.ru
Domain Name	kbsu.ru
Country	🇷🇺 Russian Federation
City	Penza, Penza Oblast

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.179.94.21

Whois 82.179.94.21

IP Abuse Reports for 82.179.94.21:

This IP address has been reported a total of 48 times from 23 distinct sources. 82.179.94.21 was first reported on July 1st 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2024-08-04 10:55:42 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 s ... show more (mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 06:55:36.736347 2024] [security2:error] [pid 17954:tid 17954] [client 82.179.94.21:57818] [client 82.179.94.21] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 128.127.104.80 (+1 hits since last alert)\|www.rochesterhistorical.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.rochesterhistorical.org"] [uri "/xmlrpc.php"] [unique_id "Zq9eKBfCN_jyELqwdr5C1QAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇬 oncord	2024-08-02 11:28:50 (1 year ago)	Form spam	Web Spam
🇬🇧 Steve	2024-08-01 10:24:09 (1 year ago)	Excessive crawling - not obeying robots.txt	Bad Web Bot
Anonymous	2024-07-31 00:00:00 (1 year ago)	HTTP Flood DDoS Attack	DDoS Attack
🇸🇬 Cloudkul Cloudkul	2024-07-28 21:12:19 (1 year ago)	Multiple unauthorized attempts to access web resources	Brute-Force Web App Attack
🇦🇺 MAGIC	2024-07-25 13:04:24 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2024-07-22 10:19:28 (1 year ago)	Credential Stuffing attacks against Microsoft 365	Brute-Force
🇩🇪 ger-stg-sifi1	2024-07-21 17:04:36 (1 year ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2024-07-21 01:01:19 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 s ... show more (mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 20 21:01:14.886564 2024] [security2:error] [pid 8764:tid 8764] [client 82.179.94.21:33216] [client 82.179.94.21] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 213.152.161.240 (+1 hits since last alert)\|www.mfleetservice.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.mfleetservice.com"] [uri "/xmlrpc.php"] [unique_id "Zpxd2jl5LSJAxSF4nUPhjAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-07-20 22:42:05 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 s ... show more (mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 20 18:42:00.108996 2024] [security2:error] [pid 12545:tid 12545] [client 82.179.94.21:39364] [client 82.179.94.21] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.179.94.21 (+1 hits since last alert)\|jfexpressfr8.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "jfexpressfr8.com"] [uri "/xmlrpc.php"] [unique_id "Zpw9OCusjf8ScZKWbY4kLgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-07-19 15:51:08 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 s ... show more (mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 19 11:51:04.471885 2024] [security2:error] [pid 30598:tid 30598] [client 82.179.94.21:40234] [client 82.179.94.21] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.179.94.21 (+1 hits since last alert)\|nextlevelcharge.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "nextlevelcharge.com"] [uri "/xmlrpc.php"] [unique_id "ZpqLaPjG1ITdWMFssoMBEQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-07-19 10:18:34 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 s ... show more (mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 19 06:18:27.258171 2024] [security2:error] [pid 1290500:tid 1290500] [client 82.179.94.21:34720] [client 82.179.94.21] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.179.94.21 (+1 hits since last alert)\|www.brainstormer.soy\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.brainstormer.soy"] [uri "/xmlrpc.php"] [unique_id "Zpo9cx9rQ7DG_xBWxqaxYAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-07-19 09:53:04 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 s ... show more (mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 19 05:52:56.930683 2024] [security2:error] [pid 21793:tid 21793] [client 82.179.94.21:46612] [client 82.179.94.21] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.179.94.21 (+1 hits since last alert)\|eye7graphics.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "eye7graphics.com"] [uri "/xmlrpc.php"] [unique_id "Zpo3eG9xC4wvmh4ALRvdVAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 RLDD	2024-07-19 08:43:13 (1 year ago)	WP login attempts -jts	Brute-Force
🇺🇸 TPI-Abuse	2024-07-19 08:21:17 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 s ... show more (mod_security) mod_security (id:240335) triggered by 82.179.94.21 (www.kbsu.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 19 04:21:10.661575 2024] [security2:error] [pid 27886:tid 27886] [client 82.179.94.21:59998] [client 82.179.94.21] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.179.94.21 (+1 hits since last alert)\|www.pastortimsjourney.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.pastortimsjourney.com"] [uri "/xmlrpc.php"] [unique_id "Zpoh9i_vFW7_lPg08GscXgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 48 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇿 197.250.226.232

🇫🇷 91.231.89.15

🇨🇦 216.26.232.44

🇪🇸 194.146.92.69

🇺🇸 153.66.28.132

🇫🇷 45.92.109.120

🇸🇬 43.156.212.86

🇸🇬 43.134.22.249

🇺🇸 20.102.100.198

🇮🇳 182.95.181.166

🇺🇦 176.109.10.49

🇺🇸 173.21.146.114

🇭🇰 150.5.141.198

🇺🇸 149.22.84.226

🇲🇴 125.31.4.70

🇨🇳 112.28.153.193

🇺🇸 104.248.75.7

🇨🇳 14.103.112.56

🇧🇪 2001:920:401a:1710:6801:62ff:fe32:e83b

🇨🇿 212.102.39.102