JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.194.22.163

82.194.22.163 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 62%: ?

62%

ISP	ENGINET LLC
Usage Type	Fixed Line ISP
ASN	AS60258
Hostname(s)	network.enginet.az
Domain Name	enginet.az
Country	🇦🇿 Azerbaijan
City	Baku, Baki

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.194.22.163

Whois 82.194.22.163

IP Abuse Reports for 82.194.22.163:

This IP address has been reported a total of 20 times from 13 distinct sources. 82.194.22.163 was first reported on August 31st 2025, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-25 15:11:21 (1 hour ago)	(mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the la ... show more (mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 11:11:14.765678 2026] [security2:error] [pid 18983:tid 18983] [client 82.194.22.163:52280] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.194.22.163 (+1 hits since last alert)\|milliondollarbelt.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "milliondollarbelt.com"] [uri "/xmlrpc.php"] [unique_id "aj1FEnsbVZU04YE3XjlMegAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Séfora Srl	2026-06-25 15:03:27 (1 hour ago)	Failed attempt detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-25 14:37:42 (1 hour ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 14:09:46 (2 hours ago)	(mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the la ... show more (mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 10:09:41.717315 2026] [security2:error] [pid 16337:tid 16337] [client 82.194.22.163:52397] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.194.22.163 (+1 hits since last alert)\|deborahbein.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "deborahbein.com"] [uri "/xmlrpc.php"] [unique_id "aj02pZNi3lwhKm0UrhtqvgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-06-24 10:13:48 (1 day ago)	IM360 WAF: Rate limit exceeded for XMLRPC DoS (fault code)	Web App Attack
🇸🇪 konseptit	2026-06-23 15:04:33 (2 days ago)	(wordpress) Failed wordpress login from 82.194.22.163 (AZ/Azerbaijan/network.enginet.az)	Brute-Force
Anonymous	2026-06-21 18:11:54 (3 days ago)	[server.tmg.gr] httpd-xmlrpc-post: sites=tmg.gr; logs=/var/log/httpd/domains/tmg.gr.log; samples=/xm ... show more [server.tmg.gr] httpd-xmlrpc-post: sites=tmg.gr; logs=/var/log/httpd/domains/tmg.gr.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 16:31:54 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the la ... show more (mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 12:31:46.466989 2026] [security2:error] [pid 2848:tid 2848] [client 82.194.22.163:51262] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.194.22.163 (+1 hits since last alert)\|helloauto.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "helloauto.net"] [uri "/xmlrpc.php"] [unique_id "ajgR8lM6ojG4oLgnYmNJdAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 14:17:29 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the la ... show more (mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 10:17:23.139232 2026] [security2:error] [pid 6083:tid 6083] [client 82.194.22.163:31021] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.194.22.163 (+1 hits since last alert)\|jimrichardart.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "jimrichardart.com"] [uri "/xmlrpc.php"] [unique_id "ajfyc2NSs5n2cA4WCxE_sAAAAFA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 12:07:39 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the la ... show more (mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 08:07:35.300466 2026] [security2:error] [pid 5073:tid 5073] [client 82.194.22.163:58519] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.194.22.163 (+1 hits since last alert)\|kiinlog.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kiinlog.com"] [uri "/xmlrpc.php"] [unique_id "ajfUB-RjeDrWoJf2bJmK1AAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 10:18:23 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the la ... show more (mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 06:18:16.547578 2026] [security2:error] [pid 28949:tid 28949] [client 82.194.22.163:37659] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.194.22.163 (+1 hits since last alert)\|ftiptondds.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ftiptondds.com"] [uri "/xmlrpc.php"] [unique_id "aje6aG03m6UY8fkolfzYrwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-21 05:59:41 (4 days ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇺🇸 TPI-Abuse	2026-06-20 22:13:43 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the la ... show more (mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 18:13:36.374305 2026] [security2:error] [pid 19540:tid 19540] [client 82.194.22.163:55634] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.194.22.163 (+1 hits since last alert)\|agworldmissions.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "agworldmissions.org"] [uri "/xmlrpc.php"] [unique_id "ajcQkGRNN0mde1Y9390aFQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-20 22:12:14 (4 days ago)	[redacted] 82.194.22.163 - - [21/Jun/2026:00:11:28 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "J ... show more [redacted] 82.194.22.163 - - [21/Jun/2026:00:11:28 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 82.194.22.163 - - [21/Jun/2026:00:11:38 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.3)" [redacted] 82.194.22.163 - - [21/Jun/2026:00:11:49 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.1)" [redacted] 82.194.22.163 - - [21/Jun/2026:00:12:00 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 82.194.22.163 - - [21/Jun/2026:00:12:10 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 19:09:48 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the la ... show more (mod_security) mod_security (id:240335) triggered by 82.194.22.163 (network.enginet.az): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 15:09:40.781145 2026] [security2:error] [pid 15737:tid 15737] [client 82.194.22.163:25163] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.194.22.163 (+1 hits since last alert)\|bergenoaks.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "bergenoaks.com"] [uri "/xmlrpc.php"] [unique_id "ajbldLVX36IrY_owxPh5YgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.139

🇸🇬 208.109.13.31

🇵🇱 194.180.49.219

🇵🇱 185.79.139.16

🇮🇳 103.121.119.25

🇫🇷 92.205.50.247

🇫🇷 85.217.140.52

🇮🇷 2.188.35.66

🇧🇷 205.210.31.156

🇦🇷 186.148.80.186

🇰🇷 112.216.129.27

🇵🇱 94.154.31.74

🇫🇷 91.231.89.206

🇫🇷 91.231.89.203

🇫🇷 85.217.140.33

🇺🇸 64.251.13.157

🇷🇺 46.29.165.183

🇺🇸 136.107.177.49

🇺🇸 135.119.112.132

🇮🇳 122.185.146.166