JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.221.100.12

82.221.100.12 was found in our database!

This IP was reported 82 times. Confidence of Abuse is 55%: ?

55%

This address is a Tor exit node. Neither the owner nor the provider are directly behind the offending action.

ISP	FlokiNET ehf
Usage Type	Data Center/Web Hosting/Transit
ASN	AS50613
Domain Name	flokinet.is
Country	🇮🇸 Iceland
City	Reykjavik, Capital Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.221.100.12

Whois 82.221.100.12

IP Abuse Reports for 82.221.100.12:

This IP address has been reported a total of 82 times from 34 distinct sources. 82.221.100.12 was first reported on November 20th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-05 08:26:16 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 04:26:11.911842 2026] [security2:error] [pid 20754:tid 20754] [client 82.221.100.12:43362] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.kinaffanchufoods.com"] [uri "/.git/config"] [unique_id "aiKII9o5Q5TlI_UKT40r_QAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-04 11:06:26 (2 days ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-02 03:51:35 (4 days ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇫🇷 ✨	2026-06-02 00:29:12 (4 days ago)	Rule : PLESK BOT 2026-06-02 02:28:37 Unauthorized login attempt to Plesk Panel from IP 82.221.100.12 ... show more Rule : PLESK BOT 2026-06-02 02:28:37 Unauthorized login attempt to Plesk Panel from IP 82.221.100.12 with username admin show less	Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 06:01:41 (5 days ago)	(mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 02:01:36.523459 2026] [security2:error] [pid 32607:tid 32607] [client 82.221.100.12:44746] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|boens.org\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "boens.org"] [uri "/dump.sql"] [unique_id "ah0gQAd9AiXqdOVJbaaILAAAAAU"], referer: boens.org/dump.sql show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 03:29:13 (5 days ago)	(mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 23:29:10.427004 2026] [security2:error] [pid 25575:tid 25575] [client 82.221.100.12:55166] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|chopstickhouseevansville.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "chopstickhouseevansville.com"] [uri "/dump.sql"] [unique_id "ahz8hs5Ly8R4vdCChzHHSwAAAAA"], referer: chopstickhouseevansville.com/dump.sql show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-30 11:34:03 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 30 07:33:57.066779 2026] [security2:error] [pid 21540:tid 21540] [client 82.221.100.12:45448] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|qu1ck.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "qu1ck.com"] [uri "/dump.sql"] [unique_id "ahrLJddOIYn3tszKOyTegAAAAAg"], referer: qu1ck.com/dump.sql show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-29 08:41:42 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 04:41:35.565302 2026] [security2:error] [pid 1321:tid 1321] [client 82.221.100.12:45364] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|contractorspecializing.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "contractorspecializing.com"] [uri "/dump.sql"] [unique_id "ahlRPzEWLH8X-CQTiShcIQAAAA4"], referer: contractorspecializing.com/dump.sql show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-05-27 13:15:24 (1 week ago)	Plesk panel login attempt with forbidden username (root/admin), blocked by Fail2Ban in custom-plesk- ... show more Plesk panel login attempt with forbidden username (root/admin), blocked by Fail2Ban in custom-plesk-login jail show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-25 20:16:10 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 25 16:16:05.355562 2026] [security2:error] [pid 10238:tid 10255] [client 82.221.100.12:39338] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|condominium-property-management.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "condominium-property-management.com"] [uri "/dump.sql"] [unique_id "ahSuBaNCWDtJJtY361Z3GAAAAA4"], referer: condominium-property-management.com/dump.sql show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-24 15:21:56 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 11:21:51.324730 2026] [security2:error] [pid 4951:tid 4951] [client 82.221.100.12:52882] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.clisanchezenterprises.com"] [uri "/.git/config"] [unique_id "ahMXj_mm3_9twC-99mYncAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-24 04:02:16 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 00:02:10.986433 2026] [security2:error] [pid 3229:tid 3229] [client 82.221.100.12:56498] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|krakowski.net\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "krakowski.net"] [uri "/dump.sql"] [unique_id "ahJ4QpoZnLeLP9rpVjDNmAAAAAU"], referer: krakowski.net/dump.sql show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 ICS Labs	2026-05-23 13:53:27 (1 week ago)	ICS Labs identified 82.221.100.12 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-05-23 12:25:34 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 82.221.100.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 23 08:25:27.122339 2026] [security2:error] [pid 20217:tid 20217] [client 82.221.100.12:43418] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|t9teamsportinggoods.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "t9teamsportinggoods.com"] [uri "/dump.sql"] [unique_id "ahGct_RvAqZLoLCfJKiAkwAAABQ"], referer: t9teamsportinggoods.com/dump.sql show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2026-05-18 00:06:48 (2 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot

Showing 1 to 15 of 82 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.135

🇳🇱 138.124.67.103

🇺🇸 104.194.9.81

🇷🇴 92.118.39.236

🇺🇸 72.253.251.7

🇳🇱 45.148.10.121

🇷🇴 2.57.121.112

🇧🇷 2a02:4780:13:902:0:1d32:4d09:1

🇹🇷 212.87.199.64

🇭🇰 199.45.155.90

🇺🇸 192.3.64.210

🇺🇸 159.89.95.236

🇬🇧 134.122.96.10

🇮🇳 117.99.5.125

🇩🇪 82.165.184.35

🇰🇷 49.254.50.11

🇧🇩 45.120.115.150

🇬🇧 35.203.211.47

🇮🇳 14.96.106.175

🇺🇸 12.68.228.244