JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.96.169.172

82.96.169.172 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 42%: ?

42%

ISP	Free Pro SAS
Usage Type	Fixed Line ISP
ASN	AS199636
Hostname(s)	404031227.box.freepro.com
Domain Name	freepro.com
Country	🇫🇷 France
City	Lyon, Rhone-Alpes

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.96.169.172

Whois 82.96.169.172

IP Abuse Reports for 82.96.169.172:

This IP address has been reported a total of 31 times from 16 distinct sources. 82.96.169.172 was first reported on March 2nd 2026, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-23 13:33:34 (14 hours ago)	(mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 09:33:29.730176 2026] [security2:error] [pid 32694:tid 32694] [client 82.96.169.172:55464] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.96.169.172 (+1 hits since last alert)\|weird.eco\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "weird.eco"] [uri "/xmlrpc.php"] [unique_id "ajqLKT_vtHS8gG8WD2YjFQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 13:03:47 (15 hours ago)	(mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 09:03:39.226377 2026] [security2:error] [pid 20777:tid 20777] [client 82.96.169.172:56460] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.96.169.172 (+1 hits since last alert)\|celebritybikinigossip.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "celebritybikinigossip.com"] [uri "/xmlrpc.php"] [unique_id "ajqEK6Sc-jfsJyzGeyNMYQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 12:01:45 (16 hours ago)	(mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 08:01:37.594462 2026] [security2:error] [pid 22290:tid 22313] [client 82.96.169.172:62275] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.96.169.172 (+1 hits since last alert)\|leaderoftheopposition.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "leaderoftheopposition.com"] [uri "/xmlrpc.php"] [unique_id "ajp1oYzYoNqSEnIypBbOkwAAARU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 12:37:50 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 08:37:46.208752 2026] [security2:error] [pid 13153:tid 13153] [client 82.96.169.172:54111] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.96.169.172 (+1 hits since last alert)\|xyncom.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "xyncom.com"] [uri "/xmlrpc.php"] [unique_id "ai_yGmc_wrgmvQb59MhChAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 08:43:25 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 04:43:19.722988 2026] [security2:error] [pid 3602:tid 3602] [client 82.96.169.172:55540] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.96.169.172 (+1 hits since last alert)\|greenmountainfeeds.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "greenmountainfeeds.com"] [uri "/xmlrpc.php"] [unique_id "ai-7J0JTTTps5EwR3AGX-QAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 08:13:45 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 04:13:41.900830 2026] [security2:error] [pid 23309:tid 23473] [client 82.96.169.172:56504] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.96.169.172 (+1 hits since last alert)\|iamfluff.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "iamfluff.com"] [uri "/xmlrpc.php"] [unique_id "ai-0NQnWmXc2Gd5Jq--x0QAAARc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-08 10:20:41 (2 weeks ago)	(wordpress) Failed wordpress login from 82.96.169.172 (FR/France/Île-de-France/-/404031227.box.freep ... show more (wordpress) Failed wordpress login from 82.96.169.172 (FR/France/Île-de-France/-/404031227.box.freepro.com/[redacted]) show less	Brute-Force
🇬🇧 Steve	2026-06-08 09:52:36 (2 weeks ago)	Abuse of XMLRPC	Brute-Force Web App Attack
Anonymous	2026-06-01 12:21:10 (3 weeks ago)	Attac	Brute-Force
Anonymous	2026-05-28 14:44:45 (3 weeks ago)	Attac	Brute-Force
🇫🇮 YF	2026-05-28 13:02:59 (3 weeks ago)	xmlrpc.php Potential DDoS or brute force	DDoS Attack Brute-Force
🇩🇪 grassau.com	2026-05-28 10:09:43 (3 weeks ago)	(wordpress) Failed wordpress login from 82.96.169.172 (FR/France/Île-de-France/-/404031227.box.freep ... show more (wordpress) Failed wordpress login from 82.96.169.172 (FR/France/Île-de-France/-/404031227.box.freepro.com) show less	Brute-Force
🇺🇸 TPI-Abuse	2026-05-27 14:50:42 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 82.96.169.172 (404031227.box.freepro.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 10:50:35.438231 2026] [security2:error] [pid 1386:tid 1386] [client 82.96.169.172:58750] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 82.96.169.172 (+1 hits since last alert)\|pearlhomesfw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pearlhomesfw.com"] [uri "/xmlrpc.php"] [unique_id "ahcEuxb0TXHcACPJmDTnEQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-27 14:19:11 (3 weeks ago)	Attac	Brute-Force
🇩🇪 LRob.fr	2026-05-26 07:45:06 (4 weeks ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 192.141.106.200

🇧🇷 187.110.238.50

🇺🇸 172.234.218.210

🇺🇸 162.216.149.123

🇺🇦 128.0.104.39

🇨🇦 99.251.137.84

🇳🇱 91.92.40.233

🇳🇱 193.176.31.247

🇫🇮 147.185.133.186

🇺🇸 147.185.132.107

🇨🇳 125.93.252.89

🇮🇳 117.198.99.18

🇫🇷 91.196.152.112

🇺🇸 66.240.205.34

🇺🇸 66.132.224.27

🇺🇸 193.56.116.115

🇮🇷 185.180.131.9

🇺🇸 172.236.228.197

🇺🇸 147.185.132.111

🇺🇸 135.119.73.164