JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 168.196.222.34

168.196.222.34 was found in our database!

This IP was reported 70 times. Confidence of Abuse is 100%: ?

100%

ISP	W.E. SPEEDFIBRA LTDA
Usage Type	Fixed Line ISP
ASN	AS265462
Hostname(s)	static-34.222.196.168.speednetbr.com.br.com.br
Domain Name	vibraenergia.com.br
Country	🇧🇷 Brazil
City	Abreu e Lima, Pernambuco

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 168.196.222.34

Whois 168.196.222.34

IP Abuse Reports for 168.196.222.34:

This IP address has been reported a total of 70 times from 34 distinct sources. 168.196.222.34 was first reported on November 15th 2023, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 screwlooseit.com.au	2026-06-19 06:15:44 (10 hours ago)	Blocked by CSF 13 firewall - Rule: XMLRPC BR/Brazil/static-34.222.196.168.speednetbr.com.br.com.br	Web App Attack
🇩🇪 rh24	2026-06-18 23:43:58 (16 hours ago)	(xmlrpc_405) XMLRPC-Bot 405 168.196.222.34 (BR/Brazil/static-34.222.196.168.speednetbr.com.br.com.br ... show more (xmlrpc_405) XMLRPC-Bot 405 168.196.222.34 (BR/Brazil/static-34.222.196.168.speednetbr.com.br.com.br) show less	Hacking
🇩🇪 dbmwebdesign	2026-06-17 09:30:33 (2 days ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-16 20:55:09 (2 days ago)	Blocked by CSF 13 firewall - Rule: XMLRPC BR/Brazil/static-34.222.196.168.speednetbr.com.br.com.br	Web App Attack
🇫🇷 SpaceHost-Server	2026-06-15 23:05:03 (3 days ago)	168.196.222.34 - - [16/Jun/2026:01:04:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Jetpack by ... show more 168.196.222.34 - - [16/Jun/2026:01:04:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)" 168.196.222.34 - - [16/Jun/2026:01:04:51 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Jetpack/12.0; WordPress/6.2; http://site36321337.com" 168.196.222.34 - - [16/Jun/2026:01:05:02 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.1)" show less	Hacking Web App Attack
Anonymous	2026-06-15 18:10:57 (3 days ago)	2026-06-15T20:10:56.231225+02:00 aion wordpress[525918]: XML-RPC authentication attempt for unknown ... show more 2026-06-15T20:10:56.231225+02:00 aion wordpress[525918]: XML-RPC authentication attempt for unknown user nanosrvr from 168.196.222.34 ... show less	Hacking Brute-Force
🇫🇷 dynamix	2026-06-14 13:05:32 (5 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇩🇪 BlueWire Hosting	2026-06-12 19:51:16 (6 days ago)	Probing websites for vulnerabilities	Web App Attack
Anonymous	2026-06-12 11:00:11 (1 week ago)	Attac	Brute-Force
🇩🇪 rh24	2026-06-10 08:08:44 (1 week ago)	(wordpress) Failed wordpress login from 168.196.222.34 (BR/Brazil/static-34.222.196.168.speednetbr.c ... show more (wordpress) Failed wordpress login from 168.196.222.34 (BR/Brazil/static-34.222.196.168.speednetbr.com.br.com.br): (CF_ENABLE) show less	Brute-Force
🇦🇺 QT	2026-06-09 23:48:54 (1 week ago)	Unauthorised WordPress admin login attempted at 2026-06-10 09:48:53 +1000	Web App Attack
Anonymous	2026-06-09 20:23:24 (1 week ago)	168.196.222.34 - - [09/Jun/2026:22:23:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.c ... show more 168.196.222.34 - - [09/Jun/2026:22:23:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com" 168.196.222.34 - - [09/Jun/2026:22:23:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com" 168.196.222.34 - - [09/Jun/2026:22:23:12 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack/12.0; WordPress/6.2; http://site53384983.com" 168.196.222.34 - - [09/Jun/2026:22:23:13 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/12.0; WordPress/6.2; http://site53384983.com" 168.196.222.34 - - [09/Jun/2026:22:23:23 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack/12.0; WordPress/6.2; http://site27502985.com" ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 15:08:59 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 168.196.222.34 (static-34.222.196.168.speednetb ... show more (mod_security) mod_security (id:240335) triggered by 168.196.222.34 (static-34.222.196.168.speednetbr.com.br.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 11:08:55.012093 2026] [security2:error] [pid 15625:tid 15625] [client 168.196.222.34:56284] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 168.196.222.34 (+1 hits since last alert)\|cosplayculture.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "cosplayculture.com"] [uri "/xmlrpc.php"] [unique_id "aigsh3j4-Nelg6uisk3DUwAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 konseptit	2026-06-09 14:36:05 (1 week ago)	(wordpress) Failed wordpress login from 168.196.222.34 (BR/Brazil/static-34.222.196.168.speednetbr.c ... show more (wordpress) Failed wordpress login from 168.196.222.34 (BR/Brazil/static-34.222.196.168.speednetbr.com.br.com.br) show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-09 13:15:40 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 168.196.222.34 (static-34.222.196.168.speednetb ... show more (mod_security) mod_security (id:240335) triggered by 168.196.222.34 (static-34.222.196.168.speednetbr.com.br.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:15:36.644063 2026] [security2:error] [pid 29920:tid 29920] [client 168.196.222.34:64921] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 168.196.222.34 (+1 hits since last alert)\|equipoperu.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "equipoperu.org"] [uri "/xmlrpc.php"] [unique_id "aigR-NuYFs4BP07nGbXBJgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 70 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.92

🇹🇼 198.235.24.67

🇸🇬 188.166.251.103

🇺🇸 172.86.114.38

🇺🇸 154.197.57.175

🇮🇳 103.180.212.135

🇺🇸 69.216.101.255

🇺🇸 50.87.144.169

🇸🇬 43.173.179.125

🇬🇧 35.203.211.92

🇨🇳 223.167.205.248

🇰🇷 221.163.5.228

🇧🇪 198.235.24.255

🇧🇪 198.235.24.254

🇹🇼 198.235.24.47

🇩🇪 185.242.3.195

🇺🇸 47.224.145.233

🇳🇱 45.148.10.147

🇻🇳 27.79.7.135

🇺🇸 205.210.31.9