JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 176.98.42.216

176.98.42.216 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 60%: ?

60%

ISP	Netbudur Telekomunikasyon Limited Sirketi
Usage Type	Data Center/Web Hosting/Transit
ASN	AS202505
Hostname(s)	server.alikaraca.com.tr
Domain Name	netbudur.com
Country	🇹🇷 Turkey
City	Istanbul, Istanbul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 176.98.42.216

Whois 176.98.42.216

IP Abuse Reports for 176.98.42.216:

This IP address has been reported a total of 43 times from 11 distinct sources. 176.98.42.216 was first reported on May 18th 2026, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-11 03:14:15 (8 hours ago)	(mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in t ... show more (mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 23:14:11.545199 2026] [security2:error] [pid 27180:tid 27180] [client 176.98.42.216:38654] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.jennyfiore.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.jennyfiore.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiooA2thFBYFTN0GPscvDQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 00:12:31 (11 hours ago)	(mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in t ... show more (mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 20:12:23.307623 2026] [security2:error] [pid 376:tid 376] [client 176.98.42.216:50760] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.badgerkelley.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.badgerkelley.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ain9Z3QBxH77asp-v9wC8wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 17:47:43 (18 hours ago)	(mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in t ... show more (mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 13:47:35.106610 2026] [security2:error] [pid 11832:tid 11832] [client 176.98.42.216:60728] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.ftiptondds.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.ftiptondds.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aimjN7oPF8CL34jJT4-R3gAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-10 11:28:04 (1 day ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
🇺🇸 bigwavedave	2026-06-10 09:47:13 (1 day ago)	Wordpress Attack	Web App Attack
Anonymous	2026-06-09 14:29:53 (1 day ago)	[redacted] 176.98.42.216 - - [09/Jun/2026:16:29:48 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "M ... show more [redacted] 176.98.42.216 - - [09/Jun/2026:16:29:48 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" [redacted] 176.98.42.216 - - [09/Jun/2026:16:29:48 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:69.0) Gecko/20100101 Firefox/69.0" [redacted] 176.98.42.216 - - [09/Jun/2026:16:29:50 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:41.0) Gecko/20100101 Firefox/41.0" [redacted] 176.98.42.216 - - [09/Jun/2026:16:29:51 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" [redacted] 176.98.42.216 - - [09/Jun/2026:16:29:51 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:90.0) Gecko/20100101 Firefox/90.0" ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 05:01:56 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in t ... show more (mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 01:01:49.491568 2026] [security2:error] [pid 13192:tid 13192] [client 176.98.42.216:44764] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.midwayisland.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.midwayisland.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aieePcYyDr3748yKWjIe_wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 03:06:06 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in t ... show more (mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 23:05:59.038897 2026] [security2:error] [pid 12841:tid 12841] [client 176.98.42.216:34492] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.lesdaniels.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.lesdaniels.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiYxl-BK71e2Y7RL6IoQ1wAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 11:39:22 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in t ... show more (mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 07:39:14.086913 2026] [security2:error] [pid 1139:tid 1139] [client 176.98.42.216:54868] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.nextstepplus.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.nextstepplus.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aiQG4go_67VGur4OKcDltAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-04 22:46:40 (6 days ago)	Blocked by CSF 13 firewall - Rule: TR/Turkey/server.alikaraca.com.tr	Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 22:31:46 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in t ... show more (mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 18:31:42.026205 2026] [security2:error] [pid 14974:tid 14974] [client 176.98.42.216:36160] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.bzbdesigns.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bzbdesigns.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiH8zltoNbaOC7d4t5pndgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 20:33:27 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in t ... show more (mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 16:33:21.577988 2026] [security2:error] [pid 4065:tid 4065] [client 176.98.42.216:43288] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|imbrasacademic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "imbrasacademic.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiHhEWb2LY2G_Jj9tsmkcgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 14:54:59 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in t ... show more (mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 10:54:54.577965 2026] [security2:error] [pid 14434:tid 14434] [client 176.98.42.216:36886] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.csm-dtc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.csm-dtc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiGRvpQ1M3IXmzWb8voYWwAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 01:40:35 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in t ... show more (mod_security) mod_security (id:225170) triggered by 176.98.42.216 (server.alikaraca.com.tr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 21:40:26.984311 2026] [security2:error] [pid 29260:tid 29260] [client 176.98.42.216:59564] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.ideaofauniversity.website\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.ideaofauniversity.website"] [uri "/wp-json/wp/v2/users"] [unique_id "aiDXij1XPruVs-vIv5J1JQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-04 01:36:02 (1 week ago)	[redacted] 176.98.42.216 - - [04/Jun/2026:03:35:56 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "M ... show more [redacted] 176.98.42.216 - - [04/Jun/2026:03:35:56 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:48.0) Gecko/20100101 Firefox/48.0" [redacted] 176.98.42.216 - - [04/Jun/2026:03:35:57 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0" [redacted] 176.98.42.216 - - [04/Jun/2026:03:35:57 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:45.0) Gecko/20100101 Firefox/45.0" [redacted] 176.98.42.216 - - [04/Jun/2026:03:35:57 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" [redacted] 176.98.42.216 - - [04/Jun/2026:03:35:57 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:52.0) Gecko/20100101 Firefox/52.0" [redacted] 176.98.42.216 - - [04/Jun/2026:03:35:57 +0200] "POST /xmlrpc.php HTTP/1 ... show less	Hacking Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 202.47.62.83

🇮🇳 182.78.131.206

🇮🇳 182.18.180.44

🇦🇺 149.28.167.253

🇺🇸 91.230.168.137

🇮🇳 64.227.177.1

🇳🇱 45.148.10.141

🇺🇸 35.239.3.17

🇮🇷 2.180.251.136

🇨🇳 1.193.63.81

🇺🇸 2605:a141:2314:5135::1

🇳🇱 205.147.16.146

🇨🇳 180.213.44.242

🇫🇮 147.185.133.10

🇨🇳 124.223.3.35

🇮🇩 103.167.11.244

🇷🇺 77.37.162.117

🇺🇸 71.91.141.100

🇫🇷 51.159.104.219

🇸🇬 47.79.200.145