JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 196.196.53.133

196.196.53.133 was found in our database!

This IP was reported 261 times. Confidence of Abuse is 90%: ?

90%

ISP	SA
Usage Type	Data Center/Web Hosting/Transit
ASN	AS41564
Domain Name	fibergrid.co.za
Country	🇱🇻 Latvia
City	Riga, Riga

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 196.196.53.133

Whois 196.196.53.133

IP Abuse Reports for 196.196.53.133:

This IP address has been reported a total of 261 times from 68 distinct sources. 196.196.53.133 was first reported on December 5th 2022, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SpaceHost-Server	2026-06-14 02:48:18 (6 hours ago)	196.196.53.133 - - [14/Jun/2026:04:48:16 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6368 "-" "Mozilla/5. ... show more 196.196.53.133 - - [14/Jun/2026:04:48:16 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6368 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" 196.196.53.133 - - [14/Jun/2026:04:48:17 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6368 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 196.196.53.133 - - [14/Jun/2026:04:48:17 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6368 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇺🇸 TAY	2026-06-13 23:54:01 (9 hours ago)	196.196.53.133 - - [14/Jun/2026:07:53:58 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6129 "-" "Mozilla/5. ... show more 196.196.53.133 - - [14/Jun/2026:07:53:58 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6129 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 196.196.53.133 - - [14/Jun/2026:07:53:58 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6129 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 196.196.53.133 - - [14/Jun/2026:07:53:58 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6129 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" ... show less	Brute-Force
🇬🇧 noise.agency	2026-06-13 16:03:34 (16 hours ago)	(wordpress) Failed wordpress login from 196.196.53.133 (LV/Latvia/-)	Brute-Force
🇧🇷 Peregrine	2026-06-13 16:01:26 (16 hours ago)	Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 196.196.53.133 162.158.48.160 - - [13/Jun/2026:13:0 ... show more Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 196.196.53.133 162.158.48.160 - - [13/Jun/2026:13:01:16 -0300] "GET /xmlrpc.php HTTP/1.1" 404 18193 show less	Bad Web Bot
Anonymous	2026-06-13 15:26:31 (17 hours ago)	(wordpress) Failed wordpress login from 196.196.53.133 (LV/Latvia/-)	Brute-Force
Anonymous	2026-06-13 13:54:26 (18 hours ago)	Attac	Brute-Force
🇫🇷 dynamix	2026-06-13 10:07:32 (22 hours ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇬🇧 BRHosting	2026-06-13 09:45:02 (23 hours ago)	Wordpress brute force attack for login credentials (eg xmlrc.php or wp-login.php)	Brute-Force Web App Attack
🇫🇷 Kenshin869	2026-06-13 08:33:48 (1 day ago)	Wordpress unauthorized access attempt	Brute-Force
🇫🇷 francoisunix	2026-06-13 06:28:03 (1 day ago)	196.196.53.133 - - [13/Jun/2026:08:27:04 +0200] "POST /xmlrpc.php HTTP/1.1" 401 422 "-" "Mozilla/5.0 ... show more 196.196.53.133 - - [13/Jun/2026:08:27:04 +0200] "POST /xmlrpc.php HTTP/1.1" 401 422 "-" "Mozilla/5.0 (Linux; Android 14; SM-S918B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Mobile Safari/537.36" "196.196.53.133" "www.eco-conscient.com" sn="www.eco-conscient.com" rt=1.252 ua="unix:/var/run/php/php8.2-fpm.sock" us="401" ut="1.252" ul="427" cs=-cf_country="LV" cf_region="Riga" cf_city="Riga"rip=127.0.0.1 cf_ip=196.196.53.133 xff="196.196.53.133" p_xff="196.196.53.133, 196.196.53.133" 196.196.53.133 - - [13/Jun/2026:08:27:08 +0200] "POST /xmlrpc.php HTTP/1.1" 401 422 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/120.0.2210.91" "196.196.53.133" "www.eco-conscient.com" sn="www.eco-conscient.com" rt=0.607 ua="unix:/var/run/php/php8.2-fpm.sock" us="401" ut="0.607" ul="427" cs=-cf_country="LV" cf_region="Riga" cf_city="Riga"rip=127.0.0.1 cf_ip=196.196.53.133 xff="196.196.53.133" p_xff="196.196.53.133, 196.196.53.133" 196.196.53.133 - ... show less	Web App Attack
🇧🇷 ICS Labs	2026-06-10 17:19:59 (3 days ago)	ICS Labs identified 196.196.53.133 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇩🇪 EinfxchFinn	2026-06-09 17:55:02 (4 days ago)	Unauthorized connection attempt to port 8080 from 196.196.53.133	Port Scan
Anonymous	2026-06-07 02:46:08 (1 week ago)	Failed Wordpress Logins	Web App Attack
🇩🇪 dbmwebdesign	2026-06-01 17:00:24 (1 week ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇬🇧 consul.to	2026-06-01 15:24:02 (1 week ago)	Web attack/malicious scanning detected	Web App Attack

Showing 1 to 15 of 261 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 109.105.209.7

🇮🇷 94.183.133.213

🇺🇸 195.184.76.106

🇨🇳 150.255.100.233

🇺🇸 104.22.1.140

🇻🇳 103.82.21.8

🇯🇴 94.249.76.238

🇳🇱 45.148.10.151

🇮🇪 3.254.141.89

🇰🇷 1.214.42.172

🇧🇷 179.170.9.210

🇭🇰 154.221.20.92

🇻🇳 116.118.44.131

🇸🇬 47.236.22.81

🇱🇹 46.29.234.127

🇩🇪 23.189.104.202

🇦🇷 181.26.189.255

🇩🇪 141.98.153.128

🇰🇷 116.34.14.135

🇺🇸 104.238.110.208