AbuseIPDB » 196.202.215.123

Check an IP Address, Domain Name, or Subnet

e.g. 3.236.234.223, microsoft.com, or 5.188.10.0/24

196.202.215.123 was found in our database!

This IP was reported 575 times. Confidence of Abuse is 100%: ?

100%

ISP	Telkom Kenya Ltd
Usage Type	Unknown
Hostname(s)	kifaru.telkom.co.ke
Domain Name	telkom.co.ke
Country	Kenya
City	Naivasha, Nakuru

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 196.202.215.123

Whois 196.202.215.123

IP Abuse Reports for 196.202.215.123:

This IP address has been reported a total of 575 times from 98 distinct sources. 196.202.215.123 was first reported on February 2nd 2021, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
Anonymous	20 May 2022	[Fri May 20 09:06:11.148042 2022] [fcgid:warn] [pid 27982:tid 140099543099136] [client 196.202.215.1 ... show more[Fri May 20 09:06:11.148042 2022] [fcgid:warn] [pid 27982:tid 140099543099136] [client 196.202.215.123:35797] mod_fcgid: stderr: WP User : www authentication failure \| IP : 196.202.215.123 \| URL https://www.hangar-mk.com/wp-admin/, referer: http://www.hangar-mk.com/wp-login.php [Fri May 20 09:06:18.054081 2022] [fcgid:warn] [pid 27982:tid 140100130293504] [client 196.202.215.123:35797] mod_fcgid: stderr: WP User : www authentication failure \| IP : 196.202.215.123 \| URL https://www.hangar-mk.com/wp-admin/, referer: http://www.hangar-mk.com/wp-login.php [Fri May 20 09:06:24.775861 2022] [fcgid:warn] [pid 27982:tid 140100507768576] [client 196.202.215.123:35797] mod_fcgid: stderr: WP User : www authentication failure \| IP : 196.202.215.123 \| URL https://www.hangar-mk.com/wp-admin/, referer: http://www.hangar-mk.com/wp-login.php ... show less	Brute-Force Web App Attack
nick	20 May 2022	196.202.215.123 - - [20/May/2022:08:51:56 +0200] "POST /wp-login.php HTTP/1.1" 200 14944 "http://dri ... show more196.202.215.123 - - [20/May/2022:08:51:56 +0200] "POST /wp-login.php HTTP/1.1" 200 14944 "http://drive-easy.nl/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 196.202.215.123 - - [20/May/2022:08:52:00 +0200] "POST /wp-login.php HTTP/1.1" 200 10211 "http://drive-easy.nl/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 196.202.215.123 - - [20/May/2022:08:52:01 +0200] "POST /wp-login.php HTTP/1.1" 200 10211 "http://drive-easy.nl/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 196.202.215.123 - - [20/May/2022:08:52:02 +0200] "POST /wp-login.php HTTP/1.1" 200 10211 "http://drive-easy.nl/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 196.202.215.123 - - [20/May/2022:08:52:03 +0200] "POST /wp-login.php HTTP/1.1" 200 10211 "http://drive-easy.nl/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" show less	Web App Attack
dsmidge	19 May 2022	eyga.net:443 196.202.215.123 - - [20/May/2022:04:29:58 +0200] "POST /wp-login.php HTTP/1.1" 200 1102 ... show moreeyga.net:443 196.202.215.123 - - [20/May/2022:04:29:58 +0200] "POST /wp-login.php HTTP/1.1" 200 11024 "http://eyga.net/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" eyga.net:443 196.202.215.123 - - [20/May/2022:04:29:58 +0200] "POST /wp-login.php HTTP/1.1" 200 6242 "http://eyga.net/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" eyga.net:443 196.202.215.123 - - [20/May/2022:04:29:59 +0200] "POST /wp-login.php HTTP/1.1" 200 6242 "http://eyga.net/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" eyga.net:443 196.202.215.123 - - [20/May/2022:04:30:00 +0200] "POST /wp-login.php HTTP/1.1" 200 6242 "http://eyga.net/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" eyga.net:443 196.202.215.123 - - [20/May/2022:04:30:00 +0200] "POST /wp-login.php HTTP/1.1" 200 6242 "http://eyga.net/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/ ... show less	Web App Attack
dbip	18 May 2022	196.202.215.123 - - [19/May/2022:05:27:17 +0200] "POST /wp-login.php HTTP/1.1" 200 8174 "http://mib- ... show more196.202.215.123 - - [19/May/2022:05:27:17 +0200] "POST /wp-login.php HTTP/1.1" 200 8174 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 196.202.215.123 - - [19/May/2022:05:27:18 +0200] "POST /wp-login.php HTTP/1.1" 200 8174 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 196.202.215.123 - - [19/May/2022:05:27:19 +0200] "POST /wp-login.php HTTP/1.1" 200 8174 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 196.202.215.123 - - [19/May/2022:05:27:20 +0200] "POST /wp-login.php HTTP/1.1" 200 8174 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 196.202.215.123 - - [19/May/2022:05:27:21 +0200] "POST /wp-login.php HTTP/1.1" 200 8174 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 ... show less	Brute-Force Web App Attack
MSZ	18 May 2022	Fail2Ban triggered by plesk-wordpress Thu 19 May 2022 02:23:30 AM CEST	Hacking Brute-Force Web App Attack
MSZ	18 May 2022	Fail2Ban triggered by plesk-wordpress Thu 19 May 2022 01:14:43 AM CEST	Hacking Brute-Force Web App Attack
MSZ	18 May 2022	Fail2Ban triggered by plesk-wordpress Wed 18 May 2022 08:48:08 PM CEST	Hacking Brute-Force Web App Attack
bastianjoel.de	18 May 2022	196.202.215.123 - - [18/May/2022:09:48:52 +0200] "POST /wp-login.php HTTP/1.0" 200 8908 "http://neu- ... show more196.202.215.123 - - [18/May/2022:09:48:52 +0200] "POST /wp-login.php HTTP/1.0" 200 8908 "http://neu-zeit-praxis.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 196.202.215.123 - - [18/May/2022:09:48:52 +0200] "POST /wp-login.php HTTP/1.0" 200 8908 "http://neu-zeit-praxis.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 196.202.215.123 - - [18/May/2022:09:48:53 +0200] "POST /wp-login.php HTTP/1.0" 200 8908 "http://neu-zeit-praxis.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 196.202.215.123 - - [18/May/2022:09:48:54 +0200] "POST /wp-login.php HTTP/1.0" 200 8908 "http://neu-zeit-praxis.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 196.202.215.123 - - [18/May/2022:09:48:55 +0200] "POST /wp-login.php HTTP/1.0" 200 8908 "http://neu-zeit-praxis.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" ... show less	Web App Attack
KIsmay	16 May 2022	WordPress Brute Force, 5 attempts	Brute-Force Web App Attack
MSZ	16 May 2022	Fail2Ban triggered by plesk-wordpress Mon 16 May 2022 11:29:40 PM CEST	Hacking Brute-Force Web App Attack
Danse	16 May 2022	(wordpress) Failed wordpress login from 196.202.215.123 (KE/Kenya/kifaru.telkom.co.ke): (CF_ENABLE)	Brute-Force
koji	15 May 2022		Web Spam Email Spam Blog Spam Bad Web Bot Web App Attack
NotCool	15 May 2022	(WPLOGIN) WP Login Attack 196.202.215.123 (KE/Kenya/kifaru.telkom.co.ke): 10 in the last 3600 secs; ... show more(WPLOGIN) WP Login Attack 196.202.215.123 (KE/Kenya/kifaru.telkom.co.ke): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER show less	Brute-Force
websase.com	15 May 2022	WordPress Login Brute Force Attacks	Brute-Force Web App Attack
Anonymous	14 May 2022	ft-1848-basketball.de 196.202.215.123 [15/May/2022:04:27:22 +0200] "POST /wp-login.php HTTP/1.1" 200 ... show moreft-1848-basketball.de 196.202.215.123 [15/May/2022:04:27:22 +0200] "POST /wp-login.php HTTP/1.1" 200 9732 "http://ft-1848-basketball.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" ft-1848-basketball.de 196.202.215.123 [15/May/2022:04:27:23 +0200] "POST /wp-login.php HTTP/1.1" 200 9732 "http://ft-1848-basketball.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" show less	Web App Attack