JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 196.207.227.48

196.207.227.48 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 12%: ?

12%

ISP	SONATEL Societe Nationale Des Telecommunications Du Senegal
Usage Type	Fixed Line ISP
ASN	AS8346
Domain Name	sonatel.sn
Country	🇸🇳 Senegal
City	Dakar, Dakar

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 196.207.227.48

Whois 196.207.227.48

IP Abuse Reports for 196.207.227.48:

This IP address has been reported a total of 22 times from 12 distinct sources. 196.207.227.48 was first reported on January 5th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-14 14:09:59 (1 week ago)	Blocked by UFW (TCP on 9101) Source port: 54574 TTL: 110 Packet length: 52 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9101) Source port: 54574 TTL: 110 Packet length: 52 TOS: 0x08 This report (for 196.207.227.48) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-06-13 21:25:59 (1 week ago)	Blocked by UFW (TCP on 9101) Source port: 42698 TTL: 110 Packet length: 52 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9101) Source port: 42698 TTL: 110 Packet length: 52 TOS: 0x08 This report (for 196.207.227.48) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 SMARTNET	2026-05-27 06:03:53 (3 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 22ada211-5b5c-463a-b46f-60fd11dc639d	DDoS Attack
Anonymous	2026-04-01 22:00:23 (2 months ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇫🇷 ingroscart.it	2026-02-28 03:47:30 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 196.207.227.48 (SN/Senegal/-)	SQL Injection
🇺🇸 TPI-Abuse	2026-02-18 00:21:58 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 196.207.227.48 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 196.207.227.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 19:21:50.368177 2026] [security2:error] [pid 20389:tid 20406] [client 196.207.227.48:47781] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|digital4z.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "digital4z.com"] [uri "/wp-content/plugins/jetpack/modules/shortcodes/css/rtl/WS_FTP.LOG"] [unique_id "aZUGHhy8viWLDppMHnsVfAAAAE4"], referer: https://digital4z.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-01-21 14:41:48 (5 months ago)	Blocked by UFW (TCP on 9101) Source port: 30926 TTL: 110 Packet length: 52 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9101) Source port: 30926 TTL: 110 Packet length: 52 TOS: 0x08 This report (for 196.207.227.48) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 TPI-Abuse	2026-01-07 00:42:30 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 196.207.227.48 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 196.207.227.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 06 19:42:27.210610 2026] [security2:error] [pid 24731:tid 24731] [client 196.207.227.48:41550] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.urlpick.com\|F\|2"] [data ".adoptsearch.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.urlpick.com"] [uri "/http:/www.adoptsearch.com"] [unique_id "aV2r81yIq8j4Vzyug_CyNwAAABU"], referer: https://www.urlpick.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-01-03 22:27:59 (5 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.03 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.03 is noted in report timestamp show less	Hacking Brute-Force
🇨🇦 polycoda	2026-01-03 11:08:13 (5 months ago)	🥶 Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27	DDoS Attack
Anonymous	2025-12-02 20:30:34 (6 months ago)	botnet	DDoS Attack
Anonymous	2025-11-25 06:13:10 (6 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-17 16:02:35 (7 months ago)	scanning http requests from known botnet	Web App Attack
🇸🇬 mypatricks	2025-10-11 08:23:03 (8 months ago)	196.207.227.48 \| Port: 61498 \| DNS: 196.207.227.48 2025-10-11T16:23:02+08:00 Africa/Dakar \| Bad Beha ... show more 196.207.227.48 \| Port: 61498 \| DNS: 196.207.227.48 2025-10-11T16:23:02+08:00 Africa/Dakar \| Bad Behavior Activity \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 HTTP/1.1 443 GET \| URL: /shop/compare/?1737158939= \| Ref: - \| Country: SN/Senegal/+00:00 IP City: Dakar 98ccf3fcee48c79d-DKR/Dakar, Senegal 1 hits/0 secs Robots 2 show less	Web Spam Blog Spam Brute-Force Exploited Host Web App Attack
🇺🇸 xmission.com	2025-10-01 15:12:44 (8 months ago)	Blocked by UFW (TCP on 9101) Source port: 10155 TTL: 109 Packet length: 52 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9101) Source port: 10155 TTL: 109 Packet length: 52 TOS: 0x08 This report (for 196.207.227.48) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 172.70.108.140

🇻🇳 163.223.210.17

🇪🇸 85.87.102.114

🇨🇳 220.181.51.85

🇧🇷 205.210.31.233

🇲🇽 187.144.69.154

🇿🇦 154.117.188.39

🇷🇺 152.89.134.156

🇭🇰 118.193.37.50

🇷🇺 91.215.85.193

🇬🇧 86.3.167.215

🇨🇦 64.93.107.176

🇧🇷 45.226.118.54

🇨🇴 200.10.29.236

🇧🇷 179.51.153.37

🇲🇽 177.249.8.195

🇯🇵 160.251.197.41

🇺🇸 136.144.35.249

🇺🇸 68.183.50.215

🇯🇲 67.213.149.62