JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 196.218.83.9

196.218.83.9 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 83%: ?

83%

ISP	TE Data
Usage Type	Fixed Line ISP
ASN	AS8452
Domain Name	tedata.net
Country	🇪🇬 Egypt
City	Giza, Giza

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 196.218.83.9

Whois 196.218.83.9

IP Abuse Reports for 196.218.83.9:

This IP address has been reported a total of 35 times from 15 distinct sources. 196.218.83.9 was first reported on April 21st 2026, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-18 14:34:58 (4 hours ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 DEV-DNS	2026-06-18 12:02:49 (7 hours ago)	(wordpress) Failed wordpress login from 196.218.83.9 (EG/Egypt/-/-/-/[redacted])	Brute-Force
🇺🇸 TPI-Abuse	2026-06-18 04:29:22 (14 hours ago)	(mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 00:29:18.720802 2026] [security2:error] [pid 10507:tid 10507] [client 196.218.83.9:25424] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.casapapayasanmiguel.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.casapapayasanmiguel.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajN0Hg1fkgFFXKKPPoqhBwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-17 21:13:56 (21 hours ago)	[redacted] 196.218.83.9 - - [17/Jun/2026:23:13:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mo ... show more [redacted] 196.218.83.9 - - [17/Jun/2026:23:13:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:69.0) Gecko/20100101 Firefox/69.0" [redacted] 196.218.83.9 - - [17/Jun/2026:23:13:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:84.0) Gecko/20100101 Firefox/84.0" [redacted] 196.218.83.9 - - [17/Jun/2026:23:13:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:48.0) Gecko/20100101 Firefox/48.0" [redacted] 196.218.83.9 - - [17/Jun/2026:23:13:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:88.0) Gecko/20100101 Firefox/88.0" [redacted] 196.218.83.9 - - [17/Jun/2026:23:13:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" apollonia-barba ... show less	Hacking Web App Attack
Anonymous	2026-06-17 15:08:40 (1 day ago)	Attac	Brute-Force
🇳🇱 middelkoopcc	2026-06-17 14:05:06 (1 day ago)	2026-06-17 16:01:32 WordPress login error from 196.218.83.9: incorrect_password && 2026-06-17 16:01: ... show more 2026-06-17 16:01:32 WordPress login error from 196.218.83.9: incorrect_password && 2026-06-17 16:01:32 WordPress login error from 196.218.83.9: incorrect_password && 2026-06-17 16:01:32 WordPress login error from 196.218.83.9: incorrect_password && 189 more within 20 minutes show less	Brute-Force
🇫🇷 dynamix	2026-06-17 11:10:50 (1 day ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-06-17 03:40:04 (1 day ago)	Bot / scanning and/or hacking attempts: GET /?author=1 HTTP/1.1, GET / HTTP/1.1, GET /wp-json/wp/v2/ ... show more Bot / scanning and/or hacking attempts: GET /?author=1 HTTP/1.1, GET / HTTP/1.1, GET /wp-json/wp/v2/users HTTP/1.1, POST /xmlrpc.php HTTP/1.1, POST /wp-login.php HTTP/1.1, GET /author/admin/ HTTP/1.1, GET /?author=2 HTTP/1.1, GET /?author=3 HTTP/1.1 show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 03:24:20 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 23:24:13.305672 2026] [security2:error] [pid 14901:tid 14901] [client 196.218.83.9:58822] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.holgerfeld.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.holgerfeld.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajITXf4srQeMgzZem8JX6gAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 14:59:56 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 10:59:49.016300 2026] [security2:error] [pid 30249:tid 30249] [client 196.218.83.9:11186] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.fatcaverecords.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.fatcaverecords.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajFk5f3tORwMFMSnv67VXwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-16 14:07:11 (2 days ago)	CMS (WordPress or Joomla) brute force attempt.	Brute-Force
🇺🇸 TPI-Abuse	2026-06-16 12:39:12 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 08:39:06.353690 2026] [security2:error] [pid 10252:tid 10252] [client 196.218.83.9:25380] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.bolivarbulletintimes.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bolivarbulletintimes.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajFD6qHVlhZnkVxFPlxHnQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 11:37:32 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 07:37:26.612809 2026] [security2:error] [pid 4135:tid 4135] [client 196.218.83.9:55334] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|vintageamptubes.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "vintageamptubes.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajE1duKycxTYOvJy-WlXlQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 09:39:50 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 05:39:41.806676 2026] [security2:error] [pid 15359:tid 15359] [client 196.218.83.9:17856] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.magacine.tv\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.magacine.tv"] [uri "/wp-json/wp/v2/users"] [unique_id "ajEZ3SvdB-287E5hQNEuUAAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 08:09:18 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 196.218.83.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 04:09:09.360067 2026] [security2:error] [pid 19295:tid 19295] [client 196.218.83.9:44086] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.greensandbeans.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.greensandbeans.us"] [uri "/wp-json/wp/v2/users"] [unique_id "ajEEpcT3qNpUiXMQF-8DQQAAABc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.155.101

🇧🇷 187.115.144.103

🇳🇱 134.209.205.206

🇺🇸 20.169.107.137

🇷🇺 194.190.153.226

🇺🇸 172.203.224.88

🇺🇸 172.191.171.80

🇨🇳 101.126.89.35

🇨🇳 220.154.134.180

🇨🇴 186.148.178.214

🇨🇴 186.31.95.163

🇺🇸 66.132.172.251

🇨🇦 20.151.2.122

🇰🇷 222.239.251.12

🇹🇼 198.235.24.97

🇺🇸 147.185.132.61

🇨🇳 121.24.31.183

🇨🇳 115.56.238.174

🇨🇳 114.55.14.48

🇨🇳 112.12.187.135