AbuseIPDB » 196.39.114.250
196.39.114.250 was found in our database!
This IP was reported 6 times. Confidence of
Abuse
is 24% : ?
ISP
Dimension Data
Usage Type
Fixed Line ISP
ASN
AS20011
Hostname(s)
196-39-114-250.ftth.web.africa
Domain Name
global.ntt
Country
πΏπ¦
South Africa
City
Johannesburg, Gauteng
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 196.39.114.250 :
This IP address has been reported a total of
6
times from
5 distinct
sources.
196.39.114.250 was first reported on
June 15th 2026 , and the most recent report was
3 weeks ago .
Old Reports:
The most recent abuse report for this IP address is from
3 weeks ago
. It is possible that this IP is no longer involved in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
π«π·
dynamix
2026-06-19 13:09:50
(3 weeks ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-19 09:30:35
(3 weeks ago)
(mod_security) mod_security (id:240335) triggered by 196.39.114.250 (196-39-114-250.ftth.web.africa) ...
show more
(mod_security) mod_security (id:240335) triggered by 196.39.114.250 (196-39-114-250.ftth.web.africa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 05:30:29.602856 2026] [security2:error] [pid 26934:tid 26934] [client 196.39.114.250:52914] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 196.39.114.250 (+1 hits since last alert)|applemaccomputerconsulting.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "applemaccomputerconsulting.com"] [uri "/xmlrpc.php"] [unique_id "ajUMNQJW4dQSwXChN4Xd2AAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
4server
2026-06-18 11:38:34
(3 weeks ago)
[ThuJun1813:38:31.1619462026][security2:error][pid609141:tid609167][client196.39.114.250:0]ModSecuri ...
show more
[ThuJun1813:38:31.1619462026][security2:error][pid609141:tid609167][client196.39.114.250:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"beyondsecurity.ch\"][uri\"/xmlrpc.php\"][unique_id\"ajPYt8P0KP4A_-UR21mjNwAAABc\"]
show less
Port Scan
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-17 13:38:26
(3 weeks ago)
(mod_security) mod_security (id:240335) triggered by 196.39.114.250 (196-39-114-250.ftth.web.africa) ...
show more
(mod_security) mod_security (id:240335) triggered by 196.39.114.250 (196-39-114-250.ftth.web.africa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 09:38:21.265181 2026] [security2:error] [pid 18470:tid 18470] [client 196.39.114.250:65497] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 196.39.114.250 (+1 hits since last alert)|concentricsteel.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "concentricsteel.com"] [uri "/xmlrpc.php"] [unique_id "ajKjTXDiZ7k1k--56KcMOQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
masterguru
2026-06-16 11:24:44
(3 weeks ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)
Hacking
Anonymous
2026-06-15 18:30:43
(3 weeks ago)
(wordpress) Failed wordpress login from 196.39.114.250 (196-39-114-250.ftth.web.africa)
Brute-Force
Showing 1 to
6
of 6 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: