JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 83.215.167.88

83.215.167.88 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 65%: ?

65%

ISP	SALZBURG AG provides Internet-Services
Usage Type	Fixed Line ISP
ASN	AS8445
Hostname(s)	83-215-167-88.dyn.cablelink.at
Domain Name	salzburg-ag.at
Country	🇦🇹 Austria
City	Salzburg, State of Salzburg

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 83.215.167.88

Whois 83.215.167.88

IP Abuse Reports for 83.215.167.88:

This IP address has been reported a total of 17 times from 12 distinct sources. 83.215.167.88 was first reported on June 12th 2026, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-22 18:53:10 (13 hours ago)	(mod_security) mod_security (id:225170) triggered by 83.215.167.88 (83-215-167-88.dyn.cablelink.at): ... show more (mod_security) mod_security (id:225170) triggered by 83.215.167.88 (83-215-167-88.dyn.cablelink.at): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 14:53:06.664536 2026] [security2:error] [pid 15690:tid 15690] [client 83.215.167.88:58005] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|drdot.xyz\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "drdot.xyz"] [uri "/wp-json/wp/v2/users"] [unique_id "ajmEkhD6dMl2OHqdW4Bv3QAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 tecnoacquisti.com	2026-06-20 23:25:35 (2 days ago)	PrestaShop Security Module: Calls WordPress paths probing known vulnerabilities	Web App Attack
Anonymous	2026-06-20 22:02:09 (2 days ago)	[redacted] 83.215.167.88 - - [21/Jun/2026:00:01:00 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "M ... show more [redacted] 83.215.167.88 - - [21/Jun/2026:00:01:00 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Mozilla/5.0 (Linux; Android 10; x86) AppleWebKit/537.36 (KHTML, like Gecko) Safari/13.0.0.0 Safari/537.36" [redacted] 83.215.167.88 - - [21/Jun/2026:00:01:04 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/15.0.0.0 Safari/537.36" [redacted] 83.215.167.88 - - [21/Jun/2026:00:01:30 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Safari/537.36" [redacted] 83.215.167.88 - - [21/Jun/2026:00:01:34 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/84.0.0.0 Safari/537.36" [redacted] 83.215.167.88 - - [21/Jun/2026:00:02:05 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Mozilla/5.0 (Windows NT 10.0; x86) AppleWebKi ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 17:22:25 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 83.215.167.88 (83-215-167-88.dyn.cablelink.at): ... show more (mod_security) mod_security (id:225170) triggered by 83.215.167.88 (83-215-167-88.dyn.cablelink.at): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 13:22:18.985352 2026] [security2:error] [pid 15522:tid 15522] [client 83.215.167.88:60418] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mkdesignndetailing.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mkdesignndetailing.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajbMShtpZRFoTGT9qLtoNQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-20 16:19:35 (2 days ago)	[ssd1.kdns.gr] httpd-xmlrpc-post: sites=me-meraki.gr; logs=/var/log/httpd/domains/me-meraki.gr.log; ... show more [ssd1.kdns.gr] httpd-xmlrpc-post: sites=me-meraki.gr; logs=/var/log/httpd/domains/me-meraki.gr.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
🇳🇱 wlt-blocker	2026-06-19 22:09:32 (3 days ago)	Unauthorized access to webpage admin	Web App Attack
Anonymous	2026-06-19 19:22:31 (3 days ago)	Web attack blocked by Wordfence on heemkundesjin.nl (1 hit). Reported by CRMON.	Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 19:11:32 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 83.215.167.88 (83-215-167-88.dyn.cablelink.at): ... show more (mod_security) mod_security (id:225170) triggered by 83.215.167.88 (83-215-167-88.dyn.cablelink.at): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 15:11:26.318317 2026] [security2:error] [pid 20199:tid 20199] [client 83.215.167.88:55800] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ibermar.info\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ibermar.info"] [uri "/wp-json/wp/v2/users"] [unique_id "ajWUXuH7qo---mMh2zjnCQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Bedios GmbH	2026-06-18 18:52:56 (4 days ago)	Wordpress hacking attempt	Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 18:07:01 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 83.215.167.88 (83-215-167-88.dyn.cablelink.at): ... show more (mod_security) mod_security (id:225170) triggered by 83.215.167.88 (83-215-167-88.dyn.cablelink.at): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 14:06:55.889407 2026] [security2:error] [pid 30926:tid 30926] [client 83.215.167.88:57545] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|proyectomanhattan.info\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "proyectomanhattan.info"] [uri "/wp-json/wp/v2/users"] [unique_id "ajLiPyO7k2QlK-rBjP77xQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 omartin	2026-06-17 18:01:16 (5 days ago)	Critical Vulnerability Scan detected	Hacking Brute-Force Exploited Host Web App Attack
🇬🇧 consul.to	2026-06-16 16:44:19 (6 days ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 19:45:18 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 83.215.167.88 (83-215-167-88.dyn.cablelink.at): ... show more (mod_security) mod_security (id:225170) triggered by 83.215.167.88 (83-215-167-88.dyn.cablelink.at): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 15:45:11.945771 2026] [security2:error] [pid 30230:tid 30230] [client 83.215.167.88:58534] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bickleton.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bickleton.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aixhx1orREPtCUWS6o8CHAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-12 19:38:27 (1 week ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 Victor López	2026-06-12 19:19:50 (1 week ago)	babystudio4d.com 83.215.167.88 - - [12/Jun/2026:14:17:04 -0500] "POST /xmlrpc.php HTTP/1.1" 200 415 ... show more babystudio4d.com 83.215.167.88 - - [12/Jun/2026:14:17:04 -0500] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (Windows NT 6.2; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/68.0.0.0 Safari/537.36" babystudio4d.com 83.215.167.88 - - [12/Jun/2026:14:19:21 -0500] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.0.0 Safari/537.36" babystudio4d.com 83.215.167.88 - - [12/Jun/2026:14:19:50 -0500] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (Windows NT 10.0; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.0.0 Safari/537.36" ... show less	Hacking Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2a09:bac5:6d4f:323c::501:28

🇲🇦 154.146.238.122

🇺🇸 144.172.108.237

🇷🇺 91.218.86.2

🇫🇷 85.217.140.40

🇱🇹 45.227.254.170

🇮🇳 42.106.143.91

🇩🇪 193.124.20.237

🇵🇪 186.148.196.26

🇺🇸 178.128.1.119

🇺🇸 162.216.149.232

🇩🇪 89.58.31.106

🇫🇷 85.217.140.2

🇹🇷 78.186.142.220

🇸🇬 47.128.123.196

🇺🇸 40.119.24.130

🇺🇸 37.123.193.103

🇺🇸 195.184.76.169

🇺🇸 162.216.150.15

🇩🇪 159.223.18.25