JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 86.121.48.96

86.121.48.96 was found in our database!

This IP was reported 219 times. Confidence of Abuse is 100%: ?

100%

ISP	RCS & RDS Business
Usage Type	Fixed Line ISP
ASN	AS8708
Hostname(s)	ns.atomweb.ro
Domain Name	digi.ro
Country	🇷🇴 Romania
City	Constanta, Constanta County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 86.121.48.96

Whois 86.121.48.96

IP Abuse Reports for 86.121.48.96:

This IP address has been reported a total of 219 times from 106 distinct sources. 86.121.48.96 was first reported on May 19th 2026, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-12 04:17:47 (8 hours ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇫🇷 tecnicorioja	2026-06-11 22:01:47 (14 hours ago)	wp-login attack [11/Jun/2026:15:17:31	Brute-Force Web App Attack
🇨🇦 KIsmay	2026-06-11 16:06:08 (20 hours ago)	Jun 11 06:08:53 ismay WPAudit[1386456]: 86.121.48.96 christinesutherland.com "Mozilla/5.0 (X11; Ubun ... show more Jun 11 06:08:53 ismay WPAudit[1386456]: 86.121.48.96 christinesutherland.com "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" secure-by-design:Secure-by-design7 FAIL Jun 11 07:59:14 ismay WPAudit[1395685]: 86.121.48.96 ismay.ca "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" Sir:Sir111 FAIL Jun 11 08:38:24 ismay WPAudit[1395713]: 86.121.48.96 www.ismay.ca "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" admin:admin123. FAIL Jun 11 08:52:47 ismay WPAudit[1400590]: 86.121.48.96 christinesutherland.com "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" wyatt:wyatt18 FAIL Jun 11 09:06:07 ismay WPAudit[1400590]: 86.121.48.96 christinesutherland.com "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" wyatt:1234 FAIL ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 16:04:32 (20 hours ago)	(mod_security) mod_security (id:225170) triggered by 86.121.48.96 (ns.atomweb.ro): 1 in the last 300 ... show more (mod_security) mod_security (id:225170) triggered by 86.121.48.96 (ns.atomweb.ro): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 12:04:26.657931 2026] [security2:error] [pid 21270:tid 21270] [client 86.121.48.96:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kirklandhighlands.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kirklandhighlands.org"] [uri "/wp-json/wp/v2/users/me"] [unique_id "airciu_0x5-dYP0nPo4HBgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TAY	2026-06-11 16:03:28 (20 hours ago)	86.121.48.96 - - [11/Jun/2026:23:58:32 +0800] "POST /wp-login.php HTTP/1.1" 200 3311 "https://envicl ... show more 86.121.48.96 - - [11/Jun/2026:23:58:32 +0800] "POST /wp-login.php HTTP/1.1" 200 3311 "https://envicleansg.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" 86.121.48.96 - - [12/Jun/2026:00:02:48 +0800] "POST /wp-login.php HTTP/1.1" 200 2677 "https://littleprairie.com.my/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 86.121.48.96 - - [12/Jun/2026:00:03:27 +0800] "POST /wp-login.php HTTP/1.1" 200 2975 "https://mail.autism-cvc.org/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" ... show less	Brute-Force
🇺🇸 WeekendWeb	2026-06-11 15:49:43 (21 hours ago)	Wordpress Vunerability attack	Web App Attack
🇩🇪 Nerdscave Hosting	2026-06-11 15:40:48 (21 hours ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇩🇪 AlexEventfahrtenIPDB	2026-06-11 15:40:32 (21 hours ago)	[Thu Jun 11 17:40:21.079830 2026] [authz_core:error] [pid 3370470:tid 3370470] [client 86.121.48.96: ... show more [Thu Jun 11 17:40:21.079830 2026] [authz_core:error] [pid 3370470:tid 3370470] [client 86.121.48.96:52338] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php [Thu Jun 11 17:40:31.642317 2026] [authz_core:error] [pid 3365166:tid 3365166] [client 86.121.48.96:50486] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php, referer: https://alex-eventfahrten.spdns.de/wp-login.php ... show less	Brute-Force Web App Attack
🇳🇱 juutis	2026-06-11 15:37:41 (21 hours ago)	86.121.48.96 - - [11/Jun/2026:14:55:23 +0200] "POST /wp-login.php HTTP/1.1" 200 9279 "https://taides ... show more 86.121.48.96 - - [11/Jun/2026:14:55:23 +0200] "POST /wp-login.php HTTP/1.1" 200 9279 "https://taidesuunnistus.net/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 86.121.48.96 - - [11/Jun/2026:16:38:00 +0200] "POST /wp-login.php HTTP/1.1" 200 9301 "https://taidesuunnistus.net/wp-login.php" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 86.121.48.96 - - [11/Jun/2026:17:37:39 +0200] "POST /wp-login.php HTTP/1.1" 200 9299 "https://www.taidesuunnistus.net/wp-login.php" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" show less	Web App Attack
🇩🇪 reznekcs	2026-06-11 15:17:42 (21 hours ago)	F2B wordpress ban. Logs: 86.121.48.96 - - [11/Jun/2026:17:11:47 +0200] "POST /wp-login.php HTTP/1.1" ... show more F2B wordpress ban. Logs: 86.121.48.96 - - [11/Jun/2026:17:11:47 +0200] "POST /wp-login.php HTTP/1.1" 200 3815 "https://reznekcsalad.hu/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 86.121.48.96 - - [11/Jun/2026:17:17:41 +0200] "POST /wp-login.php HTTP/1.1" 200 3815 "https://reznekcsalad.hu/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" show less	Brute-Force Web App Attack
🇩🇪 Prodscape	2026-06-11 15:17:27 (21 hours ago)	(WPLOGIN) WP Login Attack 86.121.48.96 (RO/Romania/ns.atomweb.ro): 5 in the last 86400 secs; Ports: ... show more (WPLOGIN) WP Login Attack 86.121.48.96 (RO/Romania/ns.atomweb.ro): 5 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER show less	Port Scan
Anonymous	2026-06-11 15:07:57 (21 hours ago)	(wordpress) Failed wordpress login from 86.121.48.96 (RO/Romania/ns.atomweb.ro)	Brute-Force
🇩🇪 dbmwebdesign	2026-06-11 15:00:12 (21 hours ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 TAY	2026-06-11 14:57:37 (21 hours ago)	86.121.48.96 - - [11/Jun/2026:22:54:33 +0800] "POST /wp-login.php HTTP/1.1" 200 2680 "https://little ... show more 86.121.48.96 - - [11/Jun/2026:22:54:33 +0800] "POST /wp-login.php HTTP/1.1" 200 2680 "https://littleprairie.com.my/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 86.121.48.96 - - [11/Jun/2026:22:55:57 +0800] "POST /wp-login.php HTTP/1.1" 200 2973 "https://mail.autism-cvc.org/wp-login.php" "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 86.121.48.96 - - [11/Jun/2026:22:57:36 +0800] "POST /wp-login.php HTTP/1.1" 200 2973 "https://www.autism-cvc.org/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" ... show less	Brute-Force
🇫🇷 francoisunix	2026-06-11 14:57:24 (21 hours ago)	86.121.48.96 - - [11/Jun/2026:12:26:58 +0000] "POST /wp-login.php HTTP/1.0" 401 15375 "https://tagaz ... show more 86.121.48.96 - - [11/Jun/2026:12:26:58 +0000] "POST /wp-login.php HTTP/1.0" 401 15375 "https://tagaz.fr/wp-login.php" "Mozilla/5.0 (X11; Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 86.121.48.96 - - [11/Jun/2026:14:05:27 +0000] "GET /wp-login.php HTTP/1.0" 401 14903 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 86.121.48.96 - - [11/Jun/2026:14:05:36 +0000] "POST /wp-login.php HTTP/1.0" 401 15354 "https://tagaz.fr/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 86.121.48.96 - - [11/Jun/2026:14:57:19 +0000] "GET /wp-login.php HTTP/1.0" 401 14903 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 86.121.48.96 - - [11/Jun/2026:14:57:21 +0000] "POST /wp-login.php HTTP/1.0" 401 15377 "https://tagaz.fr/wp-login.php" "Mozilla/5.0 ... show less	Web App Attack

Showing 1 to 15 of 219 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 192.42.116.62

🇮🇹 172.213.140.80

🇹🇭 122.154.74.204

🇨🇳 113.221.15.212

🇺🇸 107.172.250.235

🇻🇳 103.97.135.244

🇧🇬 91.92.199.36

🇬🇧 81.19.219.205

🇺🇸 65.49.1.176

🇬🇧 51.75.161.33

🇱🇹 45.227.254.170

🇺🇸 44.99.215.63

🇸🇬 43.173.175.205

🇺🇸 34.138.36.143

🇷🇴 2.57.121.112

🇺🇦 185.143.145.61

🇺🇸 172.253.242.54

🇩🇪 141.11.250.239

🇭🇰 101.36.124.220

🇺🇸 71.6.233.182