JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 96.46.48.39

96.46.48.39 was found in our database!

This IP was reported 263 times. Confidence of Abuse is 93%: ?

93%

ISP	Data Security Node Inc.
Usage Type	Commercial
ASN	AS36689
Hostname(s)	secure.freedomledger.com
Domain Name	datasecuritynode.com
Country	🇨🇦 Canada
City	Halifax, Nova Scotia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 96.46.48.39

Whois 96.46.48.39

IP Abuse Reports for 96.46.48.39:

This IP address has been reported a total of 263 times from 81 distinct sources. 96.46.48.39 was first reported on October 11th 2025, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-09 07:30:59 (12 hours ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 rh24	2026-06-08 10:28:14 (1 day ago)	(wordpress) Failed wordpress login from 96.46.48.39 (CA/Canada/secure.freedomledger.com)	Brute-Force
🇺🇸 Jason Howell	2026-06-08 01:26:53 (1 day ago)	96.46.48.39 - - [07/Jun/2026:20:26:51 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4309 "-" "Mozilla/5.0 ( ... show more 96.46.48.39 - - [07/Jun/2026:20:26:51 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4309 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:82.0) Gecko/20100101 Firefox/82.0" 96.46.48.39 - - [07/Jun/2026:20:26:51 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4308 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:64.0) Gecko/20100101 Firefox/64.0" 96.46.48.39 - - [07/Jun/2026:20:26:51 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4307 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:46.0) Gecko/20100101 Firefox/46.0" 96.46.48.39 - - [07/Jun/2026:20:26:52 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4308 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0" 96.46.48.39 - - [07/Jun/2026:20:26:52 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4308 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 22:29:54 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 96.46.48.39 (secure.freedomledger.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 96.46.48.39 (secure.freedomledger.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 18:29:47.147147 2026] [security2:error] [pid 31245:tid 31245] [client 96.46.48.39:49856] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.drgracetomastolentino.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.drgracetomastolentino.com"] [uri "/wordpress/wp-json/wp/v2/users"] [unique_id "aiXw24O1RUcRxnyp8I0niwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 rh24	2026-06-07 17:26:16 (2 days ago)	(wordpress-user-enum) Failed wordpress-user-enum trigger from 96.46.48.39 (CA/Canada/secure.freedoml ... show more (wordpress-user-enum) Failed wordpress-user-enum trigger from 96.46.48.39 (CA/Canada/secure.freedomledger.com): (CF_ENABLE) show less	Brute-Force
🇩🇪 big-cloud.nl	2026-06-06 08:20:55 (3 days ago)	Try to access /xmlrpc.php	Web App Attack
🇮🇱 Dolphi	2026-06-05 17:20:13 (4 days ago)	Excessive POST /xmlrpc.php requests	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-04 21:28:37 (4 days ago)	Multiple WAF Violations	Web App Attack
🇫🇷 dynamix	2026-06-03 20:08:59 (6 days ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-06-03 11:14:10 (6 days ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-06-03 06:17:58 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 96.46.48.39 (secure.freedomledger.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 96.46.48.39 (secure.freedomledger.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 02:17:51.431245 2026] [security2:error] [pid 13764:tid 13764] [client 96.46.48.39:60354] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kavahawaii.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kavahawaii.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ah_HD08LYFAQ3eG7CylLGgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-02 22:09:24 (6 days ago)	Excessive multi-domain requests	Brute-Force
🇺🇸 TPI-Abuse	2026-06-02 12:40:53 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 96.46.48.39 (secure.freedomledger.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 96.46.48.39 (secure.freedomledger.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 08:40:47.727243 2026] [security2:error] [pid 28260:tid 28260] [client 96.46.48.39:47212] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|nessmonsters.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "nessmonsters.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ah7PTzQm55qYI7N8VnQBUgAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 10:52:32 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 96.46.48.39 (secure.freedomledger.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 96.46.48.39 (secure.freedomledger.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 06:52:25.226705 2026] [security2:error] [pid 25196:tid 25196] [client 96.46.48.39:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|local639.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "local639.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ah616bOJPQXY7ITWooJKAwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dbmwebdesign	2026-06-02 10:30:26 (1 week ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack

Showing 1 to 15 of 263 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇷 89.252.131.17

🇳🇱 81.19.216.80

🇺🇸 66.132.172.148

🇿🇼 41.60.203.26

🇨🇳 8.155.163.101

🇧🇪 198.235.24.165

🇸🇪 192.36.109.125

🇦🇱 185.9.46.61

🇨🇱 173.194.91.150

🇮🇩 163.7.1.218

🇺🇸 162.216.150.95

🇩🇪 43.228.157.10

🇺🇸 20.15.160.31

🇸🇪 192.36.109.118

🇸🇪 192.36.109.116

🇧🇴 181.115.171.176

🇫🇮 147.185.133.211

🇨🇳 114.217.10.60

🇰🇪 102.205.85.37

🇨🇦 99.213.83.10