JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 148.66.6.210

148.66.6.210 was found in our database!

This IP was reported 372 times. Confidence of Abuse is 0%: ?

ISP	Netsec Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45753
Domain Name	netsec.com
Country	🇭🇰 Hong Kong
City	Tung Chung, Islands

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 148.66.6.210

Whois 148.66.6.210

IP Abuse Reports for 148.66.6.210:

This IP address has been reported a total of 372 times from 49 distinct sources. 148.66.6.210 was first reported on January 28th 2023, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 exxos	2025-08-01 02:54:24 (10 months ago)	HTTP1.x attacks	DDoS Attack
🇳🇱 exxos	2025-07-31 02:05:35 (10 months ago)	HTTP1.x attacks	DDoS Attack
🇨🇭 SOC [GOLINE SA]	2025-07-30 22:47:30 (10 months ago)	Security Alert: 1 ModSecurity rule violation(s) from 148.66.6.210; Ports: ; Evidence: [Thu Jul 31 0 ... show more Security Alert: 1 ModSecurity rule violation(s) from 148.66.6.210; Ports: ; Evidence: [Thu Jul 31 00:47:26.585916 2025] [security2:error] [pid 156917:tid 156929] [remote 148.66.6.210:55126] [client 148.66.6.210] ModSecurity: Access denied with code 403 (phase 2). Pattern match "wp-login\\\\.php" at REQUEST_URI. [file "/etc/modsecurity/modsecurity.conf"] [line "229"] [id "92010"] [hostname "www.goline.ch"] [uri "/wp-login.php/wp-login.php"] [unique_id "aIqg_kmJfP26wPIPvowiBQAACQo"], referer: https://www.goline.ch/services/cpanel-hosting-goline-sa/ show less	Web App Attack
Anonymous	2025-07-30 15:58:02 (10 months ago)	botnet	DDoS Attack
Anonymous	2025-07-30 04:35:33 (10 months ago)	botnet	DDoS Attack
🇳🇱 exxos	2025-07-30 01:20:11 (10 months ago)	HTTP1.x attacks	DDoS Attack
🇳🇱 exxos	2025-07-28 04:19:56 (10 months ago)	HTTP1.x attacks	DDoS Attack
🇳🇱 exxos	2025-07-28 03:55:06 (10 months ago)	HTTP1.x attacks	DDoS Attack
🇺🇸 gu-alvareza	2025-07-26 07:05:03 (10 months ago)	WordPress.xmlrpc.Pingback.DoS	DDoS Attack
🇨🇭 SOC [GOLINE SA]	2025-07-26 07:00:37 (10 months ago)	Security Alert: 1 ModSecurity rule violation(s) from 148.66.6.210; Ports: ; Evidence: [Sat Jul 26 0 ... show more Security Alert: 1 ModSecurity rule violation(s) from 148.66.6.210; Ports: ; Evidence: [Sat Jul 26 09:00:30.743277 2025] [security2:error] [pid 1864314:tid 1864344] [remote 148.66.6.210:34738] [client 148.66.6.210] ModSecurity: Access denied with code 403 (phase 2). Pattern match "wp-login\\\\.php" at REQUEST_URI. [file "/etc/modsecurity/modsecurity.conf"] [line "229"] [id "92010"] [hostname "www.goline.ch"] [uri "/wp-login.php/wp-login.php"] [unique_id "aIR9DpeD2oofANGFZzDcNwAASwQ"], referer: https://www.goline.ch/wp-login.php?action=register show less	Web App Attack
🇺🇸 ipblock.com	2025-07-25 21:04:00 (10 months ago)	IPBlock protected site ID [4055-d][s=02]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack
🇳🇱 exxos	2025-07-24 17:44:52 (10 months ago)	HTTP1.x attacks	DDoS Attack
🇵🇱 sefinek.net	2025-07-22 18:17:54 (10 months ago)	Triggered Cloudflare WAF (firewallCustom) from HK. Action taken: MANAGED_CHALLENGE Protocol: HTTP/2 ... show more Triggered Cloudflare WAF (firewallCustom) from HK. Action taken: MANAGED_CHALLENGE Protocol: HTTP/2 (GET method) Endpoint: /genshin-stella-mod/genshin-stella-mod UA: Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇭 SOC [GOLINE SA]	2025-07-20 19:49:32 (10 months ago)	Security Alert: 1 ModSecurity rule violation(s) from 148.66.6.210; Ports: ; Evidence: [Sun Jul 20 2 ... show more Security Alert: 1 ModSecurity rule violation(s) from 148.66.6.210; Ports: ; Evidence: [Sun Jul 20 21:49:28.992494 2025] [security2:error] [pid 788866:tid 788871] [remote 148.66.6.210:57272] [client 148.66.6.210] ModSecurity: Access denied with code 403 (phase 2). Pattern match "wp-login\\\\.php" at REQUEST_URI. [file "/etc/modsecurity/modsecurity.conf"] [line "229"] [id "92010"] [hostname "www.goline.ch"] [uri "/wp-login.php/wp-login.php"] [unique_id "aH1ISIJFUq6EaYSzT2AkNQAAAwM"], referer: https://www.goline.ch/services/cpanel-hosting-goline-sa/ show less	Web App Attack
🇨🇭 SOC [GOLINE SA]	2025-07-20 16:47:06 (10 months ago)	Security Alert: 1 ModSecurity rule violation(s) from 148.66.6.210; Ports: ; Evidence: [Sun Jul 20 1 ... show more Security Alert: 1 ModSecurity rule violation(s) from 148.66.6.210; Ports: ; Evidence: [Sun Jul 20 18:47:01.307467 2025] [security2:error] [pid 788866:tid 788885] [remote 148.66.6.210:52214] [client 148.66.6.210] ModSecurity: Access denied with code 403 (phase 2). Pattern match "wp-login\\\\.php" at REQUEST_URI. [file "/etc/modsecurity/modsecurity.conf"] [line "229"] [id "92010"] [hostname "www.goline.ch"] [uri "/wp-login.php/wp-login.php"] [unique_id "aH0dhYJFUq6EaYSzT2AiPgAABxE"], referer: https://www.goline.ch/wp-login.php?action=register show less	Web App Attack

Showing 1 to 15 of 372 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 207.175.25.6

🇭🇰 172.253.6.20

🇺🇸 165.154.202.145

🇵🇰 153.117.38.210

🇭🇰 152.32.132.28

🇨🇦 148.113.190.105

🇺🇸 66.228.43.62

🇺🇸 66.132.195.92

🇮🇶 65.20.174.49

🇺🇸 64.62.197.49

🇧🇷 45.186.158.26

🇵🇰 39.63.165.196

🇧🇪 34.79.125.236

🇺🇸 23.21.175.228

🇷🇴 2.57.121.112

🇺🇸 216.244.66.202

🇧🇷 187.73.232.181

🇺🇸 147.185.132.30

🇵🇰 58.65.153.217

🇺🇸 50.187.155.130