JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.26.119.143

159.26.119.143 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 100%: ?

100%

ISP	PV-SL-HOSTED-Akasaka-Network
Usage Type	Data Center/Web Hosting/Transit
ASN	AS208172
Domain Name	ip.me
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.26.119.143

Whois 159.26.119.143

IP Abuse Reports for 159.26.119.143:

This IP address has been reported a total of 36 times from 26 distinct sources. 159.26.119.143 was first reported on October 12th 2025, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-11 07:05:19 (5 days ago)	Abuse Detected (3)	Brute-Force Web App Attack
🇯🇵 S.O.B.A. Dev.	2026-06-11 06:54:26 (5 days ago)	Web vulnerability scanning	Brute-Force Web Spam Web App Attack
🇬🇧 Oakley	2026-06-11 06:01:13 (5 days ago)	(confirmed_bot_sig) Confirmed bot	Hacking
🇬🇧 andypiper	2026-06-11 01:00:59 (5 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇳🇱 nate naten	2026-06-11 00:15:20 (5 days ago)	HoneyTrap: unknown_probe attempt on /wp-content/plugins/breeze/readme.txt from Japan	Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-10 23:53:46 (5 days ago)	Blocked by CSF 13 firewall - Rule: config-dotfile US/United States/-	Web App Attack
🇫🇮 YF	2026-06-10 23:01:07 (5 days ago)	Environment file probe	Web App Attack
🇫🇮 Erpelstolz	2026-06-10 22:54:18 (5 days ago)	external host: 159.26.119.143 - - [11/Jun/2026:00:54:18 +0200] "GET /wp-content/plugins/breeze/readm ... show more external host: 159.26.119.143 - - [11/Jun/2026:00:54:18 +0200] "GET /wp-content/plugins/breeze/readme.txt HTTP/1.1" 404 5663 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" CF-Ray:- CF-IP:- show less	Web App Attack
🇳🇱 wlt-blocker	2026-06-10 22:52:09 (5 days ago)	Unauthorized access to webpage admin	Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 21:55:30 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 159.26.119.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 159.26.119.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 17:55:26.098127 2026] [security2:error] [pid 13618:tid 13635] [client 159.26.119.143:28917] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "honeyled.com"] [uri "/.env"] [unique_id "aindTjGkk9OeHpz5vE4k9QAAAU8"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-06-10 21:42:55 (5 days ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.env	Web App Attack
🇧🇷 Peregrine	2026-06-08 03:09:14 (1 week ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 159.26.119.143 162.159.110.128 - - [04/Jun/2026:05:41:09 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 159.26.119.143 162.159.110.128 - - [04/Jun/2026:05:41:09 -0300] "GET /wp-includes/speculative8.php HTTP/1.1" 404 414 159.26.119.143 172.64.215.19 - - [04/Jun/2026:05:41:10 -0300] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 404 414 159.26.119.143 162.159.110.128 - - [04/Jun/2026:05:41:12 -0300] "GET /wp-admin/includes/nav.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-06-07 03:09:06 (1 week ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 159.26.119.143 162.159.110.128 - - [04/Jun/2026:05:41:09 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 159.26.119.143 162.159.110.128 - - [04/Jun/2026:05:41:09 -0300] "GET /wp-includes/speculative8.php HTTP/1.1" 404 414 159.26.119.143 172.64.215.19 - - [04/Jun/2026:05:41:10 -0300] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 404 414 159.26.119.143 162.159.110.128 - - [04/Jun/2026:05:41:12 -0300] "GET /wp-admin/includes/nav.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-06-06 03:09:03 (1 week ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 159.26.119.143 162.159.110.128 - - [04/Jun/2026:05:41:09 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 159.26.119.143 162.159.110.128 - - [04/Jun/2026:05:41:09 -0300] "GET /wp-includes/speculative8.php HTTP/1.1" 404 414 159.26.119.143 172.64.215.19 - - [04/Jun/2026:05:41:10 -0300] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 404 414 159.26.119.143 162.159.110.128 - - [04/Jun/2026:05:41:12 -0300] "GET /wp-admin/includes/nav.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇨🇭 backslash	2026-06-05 16:45:00 (1 week ago)		Bad Web Bot

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 111.19.212.140

🇻🇳 103.186.101.237

🇨🇳 220.181.51.88

🇰🇷 218.157.205.238

🇩🇪 217.60.245.42

🇮🇩 202.51.214.99

🇺🇸 138.197.204.198

🇨🇳 120.76.98.153

🇲🇰 92.53.19.115

🇷🇴 80.94.92.182

🇸🇪 46.59.122.78

🇺🇸 45.156.129.57

🇺🇸 23.234.77.51

🇨🇳 222.243.174.118

🇬🇧 169.197.113.175

🇮🇳 125.20.247.194

🇺🇸 108.170.28.178

🇺🇸 107.150.98.99

🇮🇳 103.145.55.177

🇪🇸 87.217.78.202