JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 188.164.194.248

188.164.194.248 was found in our database!

This IP was reported 152 times. Confidence of Abuse is 62%: ?

62%

ISP	AXARNET COMUNICACIONES, S.L.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS50926
Hostname(s)	servidor4.m2estudio.com
Domain Name	axarnet.es
Country	🇪🇸 Spain
City	Valencia, Valencia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 188.164.194.248

Whois 188.164.194.248

IP Abuse Reports for 188.164.194.248:

This IP address has been reported a total of 152 times from 56 distinct sources. 188.164.194.248 was first reported on December 13th 2022, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SpaceHost-Server	2026-06-22 22:28:58 (4 days ago)		Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 15:14:03 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 188.164.194.248 (servidor4.m2estudio.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 188.164.194.248 (servidor4.m2estudio.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 11:13:58.844998 2026] [security2:error] [pid 19577:tid 19577] [client 188.164.194.248:38980] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.budgetbyron.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.budgetbyron.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajlRNrsq78aC9YNL78ywqgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 10:33:46 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 188.164.194.248 (servidor4.m2estudio.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 188.164.194.248 (servidor4.m2estudio.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 06:33:40.892425 2026] [security2:error] [pid 32174:tid 32174] [client 188.164.194.248:44012] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.arthuryeung.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.arthuryeung.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajkPhBuaft7cy80IsPFfMQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-06-21 22:28:03 (5 days ago)		Brute-Force Web App Attack
Anonymous	2026-06-19 13:32:40 (1 week ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-06-19 03:10:03 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 188.164.194.248 (servidor4.m2estudio.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 188.164.194.248 (servidor4.m2estudio.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 23:09:54.820446 2026] [security2:error] [pid 21809:tid 21809] [client 188.164.194.248:44980] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.nancyscafeandcatering.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.nancyscafeandcatering.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajSzAoG5oDqJaw0s3DyHcgAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-06-18 22:28:59 (1 week ago)		Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 12:17:44 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 188.164.194.248 (servidor4.m2estudio.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 188.164.194.248 (servidor4.m2estudio.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 08:17:37.125812 2026] [security2:error] [pid 2315:tid 2315] [client 188.164.194.248:40838] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.bolivarbulletintimes.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bolivarbulletintimes.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajPh4QatgxhRS96XQcj3WAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 R.G.	2026-06-17 14:21:37 (1 week ago)	(XMLRPCorWHATEVER) Get lost please 188.164.194.248 (ES/Spain/servidor4.m2estudio.com): 3 in the last ... show more (XMLRPCorWHATEVER) Get lost please 188.164.194.248 (ES/Spain/servidor4.m2estudio.com): 3 in the last 900 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 09:57:17 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 188.164.194.248 (servidor4.m2estudio.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 188.164.194.248 (servidor4.m2estudio.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 05:57:10.781722 2026] [security2:error] [pid 24654:tid 24667] [client 188.164.194.248:37194] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.campingcosmetics.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.campingcosmetics.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajJvdgik8_WPsts3DmsajwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-17 08:50:23 (1 week ago)	Multiple web server 400 error codes from same source ip	Web App Attack
Anonymous	2026-06-16 07:38:47 (1 week ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-06-16 05:42:04 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 188.164.194.248 (servidor4.m2estudio.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 188.164.194.248 (servidor4.m2estudio.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 01:41:56.095032 2026] [security2:error] [pid 3025:tid 3025] [client 188.164.194.248:47016] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.greensandbeans.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.greensandbeans.us"] [uri "/wp-json/wp/v2/users"] [unique_id "ajDiJANSUBGjgcNzt6c8igAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-06-15 22:28:05 (1 week ago)		Brute-Force Web App Attack
Anonymous	2026-06-15 21:18:43 (1 week ago)	[server.tmg.gr] httpd-suspicious-path: sites=aidshep2018.gr; logs=/var/log/httpd/domains/aidshep2018 ... show more [server.tmg.gr] httpd-suspicious-path: sites=aidshep2018.gr; logs=/var/log/httpd/domains/aidshep2018.gr.log; samples=/wp-json/wp/v2/users \| /?author=1 \| /?author=2 show less	Hacking Web App Attack

Showing 1 to 15 of 152 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇸 212.227.235.203

🇺🇸 207.90.244.28

🇰🇷 14.33.96.3

🇸🇬 8.219.164.76

🇺🇸 198.232.5.190

🇳🇱 185.242.226.103

🇳🇱 185.242.226.74

🇨🇳 116.6.68.114

🇺🇸 66.132.186.128

🇺🇸 44.108.191.84

🇺🇸 20.118.209.123

🇧🇷 205.210.31.156

🇳🇱 176.65.139.224

🇺🇸 107.174.161.179

🇫🇷 85.217.140.35

🇺🇸 44.28.9.197

🇭🇰 199.45.155.92

🇳🇱 195.178.110.199

🇮🇹 188.153.55.189

🇺🇸 162.216.150.31