JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.163.148.78

194.163.148.78 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 51%: ?

51%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	vmi1780004.contaboserver.net
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.163.148.78

Whois 194.163.148.78

IP Abuse Reports for 194.163.148.78:

This IP address has been reported a total of 24 times from 21 distinct sources. 194.163.148.78 was first reported on May 2nd 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Petre 21_ip	2026-06-29 06:31:35 (1 day ago)	2026-06-29T08:31:34.401823+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-06-29T08:31:34.401823+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=194.163.148.78 DST=155.133.26.57 LEN=60 TOS=0x00 PREC=0x00 TTL=60 ID=61453 DF PROTO=TCP SPT=54900 DPT=5432 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 drewf.ink	2026-06-29 03:28:07 (1 day ago)	[03:28] Port scanning. Port(s) scanned: TCP/5432	Port Scan
🇧🇷 diego	2026-06-26 17:15:52 (3 days ago)	[rede-168-134] 06/26/2026-14:15:52.064485, 194.163.148.78, Protocol: 6, ET SCAN Suspicious inbound t ... show more [rede-168-134] 06/26/2026-14:15:52.064485, 194.163.148.78, Protocol: 6, ET SCAN Suspicious inbound to PostgreSQL port 5432 show less	Hacking
🇮🇪 RoboSOC	2026-06-23 18:22:20 (6 days ago)	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: vmi1780004.contaboserver.net.	Port Scan
🇨🇦 KIsmay	2026-05-19 04:13:09 (1 month ago)	May 19 00:13:06 www4 WPAudit[1143839]: 194.163.148.78 vhsport.ca "Mozilla/5.0 (Macintosh; Intel Mac ... show more May 19 00:13:06 www4 WPAudit[1143839]: 194.163.148.78 vhsport.ca "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" admin:admin@2025 FAIL May 19 00:13:07 www4 WPAudit[1143839]: 194.163.148.78 vhsport.ca "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" admin:admin1 FAIL May 19 00:13:07 www4 WPAudit[1143838]: 194.163.148.78 vhsport.ca "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" vhsport:vhsport@123 FAIL May 19 00:13:07 www4 WPAudit[1143839]: 194.163.148.78 vhsport.ca "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15" admin:admin2026 FAIL May 19 00:13:08 www4 WPAudit[1143839]: 194.163.148.78 vhsport.ca "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" admin ... show less	Brute-Force Web App Attack
🇫🇮 YF	2026-05-18 16:30:15 (1 month ago)	Attaque distribuée subnet	DDoS Attack Web App Attack
🇫🇷 ELYAZ	2026-05-18 11:55:20 (1 month ago)	(y4) Failed scan -byebye- from 194.163.148.78 (FR/France/vmi1780004.contaboserver.net): (CF_ENABLE)	Hacking
🇨🇭 zynex	2026-05-18 11:14:25 (1 month ago)	URL Probing: /wp-login.php	Web App Attack
🇨🇭 4server	2026-05-18 10:20:25 (1 month ago)	[MonMay1812:20:21.0893942026][security2:error][pid2947831:tid2948147][client194.163.148.78:0]ModSecu ... show more [MonMay1812:20:21.0893942026][security2:error][pid2947831:tid2948147][client194.163.148.78:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"swiss-web-hosting.ch\"][uri\"/wp-login.php\"][unique_id\"agrn5VOapf8r-wMrCozpUAAAAJc\"]\,referer:https://swiss-web-hosting.ch/wp-login.php show less	Hacking Web App Attack
🇫🇷 dynamix	2026-05-18 09:56:43 (1 month ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
🇫🇷 masterguru	2026-05-11 08:34:44 (1 month ago)	(wordpress) Apache: Failed WordPress login from 194.163.148.78 (DE/Germany/vmi1780004.contaboserver. ... show more (wordpress) Apache: Failed WordPress login from 194.163.148.78 (DE/Germany/vmi1780004.contaboserver.net): 10 in the last 3600 secs (0-197) show less	Hacking
🇧🇪 cmbplf	2026-05-10 03:31:30 (1 month ago)	2.023 POST requests with url.path */wp-login.php	Brute-Force Bad Web Bot
🇳🇱 wlt-blocker	2026-05-09 23:40:55 (1 month ago)	Unauthorized access to webpage admin	Web App Attack
🇦🇺 screwlooseit.com.au	2026-05-09 09:52:14 (1 month ago)	Blocked by CSF 13 firewall - Rule: WPLOGIN DE/Germany/vmi1780004.contaboserver.net	Web App Attack
🇫🇷 masterguru	2026-05-07 13:56:13 (1 month ago)	(wordpress) Apache: Failed WordPress login from 194.163.148.78 (DE/Germany/vmi1780004.contaboserver. ... show more (wordpress) Apache: Failed WordPress login from 194.163.148.78 (DE/Germany/vmi1780004.contaboserver.net): 10 in the last 3600 secs (0-201) show less	Hacking

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 123.58.198.35

🇸🇬 121.6.81.59

🇳🇱 45.148.10.239

🇸🇬 43.172.198.144

🇩🇪 194.187.176.27

🇫🇷 185.177.72.38

🇹🇭 182.52.22.75

🇩🇰 181.214.32.150

🇪🇸 159.147.210.49

🇩🇪 138.68.70.115

🇨🇳 123.170.46.177

🇻🇳 113.171.82.158

🇨🇳 110.166.67.189

🇦🇷 45.231.225.43

🇺🇸 45.156.129.63

🇩🇪 43.228.157.10

🇸🇬 43.172.196.116

🇨🇳 36.44.45.55

🇬🇧 35.203.211.173

🇮🇪 20.107.204.22