JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.233.87.159

194.233.87.159 was found in our database!

This IP was reported 93 times. Confidence of Abuse is 99%: ?

99%

ISP	Contabo Asia Private Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS141995
Hostname(s)	vmi3286585.contaboserver.net
Domain Name	contabo.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.233.87.159

Whois 194.233.87.159

IP Abuse Reports for 194.233.87.159:

This IP address has been reported a total of 93 times from 45 distinct sources. 194.233.87.159 was first reported on May 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 FeG Deutschland	2026-06-06 23:12:23 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack
🇸🇪 KIDOS	2026-06-06 15:45:09 (1 week ago)	malicious activity	Web App Attack
🇺🇸 cyfordtechnologies.com	2026-06-05 06:28:04 (1 week ago)	Non-human high traffic: 8/7 : Reported by Cyford API	DDoS Attack
🇹🇭 MWA SOC	2026-06-04 18:57:42 (2 weeks ago)		Hacking
🇮🇩 Burayot	2026-06-03 11:53:50 (2 weeks ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 194.233.87.159 (SG/Singapore/vmi3286 ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 194.233.87.159 (SG/Singapore/vmi3286585.contaboserver.net): 1 in the last 3600 secs show less	Web App Attack
🇳🇱 Site.eu	2026-06-02 10:31:46 (2 weeks ago)	Excessive multi-domain requests	Brute-Force
🇮🇩 Burayot	2026-06-02 05:40:01 (2 weeks ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 194.233.87.159 (SG/Singapore/vmi3286 ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 194.233.87.159 (SG/Singapore/vmi3286585.contaboserver.net): 1 in the last 3600 secs show less	Web App Attack
🇮🇩 sockominfo	2026-06-02 02:00:46 (2 weeks ago)	Double URL encoding detection, Common web attack., Encoded payload bypass detection {SQLI}. Threat S ... show more Double URL encoding detection, Common web attack., Encoded payload bypass detection {SQLI}. Threat Score: 8.4/10 (CRITICAL). Confidence: 60%. CVSS v3.1: 7.3/10 (High). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L. Bayesian Probability: 97%. MITRE ATT&CK: T1190 (Exploit Public-Facing Application). Tactic: TA0001. Freshness: Fresh. Source Reputation: SUSPICIOUS. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Brute-Force
🇮🇩 sockominfo	2026-06-02 01:00:11 (2 weeks ago)	Double URL encoding detection. Threat Score: 6.8/10 (MEDIUM). Reported by TangerangKota-CSIRT	Hacking Web App Attack
🇮🇩 penjaga BRIN	2026-06-02 00:33:03 (2 weeks ago)	SQL injection attempt	SQL Injection
🇳🇱 MM-bot	2026-06-01 15:22:16 (2 weeks ago)	URL-probe: HTTP/1.1 GET request on /index.php (2026-06-01 17:22:16 UTC+2)	Web App Attack Hacking
🇮🇩 Burayot	2026-06-01 04:33:44 (2 weeks ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 194.233.87.159 (SG/Singapore/vmi3286 ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 194.233.87.159 (SG/Singapore/vmi3286585.contaboserver.net): 2 in the last 3600 secs show less	Web App Attack
🇩🇪 london2038.com	2026-05-31 20:36:45 (2 weeks ago)	Malformed or malicious web request 194.233.87.159 - - [31/May/2026:22:36:41 +0200] "GET /c/site-feed ... show more Malformed or malicious web request 194.233.87.159 - - [31/May/2026:22:36:41 +0200] "GET /c/site-feedback/3?page=%24%7B803004562%2B912634356%7D HTTP/1.1" 400 14504 "-" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" show less	Hacking Web App Attack
🇳🇱 Site.eu	2026-05-31 18:43:04 (2 weeks ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 FeG Deutschland	2026-05-31 18:16:53 (2 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 24	Exploited Host Web App Attack

Showing 1 to 15 of 93 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 220.246.47.169

🇺🇸 208.84.100.18

🇺🇸 198.62.4.61

🇲🇽 186.96.158.180

🇦🇷 181.16.40.105

🇦🇫 180.94.75.114

🇳🇱 141.11.32.173

🇸🇬 138.75.114.62

🇵🇭 131.226.103.93

🇨🇳 120.211.138.165

🇮🇳 103.132.243.250

🇫🇷 91.231.89.213

🇰🇷 59.16.212.232

🇧🇪 34.38.211.183

🇳🇱 31.56.209.125

🇨🇳 14.103.90.30

🇺🇸 2602:fb54:1a00::3e

🇸🇪 162.158.183.71

🇷🇴 141.98.83.240

🇮🇳 128.185.253.98