JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.26.192.49

194.26.192.49 was found in our database!

This IP was reported 67 times. Confidence of Abuse is 35%: ?

35%

ISP	1337 Services GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS210558
Hostname(s)	ams02.filepu.sh
Domain Name	as210558.net
Country	🇳🇱 Netherlands
City	Lelystad, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.26.192.49

Whois 194.26.192.49

IP Abuse Reports for 194.26.192.49:

This IP address has been reported a total of 67 times from 52 distinct sources. 194.26.192.49 was first reported on August 3rd 2022, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇿🇦 Terrorism & Money Laundering Monitor	2026-04-24 07:43:00 (1 month ago)	Multiple WordPress hacking attempts on many websites.	Web App Attack Hacking
🇺🇸 nyt	2026-04-14 07:28:18 (1 month ago)	Hacking, Web App Attack, suspicious: Known Backdoor Name	Hacking Web App Attack
🇩🇪 Lino Project	2026-04-14 02:30:22 (1 month ago)	194.26.192.49 - - [14/Apr/2026:04:30:21 +0200] "GET /txets.php HTTP/1.1" 301 790 "-" "Mozilla/5.0 (W ... show more 194.26.192.49 - - [14/Apr/2026:04:30:21 +0200] "GET /txets.php HTTP/1.1" 301 790 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nyt	2026-04-12 20:59:08 (1 month ago)	Hacking, Web App Attack, suspicious: Known Backdoor Name	Hacking Web App Attack
Anonymous	2026-04-12 20:38:23 (1 month ago)	194.26.192.49 - - [12/Apr/2026:22:38:18 +0200] "GET /wp-content/txets.php HTTP/1.0" 404 61994 "-" "M ... show more 194.26.192.49 - - [12/Apr/2026:22:38:18 +0200] "GET /wp-content/txets.php HTTP/1.0" 404 61994 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 194.26.192.49 - - [12/Apr/2026:22:38:18 +0200] "GET /wp-content/txets.php HTTP/1.1" 404 14509 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 194.26.192.49 - - [12/Apr/2026:22:38:20 +0200] "GET /wp-includes/widgets/txets.php HTTP/1.0" 404 61994 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 194.26.192.49 - - [12/Apr/2026:22:38:20 +0200] "GET /wp-includes/widgets/txets.php HTTP/1.1" 404 14509 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 194.26.192.49 - - [12/Apr/2026:22:38:21 +0200] "GET /wp-includes/rest-api/txets.php HTTP/1.0" 404 61994 "-" "Mozilla/5 ... show less	Brute-Force Web App Attack
🇬🇧 Swiptly	2026-04-12 18:16:47 (1 month ago)	Excessive 403/404/405 PHP/CMS errors from scanning or broken bots ...	Web App Attack
🇺🇦 URAN Publishing Service	2026-04-12 15:21:50 (1 month ago)	194.26.192.49 - - [12/Apr/2026:18:21:49 +0300] "GET /wp-content/txets.php HTTP/1.1" 404 763 "-" "Moz ... show more 194.26.192.49 - - [12/Apr/2026:18:21:49 +0300] "GET /wp-content/txets.php HTTP/1.1" 404 763 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" ... show less	Web App Attack
🇺🇸 LSPCCU	2026-04-12 13:35:36 (1 month ago)	TSEC Honeypot Network report. Threat score: 85/100. Categories: Port Scan, Hacking, Brute-Force, Web ... show more TSEC Honeypot Network report. Threat score: 85/100. Categories: Port Scan, Hacking, Brute-Force, Web App Attack, SSH. Honeypot: ssh-telnet, cowrie. Context: Attacker IP 194. show less	Port Scan Hacking Brute-Force Web App Attack SSH
🇬🇧 pinguin	2026-04-12 11:46:27 (1 month ago)	Triggered Cloudflare WAF (linkMaze) from NL. Action taken: LINK_MAZE_INJECTED Protocol: HTTP/1.1 (GE ... show more Triggered Cloudflare WAF (linkMaze) from NL. Action taken: LINK_MAZE_INJECTED Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Empty string This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-04-12 07:31:02 (1 month ago)	Bot / scanning and/or hacking attempts: GET /wp-admin/setup-config.php HTTP/1.1, GET / HTTP/1.1, GET ... show more Bot / scanning and/or hacking attempts: GET /wp-admin/setup-config.php HTTP/1.1, GET / HTTP/1.1, GET /wp-admin/install.php HTTP/1.1 show less	Hacking Web App Attack
🇫🇷 ELYAZ	2026-04-12 05:08:43 (1 month ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 194.26.192.49 (-): (CF_ ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 194.26.192.49 (-): (CF_ENABLE) show less	Port Scan
🇫🇷 mikekarl	2026-04-12 04:31:18 (1 month ago)	Empty or bad user-agent.	Bad Web Bot
Anonymous	2026-04-11 20:25:00 (1 month ago)	GET / \| Time: 2026-04-11 20:25:00 UTC	Web App Attack
🇵🇱 sefinek.net	2026-04-11 20:12:17 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from NL. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoi ... show more Triggered Cloudflare WAF (firewallCustom) from NL. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoint: / \| UA: Empty string • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 agenciahypelab.com.br	2026-04-11 18:43:29 (1 month ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH

Showing 1 to 15 of 67 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 138.197.204.198

🇬🇧 81.19.219.250

🇰🇷 59.15.58.148

🇳🇱 45.156.87.216

🇭🇰 152.32.187.177

🇫🇮 147.185.133.194

🇨🇳 121.29.84.13

🇺🇸 43.173.69.147

🇺🇸 20.169.106.78

🇪🇹 196.191.2.89

🇬🇧 193.32.209.232

🇫🇮 104.28.156.90

🇩🇪 51.224.201.197

🇩🇪 45.130.203.145

🇬🇧 35.203.211.72

🇬🇧 31.14.254.118

🇻🇳 14.224.227.189

🇬🇧 5.226.140.117

🇬🇧 5.226.140.115

🇬🇧 2a09:bac1:28e0:130::391:82