AbuseIPDB » 194.5.154.133
194.5.154.133 was found in our database!
This IP was reported 4 times. Confidence of
Abuse
is 17% : ?
ISP
Packethub S.A.
Usage Type
Data Center/Web Hosting/Transit
ASN
AS136787
Domain Name
packethub.net
Country
πΈπͺ
Sweden
City
Stockholm, Stockholm
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 194.5.154.133 :
This IP address has been reported a total of
4
times from
3 distinct
sources.
194.5.154.133 was first reported on
June 15th 2026 , and the most recent report was
10 hours ago .
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
π«π·
matthieul.dev
2026-07-15 19:55:22
(10 hours ago)
Blocked by os-abuseipdb; 36 hits, proto=tcp,udp, ports=23962
Port Scan
Brute-Force
π³π±
enpepet
2026-06-28 09:15:07
(2 weeks ago)
GENERAL: parametres: [url:uploadCustomIcon=] UA:Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.3 ...
show more
GENERAL: parametres: [url:uploadCustomIcon=] UA:Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 URL:/index.php?option=com_sppagebuilder&task=asset.uploadCustomIcon
show less
Port Scan
Hacking
Brute-Force
Bad Web Bot
π³π±
enpepet
2026-06-28 05:31:31
(2 weeks ago)
GENERAL: parametres: [url:uploadCustomIcon=] UA:Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKi ...
show more
GENERAL: parametres: [url:uploadCustomIcon=] UA:Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Edg/119.0.0.0 URL:/index.php?option=com_sppagebuilder&task=asset.uploadCustomIcon
show less
Port Scan
Hacking
Brute-Force
Bad Web Bot
πΊπΈ
itsnixk
2026-06-15 02:03:36
(1 month ago)
(mod_security) mod_security (id:920350) triggered by 194.5.154.133 (SE/Sweden/-): 1 in the last 3600 ...
show more
(mod_security) mod_security (id:920350) triggered by 194.5.154.133 (SE/Sweden/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sun Jun 14 22:03:33.851896 2026] [security2:error] [pid 369433:tid 369930] [client 194.5.154.133:49492] ModSecurity: Access denied with code 406 (phase 1). Pattern match "(?:^([\\\\d.]+|\\\\[[\\\\da-f:]+\\\\]|[\\\\da-f:]+)(:[\\\\d]+)?$)" at REQUEST_HEADERS:Host. [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "773"] [id "920350"] [msg "Host header is a numeric IP address"] [redacted] [severity "WARNING"] [ver "OWASP_CRS/4.26.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL-ENFORCEMENT"] [tag "capec/1000/210/272"] [redacted] [uri "/metrics"] [unique_id "ai9dde9TeAlJY3bhd1gPRQAAAO8"]
show less
Port Scan
Showing 1 to
4
of 4 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: