JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.5.48.130

194.5.48.130 was found in our database!

This IP was reported 76 times. Confidence of Abuse is 54%: ?

54%

ISP	VPN Consumer Tokyo, Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.5.48.130

Whois 194.5.48.130

IP Abuse Reports for 194.5.48.130:

This IP address has been reported a total of 76 times from 51 distinct sources. 194.5.48.130 was first reported on November 29th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-25 11:56:29 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 194.5.48.130 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 194.5.48.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 07:56:24.701431 2026] [security2:error] [pid 20870:tid 20877] [client 194.5.48.130:22331] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 194.5.48.130 (+1 hits since last alert)\|mail.sallykimmel.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "mail.sallykimmel.com"] [uri "/xmlrpc.php"] [unique_id "aj0XaDCVXVWf3XuX7RzZtQAAAIU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 dtorrer	2026-06-24 19:18:44 (1 day ago)	Brute-force general attack.	Brute-Force
🇬🇧 consul.to	2026-06-24 00:26:03 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 ph	2026-06-22 21:19:45 (3 days ago)	Bad web bot attempting to run wp-login.php on non-WP site	Hacking Bad Web Bot Web App Attack
🇺🇸 lostswordfish.com	2026-06-20 18:52:04 (5 days ago)	Wordfence waf block on parsol	Web App Attack
🇩🇪 conseilgouz	2026-06-20 18:37:25 (5 days ago)	coe-6 : Trying access system files=>/wp-login.php(wp-login.php)	Hacking
🇫🇷 ELYAZ	2026-06-20 17:27:04 (5 days ago)	(y4) Failed scan -byebye- from 194.5.48.130 (JP/Japan/-): (CF_ENABLE)	Hacking
🇺🇸 Equity Steward	2026-06-20 05:04:39 (6 days ago)	Systematic automated scraping and endpoint enumeration against equitysteward.org. 1 offences recorde ... show more Systematic automated scraping and endpoint enumeration against equitysteward.org. 1 offences recorded. Trigger: Honeypot path accessed: /wp-login.php — deliberately ignored robots.txt Disallow directive.. Canary ref: 6a354a0e-f49. show less	Web App Attack Bad Web Bot
🇬🇧 consul.to	2026-06-19 21:47:01 (6 days ago)	Web attack/malicious scanning detected	Web App Attack
🇯🇵 beon	2026-06-17 17:56:36 (1 week ago)	[DateTime=>2026-06-17T17:56:36Z (UTC)] , [HoneyPot_Hit=>once] , [HoneyPot=>/wp-login.php] , [total_H ... show more [DateTime=>2026-06-17T17:56:36Z (UTC)] , [HoneyPot_Hit=>once] , [HoneyPot=>/wp-login.php] , [total_Hit=>once] , [Keyword=>WordPress] show less	Bad Web Bot Web App Attack
🇺🇸 WeekendWeb	2026-05-13 04:45:55 (1 month ago)	Wordpress Vunerability attack	Web App Attack
🇩🇪 kjaerulff	2026-04-24 09:25:51 (2 months ago)	Failed Wordpress login using xmlrpc.php	Web App Attack
🇨🇭 backslash	2026-03-16 14:21:01 (3 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
Anonymous	2026-03-09 12:11:02 (3 months ago)	...	Brute-Force
🇨🇿 lp	2026-03-09 03:06:27 (3 months ago)	Email account brute force: 2 attempts were recorded from 194.5.48.130 2026-03-09T03:46:22+01:00 warn ... show more Email account brute force: 2 attempts were recorded from 194.5.48.130 2026-03-09T03:46:22+01:00 warning: unknown[194.5.48.130]: SASL PLAIN authentication failed: authentication failure, [email protected] 2026-03-09T03:46:23+01:00 warning: unknown[194.5.48.130]: SASL LOGIN authentication failed: authentication failure, [email protected] show less	Brute-Force

Showing 1 to 15 of 76 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇭 107.189.1.82

🇺🇸 100.29.192.17

🇳🇱 86.54.31.36

🇱🇹 45.227.254.170

🇫🇷 5.39.1.248

🇳🇱 152.42.137.70

🇺🇸 107.150.105.153

🇳🇱 91.92.40.5

🇺🇸 81.30.98.225

🇺🇸 66.132.172.140

🇺🇸 64.31.55.20

🇺🇦 46.211.233.200

🇺🇦 46.35.226.46

🇹🇭 203.154.158.195

🇭🇰 199.45.154.184

🇹🇼 198.235.24.99

🇺🇸 198.46.211.159

🇲🇽 187.191.48.23

🇳🇱 91.92.40.231

🇨🇦 85.217.149.54