JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.5.48.157

194.5.48.157 was found in our database!

This IP was reported 61 times. Confidence of Abuse is 52%: ?

52%

ISP	VPN Consumer Tokyo, Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.5.48.157

Whois 194.5.48.157

IP Abuse Reports for 194.5.48.157:

This IP address has been reported a total of 61 times from 42 distinct sources. 194.5.48.157 was first reported on December 4th 2024, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇮 valryx	2026-06-18 05:00:08 (9 hours ago)	🛡️ Cloudflare WAF - 190 malicious requests Actions: link_maze_injected, block Sources: firewallCusto ... show more 🛡️ Cloudflare WAF - 190 malicious requests Actions: link_maze_injected, block Sources: firewallCustom, linkMaze Country: JP Attacked paths: • /wp-includes/SimplePie/XML/content.php • /wp-admin/css/colors/blue/atomlib.php • /wp-content/plugins/pwnd/admin-footer.php User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4 show less	Web App Attack
🇫🇮 [email protected]	2026-06-18 03:59:05 (10 hours ago)	Attack attempt against Interwebbi servers; (WPNINJA) Ninja Firewall attack on kuvakoju.fi (WP vulner ... show more Attack attempt against Interwebbi servers; (WPNINJA) Ninja Firewall attack on kuvakoju.fi (WP vulnerability) 194.5.48.157 (JP/Japan/-): 1 in the last 3600 secs (CF_ENABLE); IP: 194.5.48.157; Ports: *; Direction: 0; Trigger: LF_CUSTOMTRIGGER; show less	Web App Attack
🇪🇸 netfactotum	2026-06-17 13:18:31 (1 day ago)		Email Spam Brute-Force Exploited Host
🇵🇱 axiomofchoice.xyz	2026-06-16 15:15:14 (1 day ago)	endlessh trap: attempts=2 total_time_stuck=40.056s	Port Scan SSH Hacking
Anonymous	2026-06-02 03:31:24 (2 weeks ago)	Improper access to WordPress XML-RPC	Web App Attack
🇳🇱 BlueWire Hosting	2026-05-31 17:20:49 (2 weeks ago)	Probing websites for vulnerabilities	Web App Attack
🇩🇪 EGP Abuse Dept	2026-05-31 03:24:30 (2 weeks ago)	Scanning for web/db/file exploits on www.tonsbrillenmode.nl	SQL Injection Bad Web Bot Web App Attack
🇩🇪 4server	2026-05-30 22:48:53 (2 weeks ago)	[SunMay3100:48:50.6423582026][security2:error][pid224579:tid224700][client194.5.48.157:0]ModSecurity ... show more [SunMay3100:48:50.6423582026][security2:error][pid224579:tid224700][client194.5.48.157:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"connector\\\\\\\\.minimal\\\\\\\\.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf\"][line\"338\"][id\"393781\"][rev\"1\"][msg\"Atomicorp.comWAFRules-VirtualJustInTimePatch:WordPressFileManagerPluginattackblocked\"][severity\"CRITICAL\"][hostname\"life-live.ch\"][uri\"/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php\"][unique_id\"ahtpUn9mRzfkb63Wx2LIkQAAAMs\"] show less	Port Scan Brute-Force Web App Attack
🇿🇦 Tokolosh Hunters	2026-05-30 20:56:00 (2 weeks ago)	AutoBlockWindow-Known bad useragent query-2026-05-30 20:55:58	Bad Web Bot
🇿🇦 Tokolosh Hunters	2026-05-30 20:56:00 (2 weeks ago)	AutoBlockWindow-Known bad useragent query-2026-05-30 20:55:58	Bad Web Bot
🇬🇧 consul.to	2026-05-30 20:13:15 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇨🇭 4server	2026-05-21 22:18:41 (3 weeks ago)	[FriMay2200:18:35.5500812026][security2:error][pid1922431:tid1922443][client194.5.48.157:0]ModSecuri ... show more [FriMay2200:18:35.5500812026][security2:error][pid1922431:tid1922443][client194.5.48.157:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"367\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"xn--tirascarph-ieb.ch\"][uri\"/xmlrpc.php\"][unique_id\"ag-Eu_RhOt79UbYkXMpCmQAAAQo\"] show less	Hacking Web App Attack
🇩🇪 kjaerulff	2026-05-11 01:52:56 (1 month ago)	Failed Wordpress login using xmlrpc.php	Web App Attack
🇺🇸 WeekendWeb	2026-05-08 23:19:19 (1 month ago)	Wordpress Vunerability attack	Web App Attack
Anonymous	2026-04-18 05:01:02 (2 months ago)	BruteForce IMAP/POP3/SMTP	Brute-Force

Showing 1 to 15 of 61 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 153.76.10.217

🇺🇸 147.90.198.52

🇬🇧 104.143.224.115

🇷🇴 80.94.92.178

🇰🇷 59.24.133.197

🇮🇹 209.227.244.120

🇺🇸 198.137.18.156

🇺🇸 198.62.5.252

🇧🇷 187.120.118.61

🇺🇸 178.156.246.205

🇰🇷 169.211.232.182

🇳🇱 159.223.213.49

🇪🇬 156.223.30.128

🇺🇸 153.76.14.23

🇺🇸 136.115.6.186

🇵🇭 124.106.122.199

🇨🇳 118.196.86.191

🇮🇳 115.96.217.208

🇺🇸 113.20.0.58

🇮🇳 111.125.225.143