JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.61.41.242

194.61.41.242 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 14%: ?

14%

ISP	VPN Consumer Manila, Philippines
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	vpnconsumer.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.61.41.242

Whois 194.61.41.242

IP Abuse Reports for 194.61.41.242:

This IP address has been reported a total of 20 times from 14 distinct sources. 194.61.41.242 was first reported on October 21st 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Octopuce	2026-06-11 04:16:14 (1 day ago)	Aggressive web search of vulnerable pages: /.well-known/pki-validation/index.php /wp-content/uploads ... show more Aggressive web search of vulnerable pages: /.well-known/pki-validation/index.php /wp-content/uploads/admin.php /css/admin.php /adminfuns.php /w ... show less	Web App Attack
🇫🇷 ✨	2026-06-11 01:17:14 (1 day ago)	Domain : paulasmith.co.uk Rule : hack 2026-06-11 01:07:47 *hidden-privacy* GET /xp.php - 80 - 1 ... show more Domain : paulasmith.co.uk Rule : hack 2026-06-11 01:07:47 *hidden-privacy* GET /xp.php - 80 - 194.61.41.242 HTTP/1.1 Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 - paulasmith.co.uk 301 0 0 412 186 162 - - show less	Hacking SQL Injection Brute-Force
Anonymous	2026-03-03 11:01:54 (3 months ago)	"GET /wp-content/hello.php HTTP/1.1"	Hacking Web App Attack
🇫🇷 Octopuce	2026-03-02 18:44:08 (3 months ago)	Aggressive web search of vulnerable pages: /wp-content/hello.php /wp-admin/maint/bootstrap.php /them ... show more Aggressive web search of vulnerable pages: /wp-content/hello.php /wp-admin/maint/bootstrap.php /themes/zMousse/otuz1.php /wp-content/edit-wolf. ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-03-02 14:38:46 (3 months ago)	194.61.41.242 - - [02/Mar/2026:16:38:45 +0200] "GET /wp-admin/user/ HTTP/1.1" 404 275 "-" "Mozilla/5 ... show more 194.61.41.242 - - [02/Mar/2026:16:38:45 +0200] "GET /wp-admin/user/ HTTP/1.1" 404 275 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.61.41.242 - - [02/Mar/2026:16:38:45 +0200] "GET /wp-content/uploads/ao_ccss/ HTTP/1.1" 404 275 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" ... show less	Web App Attack
🇫🇷 dynamix	2026-03-02 12:24:46 (3 months ago)	Multiple WAF Violations	Web App Attack
🇳🇿 Antinson	2026-03-02 10:25:59 (3 months ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇬🇧 consul.to	2026-02-24 06:45:17 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 myagent.site	2026-02-24 00:43:58 (3 months ago)	Blocking for trying to access an exploit file: /vendor/phpunit/phpunit/src/Util/PHP/	Hacking
🇺🇸 KitsuneTech	2026-02-12 09:38:33 (4 months ago)	194.61.41.242 - - [12/Feb/2026:03:38:31 -0600] "GET /wp-content/hello.php HTTP/1.1" 301 252 "-" "Moz ... show more 194.61.41.242 - - [12/Feb/2026:03:38:31 -0600] "GET /wp-content/hello.php HTTP/1.1" 301 252 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" ... show less	Web App Attack
🇳🇿 Antinson	2026-02-12 03:19:24 (4 months ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇧🇪 cmbplf	2026-02-11 11:11:50 (4 months ago)	228 requests with url.path /.well-known/acme-challenge/.php	Brute-Force Bad Web Bot
🇦🇺 aranguren.org	2026-02-11 07:21:51 (4 months ago)	194.61.41.242 - - [11/Feb/2026:18:21:50 +1100] "GET /cw.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (X11; ... show more 194.61.41.242 - - [11/Feb/2026:18:21:50 +1100] "GET /cw.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.61.41.242 - - [11/Feb/2026:18:21:50 +1100] "GET /date.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.61.41.242 - - [11/Feb/2026:18:21:50 +1100] "GET /haxor.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.61.41.242 - - [11/Feb/2026:18:21:50 +1100] "GET /icomsium.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.61.41.242 - - [11/Feb/2026:18:21:50 +1100] "GET /ico.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.61.41.242 - - [11/Feb/2026:18:21:50 ... show less	Bad Web Bot
🇳🇿 Antinson	2026-02-10 23:00:59 (4 months ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-10 21:56:49 (4 months ago)	(mod_security) mod_security (id:240000) triggered by 194.61.41.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240000) triggered by 194.61.41.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 16:47:59.340924 2026] [security2:error] [pid 19477:tid 19477] [client 194.61.41.242:30465] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|matterofbritain.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "matterofbritain.com"] [uri "/images/stories/themes.php"] [unique_id "aYunjxA_AVmdxiSCb4h-4AAAAF0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 152.32.159.79

🇩🇪 45.135.141.21

🇸🇳 41.82.50.218

🇮🇳 20.193.141.133

🇷🇴 2.57.121.112

🇩🇪 213.209.159.56

🇨🇦 199.21.149.124

🇸🇬 152.42.164.200

🇨🇳 106.13.30.117

🇩🇪 213.209.159.215

🇲🇽 187.136.39.253

🇧🇷 148.227.123.39

🇩🇪 139.19.117.131

🇫🇷 78.197.144.150

🇺🇸 3.14.10.133

🇺🇸 132.196.25.14

🇹🇿 102.64.69.13

🇬🇧 81.19.219.201

🇮🇳 61.12.86.155

🇷🇴 2.57.121.25