JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 195.88.211.243

195.88.211.243 was found in our database!

This IP was reported 52 times. Confidence of Abuse is 71%: ?

71%

ISP	ArenHost
Usage Type	Data Center/Web Hosting/Transit
ASN	AS214882
Hostname(s)	maleo.kencang.com
Domain Name	arenhost.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 195.88.211.243

Whois 195.88.211.243

IP Abuse Reports for 195.88.211.243:

This IP address has been reported a total of 52 times from 27 distinct sources. 195.88.211.243 was first reported on May 5th 2026, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Hazzard	2026-06-16 04:04:22 (22 hours ago)	(wordpress) Failed wordpress login from 195.88.211.243 (ID/Indonesia/Jakarta/Jakarta/maleo.kencang.c ... show more (wordpress) Failed wordpress login from 195.88.211.243 (ID/Indonesia/Jakarta/Jakarta/maleo.kencang.com/[redacted]): (CF_ENABLE) show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-15 16:44:55 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 195.88.211.243 (maleo.kencang.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 195.88.211.243 (maleo.kencang.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 12:44:47.033972 2026] [security2:error] [pid 6989:tid 7005] [client 195.88.211.243:48648] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|grupojdg.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "grupojdg.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ajAr_yeXNcrIRpOr7O9JkQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇹 Malta	2026-06-13 12:25:48 (3 days ago)	195.88.211.243 - - [13/Jun/2026:14:25:48 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 195.88.211.243 - - [13/Jun/2026:14:25:48 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇫🇷 tecnicorioja	2026-06-11 22:00:41 (5 days ago)	wp-login attack [11/Jun/2026:20:11:56	Brute-Force Web App Attack
🇲🇹 Malta	2026-06-11 13:20:46 (5 days ago)	195.88.211.243 - - [11/Jun/2026:15:20:46 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 195.88.211.243 - - [11/Jun/2026:15:20:46 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇲🇹 Malta	2026-05-25 17:49:47 (3 weeks ago)	195.88.211.243 - - [25/May/2026:19:49:47 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 195.88.211.243 - - [25/May/2026:19:49:47 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇩🇪 4server	2026-05-24 07:58:45 (3 weeks ago)	[SunMay2409:58:41.7131862026][security2:error][pid2234536:tid2234570][client195.88.211.243:0]ModSecu ... show more [SunMay2409:58:41.7131862026][security2:error][pid2234536:tid2234570][client195.88.211.243:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"mgevents.ch\"][uri\"/wp-login.php\"][unique_id\"ahKvsYpqmYvLyvSff71GjgAAABY\"]\,referer:https://mgevents.ch/wp-login.php show less	Port Scan Brute-Force Web App Attack
Anonymous	2026-05-23 05:40:04 (3 weeks ago)	Web App Attack, Hacking	Hacking Web App Attack
Anonymous	2026-05-22 00:25:06 (3 weeks ago)	Bot / scanning and/or hacking attempts: [2/2] done, POST /wp-login.php HTTP/2.0, GET /wp-login.php H ... show more Bot / scanning and/or hacking attempts: [2/2] done, POST /wp-login.php HTTP/2.0, GET /wp-login.php HTTP/2.0 show less	Hacking Web App Attack
🇫🇷 tecnicorioja	2026-05-21 22:01:23 (3 weeks ago)	wp-login attack [21/May/2026:10:07:43	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-21 21:16:53 (3 weeks ago)	(mod_security) mod_security (id:225170) triggered by 195.88.211.243 (maleo.kencang.com): 1 in the la ... show more (mod_security) mod_security (id:225170) triggered by 195.88.211.243 (maleo.kencang.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 17:16:45.439256 2026] [security2:error] [pid 1010:tid 1010] [client 195.88.211.243:33630] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|garantagroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "garantagroup.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ag92PTIbqV8d7JglqUKFjQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇹 Malta	2026-05-21 19:28:17 (3 weeks ago)	195.88.211.243 - - [21/May/2026:21:28:17 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 195.88.211.243 - - [21/May/2026:21:28:17 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇩🇪 Lino Project	2026-05-21 09:36:10 (3 weeks ago)	195.88.211.243 - - [21/May/2026:11:36:06 +0200] "GET /wp-login.php HTTP/2.0" 403 285 "-" "Mozilla/5. ... show more 195.88.211.243 - - [21/May/2026:11:36:06 +0200] "GET /wp-login.php HTTP/2.0" 403 285 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-05-21 09:07:02 (3 weeks ago)	2.394 requests from abuseipdb.com blacklisted IP (1yr2mos2w)	Brute-Force Bad Web Bot
🇳🇱 tmiland	2026-05-21 08:10:48 (3 weeks ago)	(wordpress_login) WordPress Login Attack 195.88.211.243 (ID/Indonesia/maleo.kencang.com): 3 in the l ... show more (wordpress_login) WordPress Login Attack 195.88.211.243 (ID/Indonesia/maleo.kencang.com): 3 in the last 3600 secs; IP: 195.88.211.243; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 195.88.211.243 - - [21/May/2026:10:10:39 +0200] "GET /wp-login.php HTTP/1.1" 200 1936 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 195.88.211.243 - - [21/May/2026:10:10:45 +0200] "GET /wp-login.php HTTP/1.1" 200 1936 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 195.88.211.243 - - [21/May/2026:10:10:46 +0200] "POST /wp-login.php HTTP/1.1" 200 2069 "https://.*/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Brute-Force

Showing 1 to 15 of 52 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 217.146.80.101

🇺🇸 195.184.76.74

🇺🇸 195.184.76.7

🇺🇸 172.203.234.251

🇺🇸 156.229.163.131

🇷🇺 152.32.227.252

🇺🇸 66.132.172.234

🇧🇷 205.210.31.196

🇬🇧 193.176.29.14

🇬🇧 193.32.209.227

🇬🇧 185.216.145.175

🇺🇸 172.217.46.87

🇺🇸 91.230.168.7

🇵🇹 81.193.194.30

🇳🇱 45.148.10.183

🇬🇧 5.226.140.12

🇺🇸 2607:f8b0:4003:c01::124

🇰🇷 221.168.170.14

🇧🇷 205.210.31.165

🇺🇸 193.34.75.120