JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.157.184.148

202.157.184.148 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 71%: ?

71%

ISP	PT. EXABYTES NETWORK INDONESIA
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136170
Domain Name	exabytes.co.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.157.184.148

Whois 202.157.184.148

IP Abuse Reports for 202.157.184.148:

This IP address has been reported a total of 23 times from 16 distinct sources. 202.157.184.148 was first reported on April 28th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Victor López	2026-06-21 03:01:09 (1 day ago)	www.vpardilalaw.com 202.157.184.148 - - [20/Jun/2026:22:01:08 -0500] "POST /wp-login.php HTTP/1.1" 2 ... show more www.vpardilalaw.com 202.157.184.148 - - [20/Jun/2026:22:01:08 -0500] "POST /wp-login.php HTTP/1.1" 200 2080 "https://www.vpardilalaw.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15" www.vpardilalaw.com 202.157.184.148 - - [20/Jun/2026:22:01:08 -0500] "POST /wp-login.php HTTP/1.1" 200 2106 "https://www.vpardilalaw.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" www.vpardilalaw.com 202.157.184.148 - - [20/Jun/2026:22:01:08 -0500] "POST /wp-login.php HTTP/1.1" 200 2057 "https://www.vpardilalaw.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" ... show less	Hacking Web App Attack
🇪🇸 masterguru	2026-06-19 22:29:28 (2 days ago)	(wplogin) Failed WordPress login from 202.157.184.148 (ID/Indonesia/-): 5 in the last 3600 secs (0-1 ... show more (wplogin) Failed WordPress login from 202.157.184.148 (ID/Indonesia/-): 5 in the last 3600 secs (0-122) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-14 17:00:55 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 202.157.184.148 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 202.157.184.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 13:00:47.658296 2026] [security2:error] [pid 1984:tid 1984] [client 202.157.184.148:48666] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|spayinsulationpros.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "spayinsulationpros.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai7ePzTnenD7xLOmSmMr9QAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 12:31:37 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 202.157.184.148 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 202.157.184.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 08:31:32.719378 2026] [security2:error] [pid 12598:tid 12598] [client 202.157.184.148:51100] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.phalanxemail.axiomemail.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.phalanxemail.axiomemail.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ai6fJNKmwi0VDxxNaCoMlQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-14 12:11:46 (1 week ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 202.157.184.148 (ID/Indonesia/-): 1 in the las ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 202.157.184.148 (ID/Indonesia/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-14 10:17:44 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 202.157.184.148 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 202.157.184.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 06:17:38.174071 2026] [security2:error] [pid 27919:tid 27919] [client 202.157.184.148:36422] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|constructionloansfunding.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "constructionloansfunding.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai5_wnHdCEVOsvnYkFPnngAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 antlac1	2026-06-14 10:09:32 (1 week ago)	crowdsecurity/http-wordpress_user-enum	Brute-Force Web App Attack
🇺🇸 Jason Howell	2026-06-14 09:41:52 (1 week ago)	202.157.184.148 - - [14/Jun/2026:04:41:48 -0500] "POST /wp-login.php HTTP/1.1" 200 5218 "https://67. ... show more 202.157.184.148 - - [14/Jun/2026:04:41:48 -0500] "POST /wp-login.php HTTP/1.1" 200 5218 "https://67.217.59.131/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 202.157.184.148 - - [14/Jun/2026:04:41:49 -0500] "POST /wp-login.php HTTP/1.1" 200 2637 "https://67.217.59.131/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 202.157.184.148 - - [14/Jun/2026:04:41:49 -0500] "POST /wp-login.php HTTP/1.1" 200 2637 "https://67.217.59.131/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64; rv:121.0) Gecko/20100101 Firefox/121.0" 202.157.184.148 - - [14/Jun/2026:04:41:50 -0500] "POST /wp-login.php HTTP/1.1" 200 2637 "https://67.217.59.131/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 202.157.184.148 - - [14/Jun/2026:04:41:50 -0500] "POST /wp-login.php HTTP ... show less	Web App Attack
🇪🇸 elcruzado.es	2026-06-14 09:09:41 (1 week ago)	(wordpress) Failed wordpress login from 202.157.184.148 (MY/Malaysia/-)	Brute-Force
🇺🇸 Victor López	2026-06-14 08:49:06 (1 week ago)	vpardilalaw.com 202.157.184.148 - - [14/Jun/2026:03:49:05 -0500] "POST /wp-login.php HTTP/1.1" 200 2 ... show more vpardilalaw.com 202.157.184.148 - - [14/Jun/2026:03:49:05 -0500] "POST /wp-login.php HTTP/1.1" 200 2057 "https://vpardilalaw.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" vpardilalaw.com 202.157.184.148 - - [14/Jun/2026:03:49:05 -0500] "POST /wp-login.php HTTP/1.1" 200 2063 "https://vpardilalaw.com/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" vpardilalaw.com 202.157.184.148 - - [14/Jun/2026:03:49:06 -0500] "POST /wp-login.php HTTP/1.1" 200 2063 "https://vpardilalaw.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Hacking Web App Attack
🇷🇴 INTEQ	2026-06-14 06:49:28 (1 week ago)	Web attack from 202.157.184.148	Web App Attack
🇺🇸 nyt	2026-06-14 04:44:34 (1 week ago)	WP User Enumeration, WP Author Enumeration	Web App Attack
🇪🇸 masterguru	2026-06-14 04:16:50 (1 week ago)	(wplogin) Failed WordPress login from 202.157.184.148 (ID/Indonesia/-): 5 in the last 3600 secs (0-1 ... show more (wplogin) Failed WordPress login from 202.157.184.148 (ID/Indonesia/-): 5 in the last 3600 secs (0-122) show less	Hacking
Anonymous	2026-06-14 03:36:16 (1 week ago)	Attac	Brute-Force
🇩🇪 LRob.fr	2026-06-14 01:30:04 (1 week ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 64.62.197.42

🇺🇸 2607:f8b0:4002:c03::122

🇨🇳 220.194.168.247

🇰🇷 211.62.96.42

🇨🇳 175.30.48.129

🇨🇳 121.196.157.119

🇨🇳 101.126.147.62

🇩🇪 69.72.244.59

🇺🇸 66.132.195.83

🇧🇪 35.187.44.3

🇺🇸 216.180.246.84

🇺🇸 195.184.76.183

🇳🇱 185.242.226.33

🇮🇪 162.158.230.137

🇪🇸 162.158.122.86

🇭🇰 103.100.211.71

🇧🇬 79.124.58.102

🇺🇸 64.188.169.184

🇹🇭 45.150.130.97

🇺🇸 45.3.36.108