JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 203.159.81.34

203.159.81.34 was found in our database!

This IP was reported 93 times. Confidence of Abuse is 29%: ?

29%

ISP	VPN Consumer Network Services
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇮🇱 Israel
City	Tel Aviv, Tel Aviv

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 203.159.81.34

Whois 203.159.81.34

IP Abuse Reports for 203.159.81.34:

This IP address has been reported a total of 93 times from 47 distinct sources. 203.159.81.34 was first reported on April 14th 2024, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-22 02:06:17 (17 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-06-20 21:22:35 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-06-19 19:40:24 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 nodepile	2026-06-11 08:02:02 (1 week ago)	Repeatedly blocked bad web bot (tenant=82 method=GET path=/pages.php ua='python-requests/2.34.2')	Bad Web Bot
🇧🇷 SOC PR	2026-06-09 04:03:25 (1 week ago)	IPS: Microsoft ASP.NET Information Disclosure (MS15-041).	Hacking
🇺🇦 URAN Publishing Service	2026-06-07 13:43:46 (2 weeks ago)	203.159.81.34 - - [07/Jun/2026:16:43:45 +0300] "GET /wp-includes/block-supports/autoload_classmap.ph ... show more 203.159.81.34 - - [07/Jun/2026:16:43:45 +0300] "GET /wp-includes/block-supports/autoload_classmap.php HTTP/1.1" 404 707 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 203.159.81.34 - - [07/Jun/2026:16:43:45 +0300] "GET /wp-admin/network/network.php HTTP/1.1" 404 707 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" ... show less	Web App Attack
🇫🇷 Octopuce	2026-06-07 00:39:14 (2 weeks ago)	Aggressive web search of vulnerable pages: /images/admin.php /db.php /.well-known/pki-validation/mar ... show more Aggressive web search of vulnerable pages: /images/admin.php /db.php /.well-known/pki-validation/mariju.php /mah/function.php /wp-content/plugi ... show less	Web App Attack
🇬🇧 consul.to	2026-06-06 20:35:48 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 myagent.site	2026-03-13 20:53:40 (3 months ago)	Blocked user enumeration attempt	Hacking
🇩🇪 ValtonTahiri	2026-02-24 22:30:24 (3 months ago)	Honeypot hit: HTTP GET http://[SOME-IP]/config.local.json URL: http://[SOME-IP]/config.local.json Me ... show more Honeypot hit: HTTP GET http://[SOME-IP]/config.local.json URL: http://[SOME-IP]/config.local.json Method: GET Status: 200 User-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36 Host: [SOME-IP] Accept: / Other Headers: accept-encoding: *, connection: keep-alive show less	Hacking Bad Web Bot
🇫🇷 dynamix	2026-02-24 07:08:20 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-24 05:36:35 (3 months ago)	(mod_security) mod_security (id:240000) triggered by 203.159.81.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240000) triggered by 203.159.81.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 24 00:36:29.988060 2026] [security2:error] [pid 16876:tid 16876] [client 203.159.81.34:22649] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|clickableprizelinks.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "clickableprizelinks.com"] [uri "/images/stories/themes.php"] [unique_id "aZ043cVY-UftwXaMNFHxjwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-10 15:44:03 (4 months ago)	Multiple WAF Violations	Web App Attack
🇳🇱 Site.eu	2026-01-05 11:59:14 (5 months ago)	Excessive multi-domain requests	Brute-Force
🇷🇺 sms.ru	2026-01-05 09:42:09 (5 months ago)	/wp-admin/images/admin.php	Web App Attack

Showing 1 to 15 of 93 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 49.247.37.22

🇯🇵 43.153.185.56

🇮🇳 144.79.166.84

🇵🇭 103.186.106.210

🇷🇺 89.111.163.181

🇺🇸 66.132.172.249

🇬🇧 195.206.182.210

🇲🇽 187.251.132.2

🇺🇸 104.28.233.73

🇫🇷 13.140.183.104

🇺🇦 5.58.250.137

🇨🇳 222.138.62.38

🇰🇷 211.180.105.241

🇺🇸 192.3.206.66

🇺🇸 147.93.179.147

🇳🇱 64.89.162.161

🇺🇸 57.141.0.43

🇺🇸 54.80.19.3

🇩🇪 50.3.85.50

🇱🇰 2402:4000:b13a:2a29:c5d0:112:b274:b368