JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 203.188.189.14

203.188.189.14 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 25%: ?

25%

ISP	VPN Consumer Singapore, Republic of Singapore
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	vpnconsumer.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 203.188.189.14

Whois 203.188.189.14

IP Abuse Reports for 203.188.189.14:

This IP address has been reported a total of 17 times from 16 distinct sources. 203.188.189.14 was first reported on January 22nd 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇦 URAN Publishing Service	2026-06-07 12:13:26 (2 weeks ago)	203.188.189.14 - - [07/Jun/2026:15:13:25 +0300] "GET /wp-admin/images/bootstrap.php HTTP/1.1" 404 70 ... show more 203.188.189.14 - - [07/Jun/2026:15:13:25 +0300] "GET /wp-admin/images/bootstrap.php HTTP/1.1" 404 706 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 203.188.189.14 - - [07/Jun/2026:15:13:25 +0300] "GET /wp-content/plugins/seoplugins/db.php?u HTTP/1.1" 404 706 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" ... show less	Web App Attack
🇳🇱 Site.eu	2026-06-07 08:14:31 (2 weeks ago)	Excessive 404/403 errors	Brute-Force
🇫🇮 YF	2026-06-07 07:00:22 (2 weeks ago)	Attaque distribuée subnet	DDoS Attack Web App Attack
🇫🇷 Octopuce	2026-06-06 21:22:09 (3 weeks ago)	Aggressive web search of vulnerable pages: /images/bypass.php /wp-includes/widgets/class-t.api.php / ... show more Aggressive web search of vulnerable pages: /images/bypass.php /wp-includes/widgets/class-t.api.php /wp-content/edit.php /.well-known/info.php / ... show less	Web App Attack
🇬🇧 consul.to	2026-06-06 20:11:09 (3 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-02-24 13:20:11 (4 months ago)	(mod_security) mod_security (id:240000) triggered by 203.188.189.14 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 203.188.189.14 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 24 08:20:05.225269 2026] [security2:error] [pid 13365:tid 13365] [client 203.188.189.14:63555] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|alanbeckwith.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "alanbeckwith.com"] [uri "/images/stories/themes.php"] [unique_id "aZ2lhcS8g74yitsrV4E5AAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-23 01:27:00 (4 months ago)	[redacted] 203.188.189.14 - - [23/Feb/2026:02:26:54 +0100] "GET /wp-admin/includes/index.php HTTP/1. ... show more [redacted] 203.188.189.14 - - [23/Feb/2026:02:26:54 +0100] "GET /wp-admin/includes/index.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" [redacted] 203.188.189.14 - - [23/Feb/2026:02:26:54 +0100] "GET /wp-content/admin-footer.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" [redacted] 203.188.189.14 - - [23/Feb/2026:02:26:54 +0100] "GET /modules/mod_simplefileuploadv1.3/elements/admin-footer.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" [redacted] 203.188.189.14 - - [23/Feb/2026:02:26:55 +0100] "GET /wp-admin/css/colors/blue/wp-atom.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" [redacted] 203.188.189.1 ... show less	Hacking Web App Attack
Anonymous	2026-02-21 21:05:16 (4 months ago)	Blocked: Reason='Vulnerability probing — PHP scan detected (23/60 min)'; Requests=23	Port Scan
Anonymous	2026-02-16 07:07:49 (4 months ago)	wordpress-trap	Web App Attack
🇬🇧 Swiptly	2026-02-15 22:17:52 (4 months ago)	Excessive 403/404/405 PHP/CMS errors from scanning or broken bots ...	Web App Attack
Anonymous	2026-02-11 21:20:03 (4 months ago)	\| [Dangerous / Bangladesh] ~100 hits from 10 unique IPs. Type: DoS Defender- Web server 400 error co ... show more \| [Dangerous / Bangladesh] ~100 hits from 10 unique IPs. Type: DoS Defender- Web server 400 error code show less	Hacking SQL Injection Web App Attack
🇳🇿 Antinson	2026-02-09 20:55:41 (4 months ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇳🇱 rshict	2025-05-02 09:34:31 (1 year ago)	Hacking, Brute-Force, Web App Attack	Hacking Brute-Force Web App Attack
Anonymous	2025-02-08 21:29:47 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇵🇱 sefinek.net	2025-02-06 09:14:47 (1 year ago)	Triggered Cloudflare WAF (firewallCustom) from KE. Action taken: MANAGED_CHALLENGE ASN: 137409 (GSLN ... show more Triggered Cloudflare WAF (firewallCustom) from KE. Action taken: MANAGED_CHALLENGE ASN: 137409 (GSLNETWORKS-AS-AP GSL Networks Pty LTD) Protocol: HTTP/1.1 (GET method) Endpoint: / Timestamp: 2025-02-06T08:16:10Z Ray ID: 90d9b253d8ab2ba3 UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51 Report generated by Cloudflare-WAF-To-AbuseIPDB: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2602:fa59:10:72b::1

🇧🇷 189.111.93.199

🇺🇸 44.221.37.41

🇺🇸 195.184.76.127

🇺🇸 100.29.192.121

🇫🇷 85.217.140.33

🇺🇸 66.132.172.37

🇨🇭 20.203.219.109

🇨🇴 200.10.29.235

🇧🇦 195.222.43.138

🇹🇭 184.22.220.10

🇺🇸 3.129.187.38

🇺🇸 216.226.77.20

🇧🇪 198.235.24.247

🇬🇧 35.203.210.184

🇮🇳 103.180.212.135

🇯🇵 45.43.60.220

🇸🇬 43.134.167.218

🇺🇸 2a0f:8307:e9c0:5f63:a754:afb5:80e5:7fde

🇧🇷 205.210.31.220