JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 48.218.186.19

48.218.186.19 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 45%: ?

45%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 48.218.186.19

Whois 48.218.186.19

IP Abuse Reports for 48.218.186.19:

This IP address has been reported a total of 22 times from 20 distinct sources. 48.218.186.19 was first reported on May 20th 2026, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 AdminPL	2026-05-27 00:27:42 (3 weeks ago)	Automated malicious scan on custom CMS. Path: /wp-config-sample.php	Web App Attack
Anonymous	2026-05-20 03:32:24 (1 month ago)	48.218.186.19 - - [20/May/2026:05:32:19 +0200] "GET /wp-content/plugins/admin.php HTTP/1.0" 404 456 ... show more 48.218.186.19 - - [20/May/2026:05:32:19 +0200] "GET /wp-content/plugins/admin.php HTTP/1.0" 404 456 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 48.218.186.19 - - [20/May/2026:05:32:23 +0200] "GET /wp-includes/Text/Diff/Engine.php HTTP/1.0" 404 456 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 48.218.186.19 - - [20/May/2026:05:32:23 +0200] "GET /wp-content/admin.php HTTP/1.0" 404 456 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 48.218.186.19 - - [20/May/2026:05:32:23 +0200] "GET /wp-content/themes/admin.php HTTP/1.0" 404 456 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 48.218.186.19 - - [20/May/2026:05:32:24 +0200] "GET /wp-content/index.php HTTP/1.0" 404 456 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; ... show less	Brute-Force Web App Attack
🇺🇸 Epimetheus	2026-05-20 03:28:52 (1 month ago)	Unauthorized access attempts: [GET] /info.php [GET] /admin.php/wp-includes/certificates/about.php [ ... show more Unauthorized access attempts: [GET] /info.php [GET] /admin.php/wp-includes/certificates/about.php [GET] /wp-includes/interactivity-api/index.php [GET] /wp-content/upgrade/index.php [GET] /404.php [GET] /wp-content/themes/admin.php [GET] /wk/index.php [GET] /admin.php [GET] /function/function.php [GET] /php.php [GET] /dx.php [GET] /wp-content/uploads/index.php [GET] /sadcut1.php [GET] /wp-content/themes/about.php [GET] /wp-content/plugins/core-plugin/include.php [GET] /7logs.php [GET] /radio.php [GET] /.well-known/pki-validation [GET] /a.php [GET] /doc.php [GET] /.dj/index.php [GET] /ms-edit.php [GET] /cgi-bin [GET] /wp-signin.php [GET] /x.php [GET] /xxx.php [GET] /wp-includes/PHPMailer [GET] /bless.php [GET] /wp-content/plugins/admin.php [GET] /php8.php [GET] /simple.php UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 show less	Web App Attack
🇨🇭 4server	2026-05-20 03:25:44 (1 month ago)	[WedMay2005:25:37.6921692026][security2:error][pid606406:tid606413][client48.218.186.19:0]ModSecurit ... show more [WedMay2005:25:37.6921692026][security2:error][pid606406:tid606413][client48.218.186.19:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"wp-content/uploads/.\*\\\\\\\\.ph\(\?:p\\|tml\\|t\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf\"][line\"5100\"][id\"382238\"][rev\"2\"][msg\"Atomicorp.comWAFRules-VirtualJustInTimePatch:PHPfileexecutioninuploadsdirectorydenied\"][data\"wp-content/uploads/index.php\"][severity\"CRITICAL\"][hostname\"swiss-web-hosting.hostingedominio.net\"][uri\"/wp-content/uploads/index.php\"][unique_id\"ag0psVbI-KP7VUWxkRepSQAAAAU\"] show less	Hacking Web App Attack
🇫🇷 tilellit.pro	2026-05-20 03:24:39 (1 month ago)	Fail2Ban banned 48.218.186.19 for security violations in jail nginx-aggressive. Log: 2026/05/20 03:2 ... show more Fail2Ban banned 48.218.186.19 for security violations in jail nginx-aggressive. Log: 2026/05/20 03:24:31 [error] FastCGI sent in stderr: "Primary script unknown" , client: 48.218.186.19, server: [REDACTED], request: "GET /wk/index.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED] 2026/05/20 03:24:39 [error] FastCGI sent in stderr: "Primary script unknown" , client: 48.218.186.19, server: [REDACTED], request: "GET /wp-includes/Text/Diff/Engine.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED] ... show less	Bad Web Bot Web App Attack
🇬🇧 Greg Poulson	2026-05-20 03:22:10 (1 month ago)	Our website was hit by this DDOS at a rate of 107 in 5 minutes.	DDoS Attack Web Spam Brute-Force
🇷🇺 DZBOT	2026-05-20 03:19:04 (1 month ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇳🇱 Mangelot Hosting	2026-05-20 03:09:12 (1 month ago)	(upload_shell) srv103 Shell upload 48.218.186.19 (JP/Japan/-): 1 in the last 3600 secs; Ports: ; Di ... show more (upload_shell) srv103 Shell upload 48.218.186.19 (JP/Japan/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇦🇹 penguin-solutions.at	2026-05-20 03:07:17 (1 month ago)	Excessive 403/404 errors ...	Brute-Force Web App Attack
🇺🇸 mnsf	2026-05-20 03:05:28 (1 month ago)	Too many Status 40X (11)	Brute-Force Web App Attack
🇩🇪 kjaerulff	2026-05-20 02:48:08 (1 month ago)	Probing for PHP files (admin.php)	Web App Attack
🇱🇻 garmtech.com	2026-05-20 02:43:17 (1 month ago)	IM360 WAF: Block abusive scripts MV:/wp-admin/maint/index.php	Web App Attack
🇳🇱 Site.eu	2026-05-20 02:39:51 (1 month ago)	Excessive 404/403 errors	Brute-Force
🇬🇧 consul.to	2026-05-20 02:38:31 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇧🇪 cmbplf	2026-05-20 02:34:34 (1 month ago)	103 requests with url.path *config-sample.php	Brute-Force Bad Web Bot

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 125.130.249.158

🇸🇬 107.150.112.233

🇹🇼 83.147.14.26

🇺🇸 44.246.35.254

🇺🇸 20.64.105.76

🇺🇸 147.182.202.179

🇮🇳 123.252.206.122

🇨🇳 120.48.175.69

🇻🇳 115.76.51.91

🇺🇸 103.196.9.253

🇩🇪 87.106.204.59

🇺🇸 66.132.224.21

🇺🇸 65.49.1.26

🇧🇷 43.164.193.198

🇺🇸 35.252.180.68

🇯🇵 8.216.17.79

🇮🇳 2401:4900:88bc:587f:c1d6:3c7:fa74:26ee

🇧🇬 193.24.211.107

🇧🇷 138.121.39.66

🇺🇸 65.49.20.92