JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 8.149.143.18

8.149.143.18 was found in our database!

This IP was reported 113 times. Confidence of Abuse is 100%: ?

100%

ISP	Aliyun Computing Co.LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37963
Domain Name	alibabacloud.com
Country	🇨🇳 China
City	Hangzhou, Zhejiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 8.149.143.18

Whois 8.149.143.18

IP Abuse Reports for 8.149.143.18:

This IP address has been reported a total of 113 times from 48 distinct sources. 8.149.143.18 was first reported on May 15th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-06-06 07:15:04 (1 hour ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇨🇦 1gz	2026-06-06 06:42:10 (2 hours ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /wp-json/wp/v2/users/me UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 LRob.fr	2026-06-06 03:30:03 (5 hours ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇬🇧 spamverify.com	2026-06-05 23:51:41 (8 hours ago)	Honeypot Hit: WordPress Users	Web Spam Blog Spam Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-05 14:51:24 (17 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇫🇷 ELYAZ	2026-06-05 13:23:34 (19 hours ago)	(y4) Failed scan -byebye- from 8.149.143.18 (CN/China/-): (CF_ENABLE)	Hacking
🇫🇷 masterguru	2026-06-05 11:49:51 (20 hours ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 8.149.143.18 (CN/China/-): 1 in the last 3600 ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 8.149.143.18 (CN/China/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇩🇪 LRob.fr	2026-06-05 10:00:11 (22 hours ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇦🇺 FSB.ru - Is it?	2026-06-05 08:13:16 (1 day ago)	Brute force login for honeypot user accounts	Brute-Force Web App Attack
🇨🇦 1gz	2026-06-05 07:20:54 (1 day ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/2 (POST method ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/2 (POST method) Endpoint: /wp-login.php UA: Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 masterguru	2026-06-05 05:49:38 (1 day ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 8.149.143.18 (CN/China/-): 1 in the last 3600 ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 8.149.143.18 (CN/China/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇩🇪 london2038.com	2026-06-05 04:57:49 (1 day ago)	Probing for exploits 8.149.143.18 - - [05/Jun/2026:06:57:34 +0200] "GET /wp-login.php HTTP/2.0" 301 ... show more Probing for exploits 8.149.143.18 - - [05/Jun/2026:06:57:34 +0200] "GET /wp-login.php HTTP/2.0" 301 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 8.149.143.18 - Mario [05/Jun/2026:06:57:45 +0200] "GET /wp-json/wp/v2/users/me HTTP/2.0" 301 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" show less	Hacking Web App Attack
🇩🇪 FeG Deutschland	2026-06-05 02:26:23 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack
🇩🇪 Martin Lundstrom	2026-06-05 00:25:38 (1 day ago)	https://www.eagleeye-intelligence.com — WordPress attack. Automatically detected and blocked.	Web App Attack
Anonymous	2026-06-04 14:55:05 (1 day ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot

Showing 1 to 15 of 113 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 2a02:4780:13:1944:0:1d5c:2438:1

🇯🇵 172.253.80.213

🇧🇮 154.117.199.56

🇨🇳 111.17.199.57

🇺🇸 107.174.79.238

🇻🇳 103.159.54.61

🇻🇳 103.159.50.137

🇮🇳 103.16.202.187

🇮🇩 103.16.117.30

🇰🇿 89.42.61.93

🇩🇪 69.5.169.184

🇧🇪 34.62.244.192

🇷🇴 2.57.122.177

🇱🇹 194.165.16.166

🇵🇰 160.187.180.175

🇨🇳 124.77.62.1

🇨🇳 122.96.28.85

🇵🇰 117.102.4.138

🇮🇩 103.159.199.42

🇲🇾 103.159.132.217