JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 94.48.68.78

94.48.68.78 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 30%: ?

30%

ISP	Saudi Telecom Company JSC
Usage Type	Fixed Line ISP
ASN	AS25019
Domain Name	stc.com.sa
Country	🇸🇦 Saudi Arabia
City	Jeddah, Mecca Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 94.48.68.78

Whois 94.48.68.78

IP Abuse Reports for 94.48.68.78:

This IP address has been reported a total of 5 times from 4 distinct sources. 94.48.68.78 was first reported on June 4th 2026, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 integrantservices.com	2026-06-04 10:43:56 (17 hours ago)	(wordpress) Failed wordpress login from 94.48.68.78 (SA/Saudi Arabia/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-04 08:31:22 (19 hours ago)	(mod_security) mod_security (id:240335) triggered by 94.48.68.78 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:240335) triggered by 94.48.68.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 04:31:16.988065 2026] [security2:error] [pid 6826:tid 6826] [client 94.48.68.78:30629] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 94.48.68.78 (+1 hits since last alert)\|eatcakecup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "eatcakecup.com"] [uri "/xmlrpc.php"] [unique_id "aiE31ItcqR1pHSHFIOUougAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 07:49:24 (20 hours ago)	(mod_security) mod_security (id:240335) triggered by 94.48.68.78 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:240335) triggered by 94.48.68.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 03:49:17.281512 2026] [security2:error] [pid 15677:tid 15677] [client 94.48.68.78:53127] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 94.48.68.78 (+1 hits since last alert)\|integrabroadcast.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "integrabroadcast.com"] [uri "/xmlrpc.php"] [unique_id "aiEt_ZO0MgVuKYnoluh12gAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-04 05:45:06 (22 hours ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-04 05:14:10 (22 hours ago)		Bad Web Bot Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.221

🇳🇱 89.21.67.144

🇺🇸 71.6.242.76

🇮🇩 36.64.33.82

🇨🇳 221.228.10.226

🇵🇪 209.45.42.243

🇸🇬 193.37.32.204

🇺🇸 172.121.197.137

🇺🇸 152.32.233.95

🇺🇸 147.185.132.99

🇨🇳 119.97.189.108

🇮🇩 103.191.14.243

🇸🇬 101.47.158.137

🇷🇴 80.94.95.34

🇺🇸 67.205.189.163

🇺🇸 66.132.195.49

🇺🇸 47.77.231.77

🇦🇲 45.129.185.7

🇺🇸 20.115.45.115

🇬🇧 213.166.84.47