JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 117.53.155.161

117.53.155.161 was found in our database!

This IP was reported 49 times. Confidence of Abuse is 55%: ?

55%

ISP	Exa Bytes Network Sdn.Bhd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46015
Hostname(s)	vps.costacoffeemy.com
Domain Name	exabytes.my
Country	🇲🇾 Malaysia
City	Kuala Lumpur, Kuala Lumpur

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 117.53.155.161

Whois 117.53.155.161

IP Abuse Reports for 117.53.155.161:

This IP address has been reported a total of 49 times from 14 distinct sources. 117.53.155.161 was first reported on July 28th 2025, and the most recent report was 53 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-19 22:53:17 (53 minutes ago)	(mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 18:53:10.004679 2026] [security2:error] [pid 29233:tid 29233] [client 117.53.155.161:59540] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|learnserve.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "learnserve.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajXIVod0UrBrcWSECHhc0QAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 10:32:18 (13 hours ago)	(mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 06:32:14.337966 2026] [security2:error] [pid 2984:tid 2984] [client 117.53.155.161:51864] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.doctoredwinalvarez.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.doctoredwinalvarez.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajUarqKB-1_LhUmJp7eyYgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-18 05:26:50 (1 day ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-06-18 05:12:08 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 01:12:01.251933 2026] [security2:error] [pid 26101:tid 26101] [client 117.53.155.161:49588] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.peterndudar.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.peterndudar.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajN-ISt0kGIrRl2HaoP3TwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 11:24:16 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 07:24:09.698544 2026] [security2:error] [pid 3544:tid 3544] [client 117.53.155.161:39920] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.doctorbalog.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.doctorbalog.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajKD2Q03UxrrGsPmxYV1BQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-15 16:02:40 (4 days ago)	Attac	Brute-Force
🇫🇷 SpaceHost-Server	2026-06-13 22:25:51 (6 days ago)		Brute-Force Web App Attack
Anonymous	2026-06-12 14:38:49 (1 week ago)	[redacted] 117.53.155.161 - - [12/Jun/2026:16:38:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" " ... show more [redacted] 117.53.155.161 - - [12/Jun/2026:16:38:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0" [redacted] 117.53.155.161 - - [12/Jun/2026:16:38:10 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:62.0) Gecko/20100101 Firefox/62.0" [redacted] 117.53.155.161 - - [12/Jun/2026:16:38:30 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:64.0) Gecko/20100101 Firefox/64.0" [redacted] 117.53.155.161 - - [12/Jun/2026:16:38:30 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:51.0) Gecko/20100101 Firefox/51.0" [redacted] 117.53.155.161 - - [12/Jun/2026:16:38:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:42.0) Gecko/20100101 Firefox/42.0" [redacted] 117.53.155.1 ... show less	Hacking Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-12 07:34:27 (1 week ago)	Blocked by CSF 13 firewall - Rule: MY/Malaysia/vps.costacoffeemy.com	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 06:24:48 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 02:24:40.286378 2026] [security2:error] [pid 22257:tid 22257] [client 117.53.155.161:35958] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|rotentendales.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rotentendales.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiumKFLBEiwasMOFUg7tDgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 20:38:14 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 16:38:09.423536 2026] [security2:error] [pid 24678:tid 24678] [client 117.53.155.161:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.upskirtcrazy.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.upskirtcrazy.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiscseU3q5cAEi9qL51VXAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 08:50:29 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 04:50:22.082239 2026] [security2:error] [pid 27611:tid 27611] [client 117.53.155.161:59138] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.teleplussolutions.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.teleplussolutions.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aip2zo3YbvPPjl-HAiGutQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 23:11:50 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 19:11:43.211600 2026] [security2:error] [pid 3395:tid 3395] [client 117.53.155.161:47042] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.sizefinder.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.sizefinder.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ainvL_BQCWCF3xGeuAUP6AAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 20:19:41 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 16:19:33.824405 2026] [security2:error] [pid 8836:tid 8844] [client 117.53.155.161:49204] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.busybeerestaurant.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.busybeerestaurant.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ainG1ZVeCzuqokywqQPRMAAAAEY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 13:53:13 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in th ... show more (mod_security) mod_security (id:225170) triggered by 117.53.155.161 (vps.costacoffeemy.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 09:53:09.418481 2026] [security2:error] [pid 32230:tid 32230] [client 117.53.155.161:54260] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.virtualmediamasters.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.virtualmediamasters.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ailsResv44Obcl-2PFN7DgAAACI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 49 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.100.224.75

🇨🇳 220.154.134.180

🇰🇷 211.216.58.204

🇩🇪 194.88.98.102

🇮🇳 182.95.103.110

🇧🇷 179.104.239.97

🇮🇩 163.7.9.84

🇹🇭 58.10.106.236

🇧🇷 45.205.1.68

🇳🇱 45.148.10.151

🇺🇸 34.125.55.134

🇭🇰 13.94.39.162

🇳🇱 176.65.139.181

🇨🇳 124.230.54.165

🇬🇧 51.68.200.137

🇭🇰 42.200.66.116

🇮🇳 223.233.85.193

🇧🇷 205.210.31.236

🇬🇧 194.207.143.192

🇧🇴 181.188.176.242