JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 151.240.108.197

151.240.108.197 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 28%: ?

28%

ISP	GSL Networks Pty LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	globalsecurelayer.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 151.240.108.197

Whois 151.240.108.197

IP Abuse Reports for 151.240.108.197:

This IP address has been reported a total of 5 times from 4 distinct sources. 151.240.108.197 was first reported on May 26th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Nerdscave Hosting	2026-06-09 23:10:45 (1 day ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇫🇷 debaba	2026-06-09 22:36:26 (1 day ago)	151.240.108.197 - - [09/Jun/2026:22:36:20 +0000] "POST /wp-login.php HTTP/1.1" 200 2909 "-" "Mozilla ... show more 151.240.108.197 - - [09/Jun/2026:22:36:20 +0000] "POST /wp-login.php HTTP/1.1" 200 2909 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537 ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 21:42:30 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 151.240.108.197 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 151.240.108.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 17:42:24.840694 2026] [security2:error] [pid 26500:tid 26500] [client 151.240.108.197:35675] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 151.240.108.197 (+1 hits since last alert)\|lukeschicago.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "lukeschicago.com"] [uri "/xmlrpc.php"] [unique_id "aiiIwBob6IopBQQNjCX1MwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 pipeline.es	2026-05-26 09:09:25 (2 weeks ago)	Web scanning / probing for vulnerable paths	Port Scan Web App Attack
🇪🇸 pipeline.es	2026-05-26 02:44:56 (2 weeks ago)	Web scanning / probing for vulnerable paths \| URL: //2020/wp-includes/wlwmanifest.xml \| Evidence: re ... show more Web scanning / probing for vulnerable paths \| URL: //2020/wp-includes/wlwmanifest.xml \| Evidence: repartirviagens.pt 151.240.108.197 - - [26/May/2026:04:44:24 +0200] \"GET //2020/wp-includes/wlwmanifest.xml HTTP/1.1\" 404 20520 \"-\" \"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36\" GEOIP_COUNTRY_CODE=US \| ASN: GSL Networks Pty LTD \| Country: US show less	Port Scan Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.68

🇺🇸 162.216.150.225

🇺🇸 143.42.1.123

🇺🇸 216.25.89.90

🇷🇴 92.118.39.62

🇳🇱 46.8.68.144

🇩🇪 46.4.198.155

🇩🇪 91.98.178.80

🇺🇸 69.250.83.104

🇳🇱 45.148.10.121

🇮🇳 45.43.45.254

🇺🇸 20.163.5.243

🇺🇸 2607:f8b0:4001:c18::12b

🇧🇪 198.235.24.246

🇧🇷 179.217.229.187

🇺🇸 104.234.208.25

🇮🇩 103.154.231.122

🇷🇺 91.211.236.106

🇸🇬 45.78.198.199

🇺🇸 20.65.194.112