JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 151.252.58.165

151.252.58.165 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 40%: ?

40%

ISP	Vautron Rechenzentrum AG
Usage Type	Data Center/Web Hosting/Transit
ASN	AS25504
Hostname(s)	bek.bekserver.de
Domain Name	vautron.de
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 151.252.58.165

Whois 151.252.58.165

IP Abuse Reports for 151.252.58.165:

This IP address has been reported a total of 26 times from 7 distinct sources. 151.252.58.165 was first reported on November 11th 2021, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-17 03:36:08 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the las ... show more (mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 23:36:02.231148 2026] [security2:error] [pid 24568:tid 24568] [client 151.252.58.165:13640] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.comobarbershop.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.comobarbershop.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajIWIr1V5LrxLisGFEdjnQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 21:12:17 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the las ... show more (mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 17:12:13.119214 2026] [security2:error] [pid 28673:tid 28673] [client 151.252.58.165:20836] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.peacecampus.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.peacecampus.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajG8LS8NHqZ1d4KgTgIXTQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 SSH-Admin	2026-06-16 19:00:04 (4 days ago)	Probing for Exploits on ns200	Exploited Host Web App Attack
🇨🇦 SSH-Admin	2026-06-16 18:02:02 (5 days ago)	Probing for Exploits on ns74	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 16:21:17 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the las ... show more (mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 12:21:12.199703 2026] [security2:error] [pid 1038:tid 1038] [client 151.252.58.165:57530] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|doublenaughtspycar.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "doublenaughtspycar.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajF3-OgNS2zOHHzjOpLtHAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 NotCool	2026-06-16 12:59:18 (5 days ago)	[7200] (XMLRPC,WPLOGIN) Login failure/trigger from 151.252.58.165 (DE/Germany/bek.bekserver.de): 50 ... show more [7200] (XMLRPC,WPLOGIN) Login failure/trigger from 151.252.58.165 (DE/Germany/bek.bekserver.de): 50 in the last 3600 secs show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-16 08:46:10 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the las ... show more (mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 04:46:03.258012 2026] [security2:error] [pid 11358:tid 11464] [client 151.252.58.165:18418] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bortec-corp.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bortec-corp.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajENS-96emyunJyZ7K4a9gAAAQo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-16 08:31:10 (5 days ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-06-16 04:31:17 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the las ... show more (mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 00:31:13.670348 2026] [security2:error] [pid 23888:tid 23888] [client 151.252.58.165:38066] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.edgebiopharma.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.edgebiopharma.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajDRkcNckoIYC0YLWLDwAAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 01:57:52 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the las ... show more (mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 21:57:45.977770 2026] [security2:error] [pid 2653:tid 2653] [client 151.252.58.165:29786] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.margroberts.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.margroberts.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajCtmZ1i_0BrXtHDc-UGngAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 15:35:32 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the las ... show more (mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 11:35:25.400974 2026] [security2:error] [pid 20427:tid 20427] [client 151.252.58.165:30126] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.ruthbalser.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.ruthbalser.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajAbvRrg6qHOFWODWj2aTAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 10:35:06 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the las ... show more (mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 06:34:57.231080 2026] [security2:error] [pid 26955:tid 26955] [client 151.252.58.165:17880] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.intothebigempty.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.intothebigempty.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai_VUetLoSO8WHgQgJX6HAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 09:18:51 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the las ... show more (mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 05:18:46.915933 2026] [security2:error] [pid 21588:tid 21588] [client 151.252.58.165:9398] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.psychiatryabuse.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.psychiatryabuse.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai_Ddiv7wTTQlOM4fHDRkQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 07:53:48 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the las ... show more (mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 03:53:43.415443 2026] [security2:error] [pid 1574:tid 1574] [client 151.252.58.165:64688] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.sutherlandyogastudio.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.sutherlandyogastudio.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai-vhxv7RN-VBgBz6zfeRgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 06:41:06 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the las ... show more (mod_security) mod_security (id:225170) triggered by 151.252.58.165 (bek.bekserver.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 02:41:01.103962 2026] [security2:error] [pid 20772:tid 20772] [client 151.252.58.165:4822] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.paleopathologist.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.paleopathologist.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai-efW8hnkRA1nu6hxBGZgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2001:4ca0:108:42:0:80:6:9

🇰🇷 211.63.214.90

🇳🇱 185.93.89.79

🇵🇹 185.31.159.76

🇨🇳 171.110.110.216

🇺🇸 170.106.35.137

🇺🇸 147.185.132.103

🇲🇴 125.31.2.160

🇹🇭 118.193.56.184

🇺🇸 91.230.168.107

🇩🇪 69.5.169.180

🇺🇸 45.156.129.95

🇩🇪 45.142.107.96

🇬🇧 2a06:4880:a000::c4

🇺🇸 205.210.31.56

🇵🇱 194.180.49.108

🇳🇱 176.65.148.58

🇨🇳 171.110.110.217

🇿🇦 165.165.116.177

🇻🇳 165.154.137.186