JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 152.42.226.162

152.42.226.162 was found in our database!

This IP was reported 161 times. Confidence of Abuse is 47%: ?

47%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 152.42.226.162

Whois 152.42.226.162

IP Abuse Reports for 152.42.226.162:

This IP address has been reported a total of 161 times from 62 distinct sources. 152.42.226.162 was first reported on June 9th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-09 23:58:07 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 152.42.226.162 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 152.42.226.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 19:58:03.899839 2026] [security2:error] [pid 28751:tid 28751] [client 152.42.226.162:46450] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|zoesaadeh.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "zoesaadeh.com"] [uri "/zoe-saadeh/wp-json/wp/v2/users"] [unique_id "aiioi3eg-IXo8LK4tTZQSwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 23:39:49 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 152.42.226.162 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 152.42.226.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 19:39:41.422703 2026] [security2:error] [pid 9535:tid 9598] [client 152.42.226.162:45124] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.greaternorthmiamihistory.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.greaternorthmiamihistory.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aiikPf76nZm1QsBlWsFd3AAAANM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-31 08:48:41 (1 week ago)	152.42.226.162 - - [31/May/2026:10:48:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 206 "-" "Mozilla/5.0 ... show more 152.42.226.162 - - [31/May/2026:10:48:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 206 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko/20100101 Firefox/91.0" 152.42.226.162 - - [31/May/2026:10:48:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 420 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko/20100101 Firefox/91.0" 152.42.226.162 - - [31/May/2026:10:48:40 +0200] "POST /xmlrpc.php HTTP/1.1" 200 420 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 152.42.226.162 - - [31/May/2026:10:48:40 +0200] "POST /xmlrpc.php HTTP/1.1" 200 206 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 152.42.226.162 - - [31/May/2026:10:48:41 +0200] "POST /wp-login.php HTTP/1.1" 200 3676 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-31 08:17:36 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 152.42.226.162 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 152.42.226.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 04:17:32.855755 2026] [security2:error] [pid 2631:tid 2631] [client 152.42.226.162:50786] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.goodfrequencies.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.goodfrequencies.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahvunO1dRhH8RdQM8UE3rQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-05-05 22:30:59 (1 month ago)		Brute-Force Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-05-05 16:09:06 (1 month ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [mx01,mx03,wa01,wa02]	Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-05-02 22:32:30 (1 month ago)		Brute-Force Web App Attack
🇫🇷 tecnicorioja	2026-05-02 22:01:22 (1 month ago)	POST /xmlrpc.php [02/May/2026:19:18:47	Web App Attack Brute-Force
🇺🇸 nationaleventpros.com	2026-05-02 04:01:44 (1 month ago)	WordPress login attempt	Brute-Force
🇪🇸 SweetHoneyPress	2026-05-01 21:40:30 (1 month ago)	WordPress honeypot: POST to /xmlrpc.php \| event_id=602013 \| UA: Mozilla/5.0 (Windows NT 10.0; WOW64) ... show more WordPress honeypot: POST to /xmlrpc.php \| event_id=602013 \| UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36 show less	Web App Attack Brute-Force
🇩🇪 LRob.fr	2026-05-01 14:30:04 (1 month ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
Anonymous	2026-05-01 13:25:04 (1 month ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇩🇪 LRob.fr	2026-04-28 18:45:08 (1 month ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇫🇷 masterguru	2026-04-28 06:24:07 (1 month ago)	wp-login request blocked, no referer. Pattern match "wp-login.php" at REQUEST_URI. (88020-193)	Hacking
🇫🇷 masterguru	2026-04-28 04:29:37 (1 month ago)	wp-login request blocked, no referer. Pattern match "wp-login.php" at REQUEST_URI. (88020-197)	Hacking

Showing 1 to 15 of 161 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇭 209.99.189.177

🇳🇱 195.178.110.30

🇧🇷 179.125.104.245

🇵🇱 178.183.125.51

🇫🇮 74.125.114.157

🇳🇱 45.198.224.138

🇧🇩 45.64.134.75

🇺🇸 44.208.112.1

🇧🇷 185.100.215.213

🇺🇸 172.253.251.116

🇺🇸 162.243.32.135

🇺🇸 162.216.18.113

🇩🇪 82.115.21.205

🇺🇸 66.132.172.252

🇨🇳 61.183.86.2

🇩🇪 43.165.4.2

🇩🇪 193.124.20.248

🇺🇸 173.199.118.73

🇩🇪 151.243.11.35

🇷🇴 80.94.92.182