JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 152.53.111.131

152.53.111.131 was found in our database!

This IP was reported 1,187 times. Confidence of Abuse is 100%: ?

100%

ISP	Anexia Holding GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS197540
Hostname(s)	bischoef.com
Domain Name	anexia.com
Country	🇦🇹 Austria
City	Vienna, State of Vienna

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 152.53.111.131

Whois 152.53.111.131

IP Abuse Reports for 152.53.111.131:

This IP address has been reported a total of 1,187 times from 227 distinct sources. 152.53.111.131 was first reported on April 16th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇿 huginet	2026-05-25 21:51:00 (1 week ago)	152.53.111.131 - - [25/May/2026:23:50:59 +0200] "GET /wp-login.php HTTP/1.1" 200 9112 "-" "Mozilla/5 ... show more 152.53.111.131 - - [25/May/2026:23:50:59 +0200] "GET /wp-login.php HTTP/1.1" 200 9112 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 152.53.111.131 - - [25/May/2026:23:51:00 +0200] "POST /wp-login.php HTTP/1.1" 200 9549 "https://centrum-eko-likvidace.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web Spam Blog Spam Hacking Bad Web Bot Web App Attack
🇩🇪 Click-Networks	2026-05-25 21:09:47 (1 week ago)		Web Spam Brute-Force Exploited Host
🇳🇱 Site.eu	2026-05-25 20:37:36 (1 week ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇵🇱 bmino.pl	2026-05-25 20:31:52 (1 week ago)	Autoban IP(2): 152.53.111.131 - Hostname: netcup GmbH - City: Klagenfurt - Region: Carinthia - Count ... show more Autoban IP(2): 152.53.111.131 - Hostname: netcup GmbH - City: Klagenfurt - Region: Carinthia - Country: Austria - Location: 46.6412,14.2892 - Organization: ANX Holding GmbH - failed attempts. show less	Web App Attack
🇫🇷 SpaceHost-Server	2026-05-25 20:04:31 (1 week ago)	152.53.111.131 - - [25/May/2026:22:03:30 +0200] "POST /wp-login.php HTTP/1.1" 200 15025 "https://sta ... show more 152.53.111.131 - - [25/May/2026:22:03:30 +0200] "POST /wp-login.php HTTP/1.1" 200 15025 "https://start-the-loop.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 152.53.111.131 - - [25/May/2026:22:04:30 +0200] "POST /wp-login.php HTTP/1.1" 200 14054 "https://www.wp4dich.com/wp-login.php" "Mozilla/5.0 (X11; Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 152.53.111.131 - - [25/May/2026:22:04:31 +0200] "POST /wp-login.php HTTP/1.1" 200 14066 "https://wp4dich.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇺🇸 Jason Howell	2026-05-25 19:59:57 (1 week ago)	152.53.111.131 - - [25/May/2026:18:50:45 +0000] "GET /wp-login.php HTTP/1.1" 200 4168 "-" "Mozilla/5 ... show more 152.53.111.131 - - [25/May/2026:18:50:45 +0000] "GET /wp-login.php HTTP/1.1" 200 4168 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 152.53.111.131 - - [25/May/2026:18:50:46 +0000] "GET /wp-login.php HTTP/1.1" 200 4167 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 152.53.111.131 - - [25/May/2026:18:50:46 +0000] "POST /wp-login.php HTTP/1.1" 200 1986 "https://www.reynoldsmfg.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 152.53.111.131 - - [25/May/2026:19:59:56 +0000] "GET /wp-login.php HTTP/1.1" 200 4168 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 152.53.111.131 - - [25/May/2026:19:59:56 +0000] "GET /wp-login.php HTTP/1.1" 200 4169 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit ... show less	Web App Attack
🇲🇾 Rizzy	2026-05-25 19:54:33 (1 week ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇬🇧 spamverify.com	2026-05-25 18:45:42 (1 week ago)	Honeypot Hit: WordPress Login	Web Spam Blog Spam Bad Web Bot Web App Attack
🇨🇦 KIsmay	2026-05-25 18:41:00 (1 week ago)	May 25 12:36:17 www4 WPAudit[718130]: 152.53.111.131 www.cottonwoodc.ca "Mozilla/5.0 (Windows NT 10. ... show more May 25 12:36:17 www4 WPAudit[718130]: 152.53.111.131 www.cottonwoodc.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" elyena:Elyena56 FAIL May 25 13:19:59 www4 WPAudit[721696]: 152.53.111.131 amandasrestaurant.ca "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" sbd-admin:sbd-admin000 FAIL May 25 13:48:49 www4 WPAudit[724142]: 152.53.111.131 amandasrestaurant.ca "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" sbd-admin:sbd-admin1999 FAIL May 25 14:07:14 www4 WPAudit[725647]: 152.53.111.131 katharinedickerson.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" katharinedickerson:katharinedickerson@#123 FAIL May 25 14:40:59 www4 WPAudit[728797]: 152.53.111.131 www.nelsonbcwelding.com "Mozilla/5.0 (Windows NT 10.0; ... show less	Brute-Force Web App Attack
🇩🇪 bsoft.de	2026-05-25 18:13:12 (1 week ago)	152.53.111.131 - - [25/May/2026:17:16:32 +0200] "GET /wp-login.php HTTP/1.1" 200 2971 "-" "Mozilla/5 ... show more 152.53.111.131 - - [25/May/2026:17:16:32 +0200] "GET /wp-login.php HTTP/1.1" 200 2971 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 152.53.111.131 - - [25/May/2026:17:16:33 +0200] "POST /wp-login.php HTTP/1.1" 200 3130 "https://kgsjw-freunde.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 152.53.111.131 - - [25/May/2026:20:13:10 +0200] "GET /wp-login.php HTTP/1.1" 404 69990 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Web App Attack
🇩🇪 Marc	2026-05-25 16:49:41 (1 week ago)	152.53.111.131 - - [25/May/2026:17:06:24 +0200] "GET /wp-login.php HTTP/2.0" 200 3319 "-" "Mozilla/5 ... show more 152.53.111.131 - - [25/May/2026:17:06:24 +0200] "GET /wp-login.php HTTP/2.0" 200 3319 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 152.53.111.131 - - [25/May/2026:17:06:25 +0200] "POST /wp-login.php HTTP/2.0" 200 3389 "https://www.heckmann-elektro.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 152.53.111.131 - - [25/May/2026:17:09:06 +0200] "GET /wp-login.php HTTP/2.0" 200 3881 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 152.53.111.131 - - [25/May/2026:17:09:07 +0200] "POST /wp-login.php HTTP/2.0" 200 4658 "https://bente-personaldienstleistung.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 152.53.111.131 - - [25/May/2026:18:49:40 +0200] "GET /wp-login.php HTTP/1.1" 200 4061 "-" "Mozilla/5.0 (X11; Lin show less	Brute-Force Web App Attack
🇩🇪 dbmwebdesign	2026-05-25 16:47:13 (1 week ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇩🇪 ger-stg-sifi1	2026-05-25 16:05:58 (1 week ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇩🇪 Viveronese	2026-05-25 15:54:00 (1 week ago)	Wordpress vulnerability scanning	Web App Attack
🇺🇸 nationaleventpros.com	2026-05-25 03:56:27 (1 week ago)	WordPress login attempt	Brute-Force

Showing 151 to 165 of 1187 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 98.66.233.228

🇨🇳 82.157.183.136

🇺🇸 20.169.104.65

🇺🇸 209.141.46.71

🇧🇪 207.175.83.199

🇵🇸 199.250.150.104

🇧🇷 177.38.153.50

🇩🇪 155.117.127.153

🇸🇬 134.209.102.117

🇧🇷 108.165.179.155

🇳🇱 84.22.101.204

🇺🇸 66.132.172.233

🇮🇳 49.43.235.154

🇰🇷 20.196.203.243

🇷🇴 2.57.122.238

🇮🇩 202.162.199.146

🇧🇷 200.196.50.91

🇬🇧 195.96.139.219

🇻🇳 180.93.36.16

🇧🇷 168.0.68.184