JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 152.53.241.40

152.53.241.40 was found in our database!

This IP was reported 127 times. Confidence of Abuse is 38%: ?

38%

ISP	netcup GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS214996
Hostname(s)	v2202512321380414975.supersrv.de
Domain Name	netcup.de
Country	🇺🇸 United States of America
City	Manassas, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 152.53.241.40

Whois 152.53.241.40

IP Abuse Reports for 152.53.241.40:

This IP address has been reported a total of 127 times from 55 distinct sources. 152.53.241.40 was first reported on December 21st 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-23 10:13:12 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de ... show more (mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 06:13:09.659305 2026] [security2:error] [pid 5900:tid 5900] [client 152.53.241.40:56556] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.walterceron.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.walterceron.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajpcNbrTh_4Q70LVJ9RZIQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 08:16:33 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de ... show more (mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 04:16:25.278557 2026] [security2:error] [pid 20437:tid 20437] [client 152.53.241.40:53392] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.pcga.golf\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.pcga.golf"] [uri "/wp-json/wp/v2/users"] [unique_id "ajpA2RqB6HADtGVGqBuXEwAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 01:58:56 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de ... show more (mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 21:58:49.541716 2026] [security2:error] [pid 21799:tid 21799] [client 152.53.241.40:57510] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.riser-astrology.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.riser-astrology.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajnoWdLcd5zvsY6VU7TpvQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-22 03:29:18 (2 days ago)	(XMLRPC) WP XMLPRC Attack 152.53.241.40 (US/United States/v2202512321380414975.supersrv.de): 5 in th ... show more (XMLRPC) WP XMLPRC Attack 152.53.241.40 (US/United States/v2202512321380414975.supersrv.de): 5 in the last 3600 secs; Ports: *; Direction: 1 show less	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-06-22 03:10:06 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de ... show more (mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 23:09:56.902741 2026] [security2:error] [pid 21238:tid 21238] [client 152.53.241.40:45882] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.atidysort.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.atidysort.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajinhBfiCmJaKuHA8aDxSwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 23:33:52 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de ... show more (mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 19:33:48.945349 2026] [security2:error] [pid 25554:tid 25554] [client 152.53.241.40:44266] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.nypatriotcards.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.nypatriotcards.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajh03DcIekfAtkieU2lLSAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 01:03:50 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de ... show more (mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 21:03:42.109402 2026] [security2:error] [pid 19894:tid 19894] [client 152.53.241.40:56374] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.graymatterofdc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.graymatterofdc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajc4bi1sLginJp54Jm_0fAAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-20 16:51:40 (4 days ago)	[server.tmg.gr] httpd-suspicious-path: sites=ikee.gr; logs=/var/log/httpd/domains/ikee.gr.log; sampl ... show more [server.tmg.gr] httpd-suspicious-path: sites=ikee.gr; logs=/var/log/httpd/domains/ikee.gr.log; samples=/wp-json/wp/v2/users \| /?author=1 \| /author/admin/ show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 02:41:42 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de ... show more (mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 19 22:41:35.017246 2026] [security2:error] [pid 30822:tid 30822] [client 152.53.241.40:55958] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.solucionesmercadeodigital.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.solucionesmercadeodigital.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ag0fX0ACYHWEPqB0sz0v1QAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-05-20 02:09:20 (1 month ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-19 21:38:06 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de ... show more (mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 19 17:37:58.845296 2026] [security2:error] [pid 25363:tid 25363] [client 152.53.241.40:38304] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.talkingmess.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.talkingmess.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agzYNtQzGjuGoyTv_t71kQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-19 20:04:10 (1 month ago)	Attac	Brute-Force
🇳🇱 Brict IT	2026-05-19 15:17:00 (1 month ago)		Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-19 09:24:02 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de ... show more (mod_security) mod_security (id:225170) triggered by 152.53.241.40 (v2202512321380414975.supersrv.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 19 05:23:53.731720 2026] [security2:error] [pid 1050:tid 1050] [client 152.53.241.40:54962] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.fredlandia.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.fredlandia.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agwsKQsGtkn49f1eZz_1yQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-05-18 22:31:34 (1 month ago)		Brute-Force Web App Attack

Showing 1 to 15 of 127 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.50.226.182

🇻🇳 160.25.74.175

🇩🇪 83.169.38.142

🇬🇧 62.60.130.232

🇩🇪 194.187.176.236

🇷🇴 80.94.92.234

🇫🇮 46.253.131.111

🇮🇷 2.180.153.126

🇺🇸 2.57.168.29

🇺🇸 206.232.103.209

🇳🇱 176.65.139.238

🇮🇳 117.242.244.75

🇨🇳 117.50.50.224

🇨🇳 116.29.253.166

🇫🇷 91.231.89.204

🇬🇧 86.38.236.205

🇪🇬 197.199.224.52

🇳🇱 176.65.139.234

🇨🇳 121.197.0.214

🇰🇿 92.47.166.23