JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.173.102.12

157.173.102.12 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 100%: ?

100%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	vmi3381584.contaboserver.net
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.173.102.12

Whois 157.173.102.12

IP Abuse Reports for 157.173.102.12:

This IP address has been reported a total of 36 times from 30 distinct sources. 157.173.102.12 was first reported on June 18th 2026, and the most recent report was 26 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 rsa	2026-06-19 22:14:00 (26 minutes ago)	GET /wp-admin/js/widgets/ HTTP/1.1	DDoS Attack Brute-Force Exploited Host Web App Attack Hacking
🇩🇪 spam.must.die	2026-06-19 18:17:57 (4 hours ago)	IP triggered category <category>	Web App Attack
Anonymous	2026-06-19 15:28:47 (7 hours ago)	/cgi-bin probe	Web App Attack
🇺🇸 monn45888	2026-06-19 15:21:30 (7 hours ago)	$f2bV_matches	Web App Attack
🇳🇱 CryptoYakari	2026-06-19 15:11:00 (7 hours ago)	157.173.102.12 - - [19/Jun/2026:18:10:52 +0300] "GET /wp-admin/css/ HTTP/1.0" 404 6995 "-" "Mozilla/ ... show more 157.173.102.12 - - [19/Jun/2026:18:10:52 +0300] "GET /wp-admin/css/ HTTP/1.0" 404 6995 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 157.173.102.12 - - [19/Jun/2026:18:10:54 +0300] "GET /wp-admin/css/colors/ HTTP/1.0" 404 3515 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 157.173.102.12 - - [19/Jun/2026:18:10:55 +0300] "GET /wp-admin/css/colors/blue/ HTTP/1.0" 404 6995 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 157.173.102.12 - - [19/Jun/2026:18:10:56 +0300] "GET /wp-admin/includes/ HTTP/1.0" 404 6995 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 157.173.102.12 - - [19/Jun/2026:18:10:58 +0300] "GET /wp-admin/maint/ HTTP/1.0" 404 6995 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 ( ... show less	Web Spam Blog Spam Web App Attack Bad Web Bot
🇩🇪 Ba-Yu	2026-06-19 14:55:15 (7 hours ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇫🇷 tilellit.pro	2026-06-19 13:47:33 (8 hours ago)	Fail2Ban banned 157.173.102.12 for security violations in jail nginx-aggressive. Log: 2026/06/19 13: ... show more Fail2Ban banned 157.173.102.12 for security violations in jail nginx-aggressive. Log: 2026/06/19 13:47:30 [error] directory index of [REDACTED] is forbidden, client: 157.173.102.12, server: [REDACTED], request: "GET /wp-admin/css/ HTTP/2.0", host: [REDACTED] 2026/06/19 13:47:32 [error] directory index of [REDACTED] is forbidden, client: 157.173.102.12, server: [REDACTED], request: "GET /wp-admin/css/colors/ HTTP/2.0", host: [REDACTED] ... show less	Bad Web Bot Web App Attack
🇬🇷 setupgr	2026-06-19 13:28:56 (9 hours ago)	(mod_security) mod_security (id:11000011) triggered by 157.173.102.12 (DE/Germany/Hesse/Frankfurt am ... show more (mod_security) mod_security (id:11000011) triggered by 157.173.102.12 (DE/Germany/Hesse/Frankfurt am Main/-/[AS51167 CONTABO]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 19 16:28:51.988772 2026] [security2:error] [pid 79894:tid 79934] [client 157.173.102.12:62835] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "contaboserver.net" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: vmi3381584.contaboserver.net"] [severity "CRITICAL"] [hostname "cpanagiotou.gr"] [uri "/wp-admin/"] [unique_id "ajVEEyc2acK9dyAMRdL8HQAAAU0"] show less	Port Scan
🇫🇷 bazter.pro	2026-06-19 13:06:57 (9 hours ago)	Auto-Ban [2026-06-19 16:06:49]: CRITICAL: Exploit trap paths (64); DC: Contabo GmbH [Paths: 86] \| De ... show more Auto-Ban [2026-06-19 16:06:49]: CRITICAL: Exploit trap paths (64); DC: Contabo GmbH [Paths: 86] \| Details: Exploit trap paths: /wp-admin/, /wp-admin/css/, /wp-admin/css, /wp-admin/css/colors/, /wp-admin/css/colors \| Sensitive files/paths: /wp-admin/, /wp-admin/css/, /wp-admin/css, /wp-admin/css/colors/, /wp-admin/css/colors \| 404 errors (40): /wp-includes/images, /wp-includes/js/plupload, /wp-admin/js, /file, /wp-includes/blocks, /wp-admin/includes, /wp-admin/js/widgets, /wp-includes/css, /wp-admin/maint, /uploads/ (and 30 more) \| Other paths: /.tmb/, /images/, /cgi-bin/, /wp-includes/blocks/, /wp-includes/css/dist/, /wp-admin/user/, /wp-content/plugins/, /wp-includes/js/plupload/, /wp-admin/network/, /wp-includes/js/codemirror/ show less	Web App Attack Hacking
🇩🇪 AetherFox	2026-06-19 12:03:35 (10 hours ago)	AetherFox VoidGuard detected: [Fri Jun 19 12:03:32.200376 2026] [authz_core:error] [pid 1252403:tid ... show more AetherFox VoidGuard detected: [Fri Jun 19 12:03:32.200376 2026] [authz_core:error] [pid 1252403:tid 1252446] [client 157.173.102.12:54745] AH01630: client denied by server configuration: proxy:http://[MASKED]/wp-admin/ [Fri Jun 19 12:03:32.200558 2026] [authz_core:error] [pid 1252403:tid 1252446] [client 157.173.102.12:54745] AH01630: client denied by server configuration: /var/www/html/ERRORpages/403.html [Fri Jun 19 12:03:32.823584 2026] [authz_core:error] [pid 1252403:tid 1252435] [client 157.173.102.12:54745] AH01630: client denied by server configuration: proxy:http://[MASKED]/wp-admin/css/ [Fri Jun 19 12:03:32.823798 2026] [authz_core:error] [pid 1252403:tid 1252435] [client 157.173.102.12:54745] AH01630: client denied by server configuration: /var/www/html/ERRORpages/403.html [Fri Jun 19 12:03:34.156777 2026] [authz_core:error] [pid 1252403:tid 1252448] [client 157.173.102.12:54745] AH01630: client denied by server configuration: proxy:http://5.75.191.3 ... show less	Bad Web Bot Web App Attack
Anonymous	2026-06-19 08:56:03 (13 hours ago)	Bot / scanning and/or hacking attempts: GET /cgi-bin/ HTTP/1.1, GET /.tmb/ HTTP/1.1, GET /wp-include ... show more Bot / scanning and/or hacking attempts: GET /cgi-bin/ HTTP/1.1, GET /.tmb/ HTTP/1.1, GET /wp-includes/widgets/ HTTP/1.1, GET /wp-content/upgrade/ HTTP/1.1, GET /file/ HTTP/1.1, GET /wp-includes/ID3/ HTTP/1.1 show less	Hacking Web App Attack
🇫🇷 bazter.pro	2026-06-19 08:12:55 (14 hours ago)	Fail2Ban: plesk-bot-aggressive - 15 failures	Port Scan Bad Web Bot Web App Attack
Anonymous	2026-06-19 08:08:09 (14 hours ago)	157.173.102.12 - - [19/Jun/2026:10:07:56 +0200] "GET /wp-admin/includes/ HTTP/1.1" 404 5615 157.173. ... show more 157.173.102.12 - - [19/Jun/2026:10:07:56 +0200] "GET /wp-admin/includes/ HTTP/1.1" 404 5615 157.173.102.12 - - [19/Jun/2026:10:07:57 +0200] "GET /wp-admin/maint/ HTTP/1.1" 404 578 157.173.102.12 - - [19/Jun/2026:10:07:59 +0200] "GET /wp-admin/js/ HTTP/1.1" 404 578 157.173.102.12 - - [19/Jun/2026:10:08:01 +0200] "GET /wp-admin/js/widgets/ HTTP/1.1" 404 5615 157.173.102.12 - - [19/Jun/2026:10:08:02 +0200] "GET /wp-admin/images/ HTTP/1.1" 404 578 157.173.102.12 - - [19/Jun/2026:10:08:03 +0200] "GET /wp-admin/network/ HTTP/1.1" 404 578 157.173.102.12 - - [19/Jun/2026:10:08:04 +0200] "GET /wp-admin/user/ HTTP/1.1" 404 578 157.173.102.12 - - [19/Jun/2026:10:08:05 +0200] "GET /wp-includes/ HTTP/1.1" 404 578 157.173.102.12 - - [19/Jun/2026:10:08:06 +0200] "GET /wp-includes/Text/ HTTP/1.1" 404 578 157.173.102.12 - - [19/Jun/2026:10:08:08 +0200] "GET /wp-includes/Text/Diff/ HTTP/1.1" 404 578 ... show less	Web Spam Web App Attack
🇧🇷 Peregrine	2026-06-19 07:42:13 (14 hours ago)	Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 157.173.102.12 172.71.172.99 - - [19/Jun/2026:04:42 ... show more Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 157.173.102.12 172.71.172.99 - - [19/Jun/2026:04:42:07 -0300] "GET /wp-admin/css/ HTTP/1.1" 404 18193 show less	Bad Web Bot
🇳🇱 Site.eu	2026-06-19 07:20:33 (15 hours ago)	Excessive 404/403 errors	Brute-Force

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 171.37.92.10

🇺🇸 147.185.132.153

🇳🇱 45.156.128.109

🇺🇸 44.228.50.38

🇰🇿 2.134.15.12

🇨🇳 222.219.131.47

🇺🇸 216.167.21.34

🇬🇧 198.244.226.84

🇹🇼 198.235.24.53

🇩🇪 167.94.146.61

🇪🇬 156.201.43.34

🇭🇰 152.32.129.154

🇺🇸 147.185.132.41

🇺🇸 135.237.127.63

🇨🇳 117.79.132.166

🇺🇸 109.105.210.59

🇺🇸 109.105.210.58

🇺🇸 107.174.196.144

🇫🇷 85.204.70.112

🇺🇸 66.132.195.66