JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.173.121.149

157.173.121.149 was found in our database!

This IP was reported 69 times. Confidence of Abuse is 100%: ?

100%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	vmi2152001.contaboserver.net
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.173.121.149

Whois 157.173.121.149

IP Abuse Reports for 157.173.121.149:

This IP address has been reported a total of 69 times from 49 distinct sources. 157.173.121.149 was first reported on June 26th 2026, and the most recent report was 53 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 neckaralb-admin.de	2026-06-29 02:07:55 (53 minutes ago)	(wordpress) Failed login wp-login.php or xmlrpc.php	Web App Attack
🇦🇺 paulshipley.com.au	2026-06-29 01:43:11 (1 hour ago)	levellapromotions.com.au:443 157.173.121.149 - - [29/Jun/2026:11:43:07 +1000] "GET /?author=5 HTTP/1 ... show more levellapromotions.com.au:443 157.173.121.149 - - [29/Jun/2026:11:43:07 +1000] "GET /?author=5 HTTP/1.1" 404 347498 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36, Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Web App Attack
🇫🇷 Security_Whaller	2026-06-29 01:30:00 (1 hour ago)	Malicious activity detected on Honeypot.	Brute-Force Hacking Web App Attack
🇫🇷 masterguru	2026-06-29 01:20:44 (1 hour ago)	WordPress: User enumeration. Pattern match "(author\\\\= (88030-193)	Hacking
Anonymous	2026-06-28 23:57:51 (3 hours ago)	[28/Jun/2026:23:57:49 +0000] host=lovelyrender.app server=lovelyrender.app ip=157.173.121.149 method ... show more [28/Jun/2026:23:57:49 +0000] host=lovelyrender.app server=lovelyrender.app ip=157.173.121.149 method=GET req=/wp-json/wp/v2/users?per_page=100&who=authors&_fields=id,slug uri=/index.php status=302 bytes=0 rt=0.041 urt=0.041 ref="-" ua="Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Web App Attack Bad Web Bot
🇩🇪 big-cloud.nl	2026-06-28 22:43:10 (4 hours ago)	Try to access /wordpress/xmlrpc.php	Web App Attack
🇧🇷 Halux	2026-06-28 22:34:00 (4 hours ago)	157.173.121.149 Web Application Firewall multiple violations	Hacking Web App Attack
🇩🇪 sverson	2026-06-28 22:08:13 (4 hours ago)	Trolling for resource vulnerabilities	Hacking
🇩🇪 FeG Deutschland	2026-06-28 21:48:35 (5 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack
Anonymous	2026-06-28 18:46:11 (8 hours ago)	Failed Wordpress Logins	Web App Attack
🇫🇷 tecnicorioja	2026-06-27 22:01:29 (1 day ago)	wp-login attack [27/Jun/2026:06:08:19	Brute-Force Web App Attack
🇫🇷 Yepngo	2026-06-27 11:22:50 (1 day ago)	157.173.121.149 - - [27/Jun/2026:13:22:50 +0200] "POST /wp-login.php HTTP/2.0" 200 11368 "https://bl ... show more 157.173.121.149 - - [27/Jun/2026:13:22:50 +0200] "POST /wp-login.php HTTP/2.0" 200 11368 "https://blog.yepngo.com/wp-login.php" "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
🇺🇸 Victor López	2026-06-27 10:35:30 (1 day ago)	www.longfisolutions.com 157.173.121.149 - - [27/Jun/2026:05:33:45 -0500] "GET /wp-login.php HTTP/2.0 ... show more www.longfisolutions.com 157.173.121.149 - - [27/Jun/2026:05:33:45 -0500] "GET /wp-login.php HTTP/2.0" 404 7543 "https://longfisolutions.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" ulibertadores.unyrealsoftapp.com 157.173.121.149 - - [27/Jun/2026:05:35:28 -0500] "GET /wp-login.php HTTP/2.0" 200 2913 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ulibertadores.unyrealsoftapp.com 157.173.121.149 - - [27/Jun/2026:05:35:29 -0500] "POST /wp-login.php HTTP/2.0" 200 3091 "https://ulibertadores.unyrealsoftapp.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 10:35:24 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 157.173.121.149 (vmi2152001.contaboserver.net): ... show more (mod_security) mod_security (id:225170) triggered by 157.173.121.149 (vmi2152001.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 06:35:21.118119 2026] [security2:error] [pid 13383:tid 13383] [client 157.173.121.149:44150] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|newmooncafe.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "newmooncafe.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aj-naSiYMcVEjLqZIOr5_AAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-27 10:30:08 (1 day ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot

Showing 1 to 15 of 69 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 103.43.191.43

🇳🇱 91.92.42.227

🇦🇷 190.229.166.186

🇸🇬 178.128.217.71

🇨🇳 124.67.34.208

🇨🇳 121.236.224.245

🇺🇸 64.62.197.102

🇺🇸 52.203.16.158

🇳🇱 45.148.10.121

🇬🇧 44.61.57.78

🇰🇷 43.155.172.154

🇧🇪 34.140.63.28

🇺🇸 18.189.74.1

🇨🇳 210.16.168.11

🇮🇳 203.192.232.180

🇺🇸 192.227.173.6

🇧🇷 179.127.34.176

🇨🇦 159.203.39.8

🇭🇰 118.193.44.169

🇩🇪 44.156.31.171