JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.180.107.232

157.180.107.232 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 39%: ?

39%

ISP	Hetzner Online GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS24940
Hostname(s)	static.232.107.180.157.clients.your-server.de
Domain Name	hetzner.com
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.180.107.232

Whois 157.180.107.232

IP Abuse Reports for 157.180.107.232:

This IP address has been reported a total of 19 times from 12 distinct sources. 157.180.107.232 was first reported on January 8th 2026, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-23 04:52:22 (11 hours ago)	(mod_security) mod_security (id:210730) triggered by 157.180.107.232 (static.232.107.180.157.clients ... show more (mod_security) mod_security (id:210730) triggered by 157.180.107.232 (static.232.107.180.157.clients.your-server.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 00:52:10.726826 2026] [security2:error] [pid 863:tid 863] [client 157.180.107.232:40151] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.chicagowca.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.chicagowca.com"] [uri "/[email protected]"] [unique_id "ajoQ-mTeapkyQW2KmttmKgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 04:20:04 (3 days ago)	(mod_security) mod_security (id:210730) triggered by 157.180.107.232 (static.232.107.180.157.clients ... show more (mod_security) mod_security (id:210730) triggered by 157.180.107.232 (static.232.107.180.157.clients.your-server.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 00:19:56.128349 2026] [security2:error] [pid 25820:tid 25820] [client 157.180.107.232:27495] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|accordionstars.com\|F\|2"] [data ".accordionfactory.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "accordionstars.com"] [uri "/www.accordionfactory.com"] [unique_id "ajYU7OJnxSMebFmGnpPkAwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Lino Project	2026-06-14 20:41:18 (1 week ago)	157.180.107.232 - - [14/Jun/2026:22:41:18 +0200] "GET /new-media-tv/ HTTP/2.0" 200 22928 "-" "Mozill ... show more 157.180.107.232 - - [14/Jun/2026:22:41:18 +0200] "GET /new-media-tv/ HTTP/2.0" 200 22928 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Safari/605.1.15" ... show less	Brute-Force Bad Web Bot Web App Attack
🇦🇱 router.al	2026-06-10 23:24:42 (1 week ago)	06/10/2026-23:24:42.608061 157.180.107.232 Protocol: 6 GPL WEB_SERVER 403 Forbidden	Port Scan
🇦🇺 MAGIC	2026-06-10 00:29:28 (1 week ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇦🇺 nzhost.co.nz	2026-06-06 18:00:56 (2 weeks ago)	$f2bV_matches	Hacking Brute-Force
🇩🇪 DocNetzwerk	2026-06-05 09:52:52 (2 weeks ago)	157.180.107.232 (FI/Finland/static.232.107.180.157.clients.your-server.de), more than 7 Apache 403 h ... show more 157.180.107.232 (FI/Finland/static.232.107.180.157.clients.your-server.de), more than 7 Apache 403 hits show less	Hacking
🇳🇿 Antinson	2026-05-28 19:59:10 (3 weeks ago)	High error rate and elevated request volume targeting cPanel servers	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-23 00:16:07 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 157.180.107.232 (static.232.107.180.157.clients ... show more (mod_security) mod_security (id:210492) triggered by 157.180.107.232 (static.232.107.180.157.clients.your-server.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 20:16:00.690346 2026] [security2:error] [pid 15937:tid 15937] [client 157.180.107.232:40655] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "needtoorder.us"] [uri "/USE-To-BLOCKwww.countryipblocks.net.htaccess"] [unique_id "ahDxwGVd3Z73ch486ffLvAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇭🇺 zolav8	2026-05-07 10:00:44 (1 month ago)	Excessive crawling	Bad Web Bot
🇦🇺 Anytech	2026-04-20 08:26:41 (2 months ago)	Blocked by Conn-Monitor: Automated bot activity	Bad Web Bot Web App Attack
🇩🇪 DocNetzwerk	2026-04-18 20:43:58 (2 months ago)	157.180.107.232 (FI/Finland/static.232.107.180.157.clients.your-server.de), more than 7 Apache 403 h ... show more 157.180.107.232 (FI/Finland/static.232.107.180.157.clients.your-server.de), more than 7 Apache 403 hits show less	Hacking
🇳🇿 Antinson	2026-03-31 20:00:37 (2 months ago)	High error rate and elevated request volume targeting cPanel servers	Bad Web Bot
🇩🇪 DocNetzwerk	2026-03-22 19:01:45 (3 months ago)	157.180.107.232 (FI/Finland/static.232.107.180.157.clients.your-server.de), more than 7 Apache 403 h ... show more 157.180.107.232 (FI/Finland/static.232.107.180.157.clients.your-server.de), more than 7 Apache 403 hits show less	Hacking
Anonymous	2026-03-18 20:25:18 (3 months ago)	Malicious activity detected	Hacking Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.111.144.30

🇧🇷 186.238.210.226

🇲🇾 101.99.66.27

🇺🇸 43.153.85.46

🇨🇳 183.167.217.86

🇮🇳 182.95.178.174

🇮🇩 128.14.232.254

🇹🇭 119.46.148.53

🇧🇬 79.124.40.106

🇺🇸 67.207.95.203

🇺🇸 66.132.186.186

🇧🇪 34.156.134.140

🇯🇵 14.137.237.192

🇻🇳 203.205.37.233

🇧🇪 198.235.24.231

🇵🇰 182.190.218.25

🇳🇱 178.16.55.50

🇳🇱 176.65.139.43

🇨🇳 140.246.124.160

🇨🇳 116.179.32.239