JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.20.215.193

157.20.215.193 was found in our database!

This IP was reported 512 times. Confidence of Abuse is 100%: ?

100%

ISP	UTHO CLOUD PRIVATE LIMITED
Usage Type	Data Center/Web Hosting/Transit
ASN	AS134926
Hostname(s)	157-20-215-193.network.microhost.com
Domain Name	utho.com
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.20.215.193

Whois 157.20.215.193

IP Abuse Reports for 157.20.215.193:

This IP address has been reported a total of 512 times from 147 distinct sources. 157.20.215.193 was first reported on May 11th 2026, and the most recent report was 28 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Campus France	2026-05-13 08:39:10 (3 weeks ago)	157.20.215.193 - - [13/May/2026:05:36:35 +0200] "POST /wp-login.php HTTP/1.1" 200 2495 "https://www. ... show more 157.20.215.193 - - [13/May/2026:05:36:35 +0200] "POST /wp-login.php HTTP/1.1" 200 2495 "https://www.perpignan.radiocampus.fr/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" 157.20.215.193 - - [13/May/2026:08:23:31 +0200] "POST /wp-login.php HTTP/1.1" 200 2495 "https://perpignan.radiocampus.org/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 157.20.215.193 - - [13/May/2026:09:03:01 +0200] "POST /wp-login.php HTTP/1.1" 200 2495 "https://www.perpignan.radiocampus.fr/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" 157.20.215.193 - - [13/May/2026:09:10:52 +0200] "POST /wp-login.php HTTP/1.1" 200 2495 "https://perpignan.radio-campus.org/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 157.20.215.193 - - [13/May/2026:10:39:09 +0200] "P ... show less	Brute-Force Web App Attack
🇩🇪 gadix	2026-05-13 08:34:57 (3 weeks ago)	157.20.215.193 - - [13/May/2026:07:38:51 +0200] "POST /wp-login.php HTTP/1.0" 200 7257 "https://koer ... show more 157.20.215.193 - - [13/May/2026:07:38:51 +0200] "POST /wp-login.php HTTP/1.0" 200 7257 "https://koerper-u-geist.gadix.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 157.20.215.193 - - [13/May/2026:08:56:00 +0200] "POST /wp-login.php HTTP/1.0" 200 7257 "https://koerper-u-geist.gadix.de/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safar ... show less	Web App Attack
🇩🇪 FeG Deutschland	2026-05-13 08:18:19 (3 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-05-13 07:54:41 (3 weeks ago)	(mod_security) mod_security (id:225170) triggered by 157.20.215.193 (157-20-215-193.network.microhos ... show more (mod_security) mod_security (id:225170) triggered by 157.20.215.193 (157-20-215-193.network.microhost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 03:54:34.072644 2026] [security2:error] [pid 30610:tid 30610] [client 157.20.215.193:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.upskirtcrazy.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.upskirtcrazy.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "agQuOv-sgeNhaNylqHUItwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dbmwebdesign	2026-05-13 07:47:53 (3 weeks ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
Anonymous	2026-05-13 07:42:05 (3 weeks ago)	(wordpress) Failed wordpress login from 157.20.215.193 (IN/India/157-20-215-193.network.microhost.co ... show more (wordpress) Failed wordpress login from 157.20.215.193 (IN/India/157-20-215-193.network.microhost.com) show less	Brute-Force
🇮🇳 evicky2002	2026-05-13 07:18:32 (3 weeks ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇫🇮 Shaik Sai Meera	2026-05-13 07:15:06 (3 weeks ago)	IM360 WAF: Hidden file access	Brute-Force
🇫🇷 Kimax	2026-05-13 06:51:21 (3 weeks ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
Anonymous	2026-05-13 06:47:06 (3 weeks ago)	(wordpress) Failed wordpress login from 157.20.215.193 (IN/India/157-20-215-193.network.microhost.co ... show more (wordpress) Failed wordpress login from 157.20.215.193 (IN/India/157-20-215-193.network.microhost.com) show less	Brute-Force
🇩🇪 juutis	2026-05-13 06:28:59 (3 weeks ago)	157.20.215.193 - - [13/May/2026:06:51:46 +0200] "POST /wp-login.php HTTP/1.0" 200 7802 "https://taid ... show more 157.20.215.193 - - [13/May/2026:06:51:46 +0200] "POST /wp-login.php HTTP/1.0" 200 7802 "https://taidesuunnistus.net/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 157.20.215.193 - - [13/May/2026:07:24:27 +0200] "POST /wp-login.php HTTP/1.0" 200 7817 "https://www.taidesuunnistus.net/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" 157.20.215.193 - - [13/May/2026:08:28:57 +0200] "POST /wp-login.php HTTP/1.0" 200 7802 "https://taidesuunnistus.net/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" show less	Web App Attack
🇺🇸 integrantservices.com	2026-05-13 06:22:19 (3 weeks ago)	(PERMBLOCK) 157.20.215.193 (IN/India/157-20-215-193.network.microhost.com) has had more than 4 temp ... show more (PERMBLOCK) 157.20.215.193 (IN/India/157-20-215-193.network.microhost.com) has had more than 4 temp blocks show less	Hacking
🇺🇸 Starburst SysOp Team	2026-05-13 06:20:07 (3 weeks ago)	Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 193.215.20.157.rbl.malw ... show more Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 193.215.20.157.rbl.malware.expert succeeded at REQUEST_HEADERS:x-forwarded-for. (1001000-mnz6-3) show less	Hacking
Anonymous	2026-05-13 06:08:47 (3 weeks ago)	157.20.215.193 - - [13/May/2026:07:54:19 +0200] "POST /wp-login.php HTTP/1.1" 200 3298 "https://byro ... show more 157.20.215.193 - - [13/May/2026:07:54:19 +0200] "POST /wp-login.php HTTP/1.1" 200 3298 "https://byrozmbpdo.org/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 157.20.215.193 - - [13/May/2026:08:03:53 +0200] "POST /wp-login.php HTTP/1.0" 200 4696 "https://rhemakwacha.site/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" 157.20.215.193 - - [13/May/2026:08:03:53 +0200] "POST /wp-login.php HTTP/1.1" 200 4381 "https://rhemakwacha.site/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" 157.20.215.193 - - [13/May/2026:08:08:45 +0200] "POST /wp-login.php HTTP/1.0" 200 3400 "https://bluegrassschool.site/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" 157.20.215.193 - - [13/May/2026:08:08:46 +0200] "POST /wp-login.php HTTP/1.1" 200 2862 "https://bluegrassschool.site/wp-login.php" "Mozilla/5.0 ... show less	Brute-Force Web App Attack
🇩🇪 neogenius	2026-05-13 06:01:11 (3 weeks ago)	Web App Attack	Web App Attack Brute-Force

Showing 421 to 435 of 512 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇬 41.33.91.226

🇧🇷 191.5.201.248

🇮🇳 122.187.227.145

🇺🇸 66.132.224.24

🇺🇸 64.62.197.64

🇱🇹 62.60.130.227

🇳🇱 45.148.10.230

🇨🇳 14.22.23.243

🇰🇷 183.109.15.51

🇺🇸 146.190.173.19

🇨🇳 118.145.151.135

🇧🇩 103.153.110.190

🇿🇦 102.64.41.167

🇺🇸 66.132.195.92

🇫🇷 54.36.102.244

🇲🇾 47.250.82.40

🇳🇱 45.148.10.141

🇨🇳 221.235.195.250

🇰🇼 193.188.161.219

🇻🇳 183.91.27.6