JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.22.44.56

157.22.44.56 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 26%: ?

26%

ISP	Global Transit Systems LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213954
Domain Name	globaltransitsystems.online
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.22.44.56

Whois 157.22.44.56

IP Abuse Reports for 157.22.44.56:

This IP address has been reported a total of 7 times from 7 distinct sources. 157.22.44.56 was first reported on December 18th 2025, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇿 ptlab	2026-06-25 12:47:52 (7 hours ago)	Detected wp_login attack from WP-host.	Hacking Web App Attack
🇳🇱 GabrielJST	2026-06-25 09:27:21 (10 hours ago)	(wordpress) Failed wordpress login from 157.22.44.56 (SC/Seychelles/-)	Brute-Force
🇺🇸 oralunal	2026-06-03 07:49:53 (3 weeks ago)	IP banned by Fail2Ban in jail ente-suss ente.com-ssl_log mvfnds ...	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-15 23:52:06 (1 month ago)	(mod_security) mod_security (id:218580) triggered by 157.22.44.56 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:218580) triggered by 157.22.44.56 (-): 1 in the last 300 secs; Ports: ; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 19:51:59.630414 2026] [security2:error] [pid 28881:tid 28881] [client 157.22.44.56:18983] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:\\\\/\\\\[!+](?:[\\\\w\\\\s=_\\\\-()]+)?\\\\*\\\\/)" at ARGS:/category/334/start-240. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/22_SQL_SQLi.conf"] [line "76"] [id "218580"] [rev "1"] [msg "COMODO WAF: MySQL in-line comment detected.\|\|www.genesis-castle.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "SQLi"] [hostname "www.genesis-castle.com"] [uri "/gallery/index.php"] [unique_id "agexn3F0MtjzXbx4ZaAjGAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Nick Lewis	2026-05-07 13:11:27 (1 month ago)	(mod_security) mod_security triggered on hostname [redacted] 157.22.44.56 (DE/Germany/-)	SQL Injection
🇩🇪 findlab	2026-01-01 01:00:06 (5 months ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2025-12-18 01:38:37 (6 months ago)	Blocked by CSF 13 firewall - Rule: WPLOGIN US/United States/-	Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.173

🇩🇪 194.187.176.70

🇸🇪 194.132.201.114

🇸🇬 172.216.169.248

🇭🇰 139.198.113.29

🇨🇳 117.184.105.34

🇻🇳 103.143.207.18

🇺🇸 91.230.168.143

🇺🇸 158.51.96.38

🇺🇸 130.131.220.95

🇨🇳 124.221.121.14

🇺🇸 91.230.168.45

🇺🇦 91.214.85.244

🇳🇱 45.148.10.141

🇧🇬 193.24.211.107

🇮🇩 163.7.11.69

🇺🇸 162.216.150.119

🇳🇱 94.154.35.215

🇳🇱 91.92.40.202

🇱🇻 81.30.98.44