JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.22.72.37

157.22.72.37 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 5%: ?

ISP	Apex Data Solutions LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213954
Domain Name	apexdatasolutions.online
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.22.72.37

Whois 157.22.72.37

IP Abuse Reports for 157.22.72.37:

This IP address has been reported a total of 11 times from 4 distinct sources. 157.22.72.37 was first reported on December 3rd 2025, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-17 16:39:43 (6 hours ago)	(mod_security) mod_security (id:225170) triggered by 157.22.72.37 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 157.22.72.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 12:39:38.549180 2026] [security2:error] [pid 27460:tid 27479] [client 157.22.72.37:45327] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|alred.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "alred.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajLNyo5q0V98WUC326vDZgAAARA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-12 10:36:50 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 157.22.72.37 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 157.22.72.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 12 06:36:41.854409 2026] [security2:error] [pid 20382:tid 20382] [client 157.22.72.37:53307] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|juhoanttila.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "juhoanttila.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agMCufUTWdasK_a8hr5t3AAAAA4"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-31 01:26:13 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 157.22.72.37 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 157.22.72.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 21:26:07.720373 2026] [security2:error] [pid 3133:tid 3133] [client 157.22.72.37:36759] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|gransla.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gransla.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acsir0yC7ptBIoDDrExoMgAAAAg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 12:51:07 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 157.22.72.37 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 157.22.72.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 08:51:04.165213 2026] [security2:error] [pid 16391:tid 16391] [client 157.22.72.37:12513] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|esad.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "esad.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acpxuNchQXK8hyo8AI952AAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇫🇷 masterguru	2026-01-24 10:21:29 (4 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 157.22.72.37 (GB/United Kingdom/-): 1 in the l ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 157.22.72.37 (GB/United Kingdom/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇫🇷 masterguru	2026-01-23 02:08:16 (4 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 157.22.72.37 (GB/United Kingdom/-): 1 in the l ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 157.22.72.37 (GB/United Kingdom/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇫🇷 masterguru	2026-01-19 15:58:20 (4 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 157.22.72.37 (GB/United Kingdom/-): 1 in the l ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 157.22.72.37 (GB/United Kingdom/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇫🇷 masterguru	2026-01-15 02:19:45 (5 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 157.22.72.37 (GB/United Kingdom/-): 1 in the l ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 157.22.72.37 (GB/United Kingdom/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇨🇦 SSH-Admin	2025-12-27 13:45:08 (5 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇪🇸 10dencehispahard SL	2025-12-03 07:47:27 (6 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇴 193.32.162.76

🇭🇰 103.42.182.26

🇯🇵 52.195.157.195

🇸🇬 43.160.208.253

🇺🇸 20.168.107.40

🇺🇸 3.219.242.234

🇺🇸 147.182.246.240

🇧🇬 79.124.62.134

🇨🇳 58.221.60.25

🇱🇹 45.227.254.170

🇰🇷 14.63.196.175

🇳🇱 217.60.195.150

🇫🇮 185.148.1.18

🇩🇪 167.94.146.41

🇨🇳 58.42.142.209

🇨🇳 101.91.114.194

🇸🇬 101.47.156.170

🇸🇬 84.75.155.198

🇺🇦 82.193.122.91

🇺🇸 23.234.93.156