JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.245.201.195

157.245.201.195 was found in our database!

This IP was reported 352 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.245.201.195

Whois 157.245.201.195

IP Abuse Reports for 157.245.201.195:

This IP address has been reported a total of 352 times from 164 distinct sources. 157.245.201.195 was first reported on January 20th 2025, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 Mcshield.org	2025-11-30 23:00:00 (6 months ago)	GET /admin/ HTTP/1.1" 404 - "Mozilla/5.0 (compatible; Nmap Scripting Engine)"	Web Spam Port Scan Hacking
🇨🇭 blinx	2025-04-15 17:18:19 (1 year ago)	Suspicious activity detected by Modsecurity	Web Spam Port Scan Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-04-15 15:35:34 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 157.245.201.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 157.245.201.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 15 11:35:29.814034 2025] [security2:error] [pid 30311:tid 30311] [client 157.245.201.195:53597] [client 157.245.201.195] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.blacktieokc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.blacktieokc.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z_58wTro5dEd8pUZwrf6YQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-04-15 05:51:46 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 157.245.201.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 157.245.201.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 15 01:51:41.619943 2025] [security2:error] [pid 31411:tid 31411] [client 157.245.201.195:55910] [client 157.245.201.195] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bikelatch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bikelatch.com"] [uri "/test/wp-json/wp/v2/users/"] [unique_id "Z_3z7eBcfvfYUfm8Vc4FlQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-04-15 05:09:01 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 157.245.201.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 157.245.201.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 15 01:08:56.774865 2025] [security2:error] [pid 31558:tid 31558] [client 157.245.201.195:60655] [client 157.245.201.195] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.bigislandhawaiirealestate.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bigislandhawaiirealestate.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z_3p6Cc3Id414Anc3GXY6gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-04-14 15:18:45 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 157.245.201.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 157.245.201.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 14 11:18:39.697620 2025] [security2:error] [pid 652700:tid 652700] [client 157.245.201.195:50782] [client 157.245.201.195] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|meetupmadness.io\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "meetupmadness.io"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z_0nT8zmNV8XESkTPWAXKAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 zynex	2025-04-13 21:19:17 (1 year ago)	URL Probing: /wp1/wp-includes/wlwmanifest.xml	Web App Attack
🇩🇪 spyra.rocks	2025-02-22 22:01:05 (1 year ago)	WordPress	Web App Attack
🇩🇪 spyra.rocks	2025-02-20 13:01:10 (1 year ago)	WordPress	Web App Attack
🇺🇸 Ba-Yu	2025-02-14 04:51:34 (1 year ago)	General hacking/exploits/scanning	Port Scan Exploited Host Web App Attack
🇩🇪 spyra.rocks	2025-02-07 23:01:19 (1 year ago)	WordPress	Web App Attack
🇹🇷 rtbh.com.tr	2025-02-03 20:50:11 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
Anonymous	2025-02-03 13:48:25 (1 year ago)	WEBCONDE WEBEXPLOIT 157.245.201.195 (157.245.201.195)	Web App Attack
Anonymous	2025-02-03 13:28:50 (1 year ago)	wordpress-trap	Web App Attack
Anonymous	2025-02-03 13:20:21 (1 year ago)	Fail2ban block	Brute-Force Web App Attack

Showing 1 to 15 of 352 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇩 103.163.117.83

🇵🇱 82.22.41.218

🇳🇱 45.148.10.157

🇶🇦 34.18.164.5

🇬🇧 31.171.130.16

🇺🇸 2601:500:8280:92b0:cdf5:9192:4016:ed31

🇺🇸 162.217.165.17

🇷🇴 80.94.92.166

🇱🇹 62.60.130.251

🇭🇰 47.76.71.87

🇭🇰 45.78.18.182

🇺🇸 35.252.207.4

🇸🇬 35.240.174.82

🇺🇸 34.173.159.189

🇵🇱 20.215.69.195

🇰🇷 14.33.93.214

🇮🇳 2405:201:3017:c80a:1805:3b70:9961:987b

🇭🇰 199.45.154.142

🇺🇸 198.46.134.148

🇮🇶 185.166.25.150