JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.97.122.62

157.97.122.62 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 0%: ?

ISP	VPN Consumer Brussels, Belgium
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	vpnconsumer.com
Country	🇧🇪 Belgium
City	Brussels, Brussels Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.97.122.62

Whois 157.97.122.62

IP Abuse Reports for 157.97.122.62:

This IP address has been reported a total of 39 times from 16 distinct sources. 157.97.122.62 was first reported on October 7th 2022, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 bitpanda	2025-04-12 00:02:56 (1 year ago)	Malicious activity detected by Imunify360	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-04-20 18:18:03 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 157.97.122.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 157.97.122.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 20 14:17:57.222450 2024] [security2:error] [pid 16673] [client 157.97.122.62:12141] [client 157.97.122.62] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|bayareamustangs.com\|F\|2"] [data ".com.sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "bayareamustangs.com"] [uri "/back/bayareamustangs.com.sql"] [unique_id "ZiQG1UX_ylJOftjD1HL4JgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 hbrks	2024-04-18 00:25:31 (2 years ago)	HEAD http://marche-be.com/back/directory.rar * statusCode: 503 *	Web Spam Hacking Bad Web Bot
🇩🇪 hbrks	2024-04-13 14:28:24 (2 years ago)	HEAD http://techtronicgambia.com/restore/directory.gz * statusCode: 503 *	Web Spam Hacking Bad Web Bot
🇩🇪 hbrks	2024-04-13 06:29:04 (2 years ago)	HEAD http://techtronicgambia.com/old/wallet.dat * statusCode: 503 *	Web Spam Hacking Bad Web Bot
🇺🇸 TPI-Abuse	2024-04-08 11:39:36 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 157.97.122.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 157.97.122.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 08 07:39:28.427956 2024] [security2:error] [pid 20454] [client 157.97.122.62:35279] [client 157.97.122.62] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|crypto-stamps.com\|F\|2"] [data ".dat"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "crypto-stamps.com"] [uri "/backups/wallet.dat"] [unique_id "ZhPXcByqR_ZePildeVAtRAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2024-03-31 04:12:34 (2 years ago)	Wordpress malicious attack:[octa404]	Web App Attack
🇺🇸 octageeks.com	2024-03-29 04:12:31 (2 years ago)	Wordpress malicious attack:[octa404]	Web App Attack
🇺🇸 octageeks.com	2024-03-28 04:12:26 (2 years ago)	Wordpress malicious attack:[octa404]	Web App Attack
🇺🇸 octageeks.com	2024-03-26 04:12:44 (2 years ago)	Wordpress malicious attack:[octa404]	Web App Attack
🇺🇸 TheMadBeaker	2024-03-25 15:09:24 (2 years ago)	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	Hacking SQL Injection
🇫🇷 Tonga-Soa	2024-03-25 15:08:00 (2 years ago)	"use of nvopzp ... script by Dummies hackers"	SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2024-03-24 05:11:37 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 157.97.122.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 157.97.122.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 24 01:11:30.440022 2024] [security2:error] [pid 2128395] [client 157.97.122.62:16497] [client 157.97.122.62] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|firejasstrio.com\|F\|2"] [data ".dat"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "firejasstrio.com"] [uri "/backup/wallet.dat"] [unique_id "Zf-2Apoc1MEnxEbOyvVDYgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-03-22 19:43:17 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 157.97.122.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 157.97.122.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 22 15:43:12.268454 2024] [security2:error] [pid 7266] [client 157.97.122.62:60437] [client 157.97.122.62] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|olimpiacerda.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "olimpiacerda.com"] [uri "/backup/sql.sql"] [unique_id "Zf3fUNW6PV56b3KP6Hz3oQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-03-20 05:42:19 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 157.97.122.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 157.97.122.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 20 01:42:12.427741 2024] [security2:error] [pid 17731] [client 157.97.122.62:6491] [client 157.97.122.62] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.hodlmoser.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.hodlmoser.com"] [uri "/bak/mysql.sql"] [unique_id "Zfp3NKxyN38m6zymqexQtwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 191.102.174.208

🇺🇸 191.102.174.144

🇺🇸 191.102.170.34

🇺🇸 173.244.60.155

🇺🇸 172.217.46.240

🇻🇳 118.70.80.220

🇷🇴 80.94.92.164

🇳🇱 45.148.10.151

🇨🇦 20.48.176.78

🇳🇱 212.30.37.151

🇰🇷 211.106.137.135

🇺🇸 166.62.41.190

🇸🇬 129.227.75.98

🇧🇬 91.92.40.63

🇬🇧 87.236.176.180

🇺🇸 47.88.56.201

🇮🇹 34.154.117.228

🇺🇸 34.106.190.235

🇵🇭 27.110.166.67

🇪🇬 196.202.72.15