JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 158.173.152.4

158.173.152.4 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 8%: ?

ISP	VPN Consumer Zurich, Switzerland
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	vpnconsumer.com
Country	🇨🇭 Switzerland
City	Zurich, Zurich

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 158.173.152.4

Whois 158.173.152.4

IP Abuse Reports for 158.173.152.4:

This IP address has been reported a total of 10 times from 7 distinct sources. 158.173.152.4 was first reported on January 7th 2026, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-16 05:21:16 (3 weeks ago)	Attack Signature Blocked: /wishlist/index/add/product/12280/form_key/itM8FyJvDYF8aI7t/ (Magento Site ... show more Attack Signature Blocked: /wishlist/index/add/product/12280/form_key/itM8FyJvDYF8aI7t/ (Magento Site) (Botnet activity attributed to: Angara Technologies Group / mikhail-smirnov-79830322) show less	Web App Attack Bad Web Bot
🇩🇪 zUnlegit	2026-04-27 15:18:51 (1 month ago)	2026-04-27 15:18:51: Minecraft server scan detected from 158.173.152.4 on port 25565 of mailserver	Port Scan
🇺🇸 xmission.com	2026-03-01 12:23:13 (3 months ago)	Blocked by UFW (TCP on 51413) Source port: 48415 TTL: 45 Packet length: 60 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 51413) Source port: 48415 TTL: 45 Packet length: 60 TOS: 0x08 This report (for 158.173.152.4) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇷🇺 Agrohim	2026-02-24 00:05:12 (3 months ago)	Gate Inet blocked for categories:	DDoS Attack Ping of Death Port Scan Hacking Brute-Force
🇷🇺 Agrohim	2026-02-19 00:24:09 (3 months ago)	Gate Inet blocked for categories:	DDoS Attack Ping of Death Port Scan Hacking Brute-Force
🇺🇸 xmission.com	2026-02-18 12:12:06 (3 months ago)	Blocked by UFW (TCP on 61114) Source port: 17926 TTL: 44 Packet length: 60 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 61114) Source port: 17926 TTL: 44 Packet length: 60 TOS: 0x08 This report (for 158.173.152.4) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-02-14 20:35:06 (3 months ago)	Blocked by UFW (TCP on 61114) Source port: 46369 TTL: 45 Packet length: 60 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 61114) Source port: 46369 TTL: 45 Packet length: 60 TOS: 0x08 This report (for 158.173.152.4) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇵🇱 sefinek.net	2026-02-05 20:57:40 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from CH. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CH. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-01-16 04:36:04 (4 months ago)	wordpress-trap	Web App Attack
🇫🇷 Dampen59	2026-01-07 08:02:15 (5 months ago)	(smtpauth) Failed SMTP AUTH login from 158.173.152.4 (CH/Switzerland/-): 5 in the last 3600 secs; Po ... show more (smtpauth) Failed SMTP AUTH login from 158.173.152.4 (CH/Switzerland/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2026-01-07 09:01:28 dovecot_login authenticator failed for H=(ADMIN) [158.173.152.4]:1972: 535 Incorrect authentication data ([email protected]) 2026-01-07 09:01:55 dovecot_login authenticator failed for H=(ADMIN) [158.173.152.4]:60473: 535 Incorrect authentication data ([email protected]) 2026-01-07 09:01:59 dovecot_login authenticator failed for H=(ADMIN) [158.173.152.4]:38569: 535 Incorrect authentication data ([email protected]) 2026-01-07 09:02:00 dovecot_login authenticator failed for H=(ADMIN) [158.173.152.4]:4793: 535 Incorrect authentication data ([email protected]) 2026-01-07 09:02:11 dovecot_login authenticator failed for H=(ADMIN) [158.173.152.4]:51211: 535 Incorrect authentication data ([email protected]) show less	Port Scan

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 216.26.246.169

🇸🇬 185.200.116.42

🇮🇩 163.7.4.169

🇨🇳 112.46.212.222

🇸🇬 103.187.146.72

🇳🇱 45.142.193.9

🇨🇳 36.32.156.135

🇬🇧 35.203.211.211

🇺🇸 20.83.151.102

🇺🇸 18.216.38.202

🇨🇳 14.29.240.154

🇩🇪 193.124.20.247

🇩🇪 167.94.145.29

🇫🇷 167.86.87.228

🇨🇳 103.91.208.101

🇫🇮 89.167.70.88

🇺🇸 66.132.172.127

🇨🇳 36.35.165.20

🇩🇪 34.32.61.247

🇰🇷 211.223.107.86