JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 178.218.144.51

178.218.144.51 was found in our database!

This IP was reported 118 times. Confidence of Abuse is 51%: ?

51%

ISP	LowHosting Services
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212508
Hostname(s)	178.218.144.51.lowhosting.org
Domain Name	lowhosting.org
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 178.218.144.51

Whois 178.218.144.51

IP Abuse Reports for 178.218.144.51:

This IP address has been reported a total of 118 times from 53 distinct sources. 178.218.144.51 was first reported on October 21st 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-10 13:01:05 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 178.218.144.51 (178.218.144.51.lowhosting.org): ... show more (mod_security) mod_security (id:225170) triggered by 178.218.144.51 (178.218.144.51.lowhosting.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 09:00:57.561742 2026] [security2:error] [pid 7504:tid 7504] [client 178.218.144.51:41782] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|artspacecleveland.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "artspacecleveland.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ailgCdpNhoP0RPWkbbRK9QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 13:05:28 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 178.218.144.51 (178.218.144.51.lowhosting.org): ... show more (mod_security) mod_security (id:210492) triggered by 178.218.144.51 (178.218.144.51.lowhosting.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:05:22.558861 2026] [security2:error] [pid 16376:tid 16376] [client 178.218.144.51:56300] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.frankpollicino.com"] [uri "/.git/config"] [unique_id "aigPkv8VwU1Yhu02lLx_igAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 nNordic	2026-06-09 10:19:14 (2 weeks ago)	Connection attempt blocked by IDS/IPS from 178.218.144.51/32	Hacking
🇺🇸 TPI-Abuse	2026-06-07 08:05:35 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 178.218.144.51 (178.218.144.51.lowhosting.org): ... show more (mod_security) mod_security (id:210492) triggered by 178.218.144.51 (178.218.144.51.lowhosting.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 04:05:32.123581 2026] [security2:error] [pid 8929:tid 8929] [client 178.218.144.51:32882] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sandbox.davis.monster"] [uri "/.git/config"] [unique_id "aiUmTP6YSwvpZBDVrGbW9gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇬 pusathosting.com	2026-06-07 07:27:03 (2 weeks ago)	24ds22 bruteforce	Brute-Force Web App Attack
🇺🇸 xmission.com	2026-06-06 14:18:39 (2 weeks ago)	Blocked by UFW (TCP on 9999) Source port: 58270 TTL: 50 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 9999) Source port: 58270 TTL: 50 Packet length: 60 TOS: 0x00 This report (for 178.218.144.51) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Ping of Death
🇺🇸 TPI-Abuse	2026-06-05 19:57:35 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 178.218.144.51 (178.218.144.51.lowhosting.org): ... show more (mod_security) mod_security (id:210492) triggered by 178.218.144.51 (178.218.144.51.lowhosting.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 15:57:27.717375 2026] [security2:error] [pid 3843:tid 3843] [client 178.218.144.51:36834] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.addisonkinkade.com"] [uri "/.git/config"] [unique_id "aiMqJ4BO9bp1iIiZ73hf4gAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-03 20:34:57 (3 weeks ago)	[WedJun0322:34:52.6153442026][security2:error][pid2262453:tid2262503][client178.218.144.51:0]ModSecu ... show more [WedJun0322:34:52.6153442026][security2:error][pid2262453:tid2262503][client178.218.144.51:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"www.simireinigung.ch\"][uri\"/xmlrpc.php\"][unique_id\"aiCP7MUF-BN_vFb0iQO5qAAAABY\"]\,referer:https://www.simireinigung.ch/xmlrpc.php show less	Port Scan Brute-Force Web App Attack
🇺🇸 mnsf	2026-06-02 11:05:39 (3 weeks ago)	Scanning/Probing (15)	Brute-Force Web App Attack
🇦🇺 oncord	2026-05-31 07:38:59 (3 weeks ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-05-31 04:00:57 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 178.218.144.51 (178.218.144.51.lowhosting.org): ... show more (mod_security) mod_security (id:210492) triggered by 178.218.144.51 (178.218.144.51.lowhosting.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 00:00:51.724299 2026] [security2:error] [pid 4933:tid 4933] [client 178.218.144.51:42776] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.mindtekt.com"] [uri "/.git/config"] [unique_id "ahuyc2f9HLNTNhiKKL_5sAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-05-29 18:32:35 (4 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-05-29 09:27:53 (4 weeks ago)	(mod_security) mod_security (id:210730) triggered by 178.218.144.51 (178.218.144.51.lowhosting.org): ... show more (mod_security) mod_security (id:210730) triggered by 178.218.144.51 (178.218.144.51.lowhosting.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 05:27:48.712079 2026] [security2:error] [pid 29018:tid 29018] [client 178.218.144.51:38022] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|citystreetsalon.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "citystreetsalon.com"] [uri "/dump.sql"] [unique_id "ahlcFK-iZ8mIxJmvxU8WlQAAAA4"], referer: citystreetsalon.com/dump.sql show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-05-29 07:23:19 (4 weeks ago)	Blocked by UFW (TCP on 8333) Source port: 58936 TTL: 43 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 8333) Source port: 58936 TTL: 43 Packet length: 60 TOS: 0x00 This report (for 178.218.144.51) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 Swiptly	2026-05-28 11:56:04 (4 weeks ago)	Excessive 403/404/405 PHP/CMS errors from scanning or broken bots ...	Web App Attack

Showing 1 to 15 of 118 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.215

🇨🇳 116.179.37.53

🇯🇵 43.153.137.115

🇸🇬 43.134.83.133

🇩🇪 193.124.20.237

🇲🇽 189.178.194.237

🇳🇱 176.65.139.8

🇺🇸 172.232.27.232

🇹🇭 118.194.250.113

🇨🇳 116.179.37.135

🇮🇷 85.133.229.64

🇺🇸 66.94.117.226

🇺🇸 47.251.141.241

🇯🇵 43.133.161.95

🇨🇳 27.17.151.57

🇳🇱 195.178.110.217

🇧🇷 177.53.42.101

🇸🇪 171.25.158.82

🇺🇸 170.106.137.47

🇯🇵 124.156.237.73