JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 191.101.157.213

191.101.157.213 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 13%: ?

13%

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutils.io
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 191.101.157.213

Whois 191.101.157.213

IP Abuse Reports for 191.101.157.213:

This IP address has been reported a total of 30 times from 18 distinct sources. 191.101.157.213 was first reported on September 19th 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 paissangroup	2026-04-26 12:20:37 (1 month ago)	Multiple WAF Violations	Web App Attack
🇩🇪 int8	2026-04-24 01:52:38 (1 month ago)	2026-04-24T01:52:38.333241918Z Minecraft server scanner: status request	Port Scan
🇺🇸 cpxducky	2026-04-24 01:51:00 (1 month ago)	2026-04-24 01:51:00: Minecraft server scan detected from 191.101.157.213 on port 25565 of mail.cpxdu ... show more 2026-04-24 01:51:00: Minecraft server scan detected from 191.101.157.213 on port 25565 of mail.cpxducky.com show less	Port Scan
🇺🇸 LockBlock	2026-04-24 01:50:56 (1 month ago)	2026-04-24 01:50:55: Minecraft server scan detected from 191.101.157.213 on port 25565 of racknerd-e ... show more 2026-04-24 01:50:55: Minecraft server scan detected from 191.101.157.213 on port 25565 of racknerd-e7e1a9 show less	Port Scan
🇮🇪 Jim Keir	2026-04-16 12:18:08 (2 months ago)	2026-04-16 12:18:08 191.101.157.213 File scanning, blocking 191.101.157.213 for 5 minutes	Web App Attack
🇫🇷 masterguru	2026-03-10 12:12:21 (3 months ago)	(Botnet_distributed) Probably botnet. Call spam script from 191.101.157.213 (DE/Germany/-): 1 in the ... show more (Botnet_distributed) Probably botnet. Call spam script from 191.101.157.213 (DE/Germany/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇮🇹 VHosting	2025-12-24 02:10:12 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇹🇷 Doruk	2025-11-12 13:20:02 (7 months ago)	Unauthorized connection attempt	Brute-Force
🇬🇧 SilverZippo	2025-09-09 12:03:35 (9 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2025-01-21 19:07:14 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 191.101.157.213 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 191.101.157.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 21 14:07:10.587476 2025] [security2:error] [pid 10331:tid 10331] [client 191.101.157.213:49742] [client 191.101.157.213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "celestialtrust.net"] [uri "/css/wp-config.php"] [unique_id "Z4_wXlEbpan2iiecADLM5AAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-01-21 16:44:38 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 191.101.157.213 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 191.101.157.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 21 11:44:34.051969 2025] [security2:error] [pid 17554:tid 17592] [client 191.101.157.213:46486] [client 191.101.157.213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jameskeeton.com"] [uri "/css/wp-config.php"] [unique_id "Z4_O8rvUpIN6JyC1DRhriAAAAFc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-01-21 14:07:38 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 191.101.157.213 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 191.101.157.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 21 09:07:34.776523 2025] [security2:error] [pid 714496:tid 714496] [client 191.101.157.213:39314] [client 191.101.157.213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "drdaliashaheen.online"] [uri "/css/wp-config.php"] [unique_id "Z4-qJnhYFt-152ilmHXhwgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-01-21 13:43:05 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 191.101.157.213 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 191.101.157.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 21 08:43:01.493445 2025] [security2:error] [pid 5037:tid 5037] [client 191.101.157.213:59928] [client 191.101.157.213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maurnavy.com"] [uri "/css/wp-config.php"] [unique_id "Z4-kZe9-F_fazr26IJ6T3QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-01-21 12:19:36 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 191.101.157.213 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 191.101.157.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 21 07:19:32.111368 2025] [security2:error] [pid 14668:tid 14668] [client 191.101.157.213:37192] [client 191.101.157.213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "martinvjohnson.com"] [uri "/css/wp-config.php"] [unique_id "Z4-Q1BlPBy8_EtB6pQc27wAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-01-21 07:52:09 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 191.101.157.213 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 191.101.157.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 21 02:52:05.807877 2025] [security2:error] [pid 25362:tid 25362] [client 191.101.157.213:38404] [client 191.101.157.213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ourswat.team"] [uri "/css/wp-config.php"] [unique_id "Z49SJWHX0JaS9bD8TF8EMQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.219

🇷🇺 62.182.132.94

🇺🇸 20.84.117.55

🇺🇸 8.41.17.251

🇫🇷 2a01:e0a:6f:d120:2cf7:de62:5c72:6572

🇹🇿 196.249.123.200

🇮🇶 185.166.25.150

🇩🇪 167.94.146.45

🇷🇴 92.118.39.228

🇷🇴 80.94.92.186

🇮🇹 79.22.254.39

🇺🇸 65.49.1.103

🇻🇳 14.169.202.217

🇺🇸 8.231.58.27

🇳🇱 212.56.48.12

🇵🇰 206.135.172.49

🇧🇷 179.190.127.213

🇧🇷 104.28.162.126

🇨🇳 101.70.111.14

🇺🇸 66.132.186.247