JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 207.154.203.122

207.154.203.122 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 44%: ?

44%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 207.154.203.122

Whois 207.154.203.122

IP Abuse Reports for 207.154.203.122:

This IP address has been reported a total of 9 times from 6 distinct sources. 207.154.203.122 was first reported on June 15th 2026, and the most recent report was 8 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 ipoac.nl	2026-06-15 17:48:04 (8 minutes ago)	2026-06-15T19:48:02.858997+02:00 ipoac.nl wordpress(-)-: Authentication failure for-from 207.154.203 ... show more 2026-06-15T19:48:02.858997+02:00 ipoac.nl wordpress(-)-: Authentication failure for-from 207.154.203.122 show less	Web App Attack
🇬🇧 poundawebsiteltd	2026-06-15 17:42:45 (13 minutes ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 207.154.203.122 - - [15/Jun/2026:18:42:38 +0100] ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 207.154.203.122 - - [15/Jun/2026:18:42:38 +0100] POST /wp-login.php HTTP/2.0 200 3727 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 17:37:19 (19 minutes ago)	(mod_security) mod_security (id:225170) triggered by 207.154.203.122 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 207.154.203.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 13:37:16.520308 2026] [security2:error] [pid 18293:tid 18293] [client 207.154.203.122:58280] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|geckoturner.chezlubacov.xyz\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "geckoturner.chezlubacov.xyz"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ajA4TLha4_Kiw_Bnmi49pAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-06-15 17:14:46 (41 minutes ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇺🇸 TPI-Abuse	2026-06-15 16:47:16 (1 hour ago)	(mod_security) mod_security (id:225170) triggered by 207.154.203.122 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 207.154.203.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 12:47:09.596355 2026] [security2:error] [pid 6989:tid 6998] [client 207.154.203.122:55694] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|plumeraproductions.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "plumeraproductions.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ajAsjSeXNcrIRpOr7O9MsgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Hazzard	2026-06-15 16:42:03 (1 hour ago)	(wordpress) Failed wordpress login from 207.154.203.122 (DE/Germany/Hesse/Frankfurt am Main/-/[redac ... show more (wordpress) Failed wordpress login from 207.154.203.122 (DE/Germany/Hesse/Frankfurt am Main/-/[redacted]): (CF_ENABLE) show less	Brute-Force
Anonymous	2026-06-15 16:20:43 (1 hour ago)	Web attack blocked by Wordfence on kunstkringhenrijonas.nl (1 hit). Reported by CRMON.	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 16:17:55 (1 hour ago)	(mod_security) mod_security (id:225170) triggered by 207.154.203.122 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 207.154.203.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 12:17:51.504661 2026] [security2:error] [pid 2110:tid 2110] [client 207.154.203.122:41144] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|grandpont-house.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "grandpont-house.org"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ajAlr5YhrOFYqTTTY93oXQAAADM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 15:57:55 (1 hour ago)	(mod_security) mod_security (id:225170) triggered by 207.154.203.122 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 207.154.203.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 11:57:49.463550 2026] [security2:error] [pid 2746:tid 2746] [client 207.154.203.122:45988] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kaldaragroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kaldaragroup.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ajAg_ZROffsCEGwQzX846AAAABI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 172.83.253.31

🇭🇰 152.32.239.122

🇻🇳 103.199.18.125

🇰🇷 61.80.157.142

🇬🇧 35.203.210.97

🇺🇸 34.144.178.129

🇺🇸 2603:3:6101:b8c0::

🇰🇷 222.232.176.7

🇬🇧 193.163.125.110

🇨🇦 146.190.255.30

🇳🇱 104.23.172.72

🇸🇬 101.47.27.73

🇺🇸 91.230.168.190

🇨🇱 34.176.181.37

🇰🇷 220.80.223.144

🇵🇰 202.165.238.54

🇨🇳 115.190.54.120

🇨🇦 76.9.201.199

🇨🇳 39.107.136.130

🇬🇧 8.208.93.254