JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 207.180.238.18

207.180.238.18 was found in our database!

This IP was reported 116 times. Confidence of Abuse is 100%: ?

100%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	web154.fastservers.africa
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 207.180.238.18

Whois 207.180.238.18

IP Abuse Reports for 207.180.238.18:

This IP address has been reported a total of 116 times from 68 distinct sources. 207.180.238.18 was first reported on April 30th 2026, and the most recent report was 12 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-06-30 00:01:33 (12 minutes ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
🇫🇷 ELYAZ	2026-06-29 22:35:11 (1 hour ago)	(y4) Failed scan -byebye- from 207.180.238.18 (FR/France/web154.fastservers.africa): (CF_ENABLE)	Hacking
🇩🇪 Marc	2026-06-29 22:09:49 (2 hours ago)	207.180.238.18 - - [29/Jun/2026:22:28:08 +0200] "GET /wp-login.php HTTP/2.0" 200 3457 "-" "Mozilla/5 ... show more 207.180.238.18 - - [29/Jun/2026:22:28:08 +0200] "GET /wp-login.php HTTP/2.0" 200 3457 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" 207.180.238.18 - - [29/Jun/2026:22:28:09 +0200] "POST /wp-login.php HTTP/2.0" 200 3293 "https://alsarnsberg.de/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" 207.180.238.18 - - [29/Jun/2026:22:34:12 +0200] "GET /wp-login.php HTTP/2.0" 200 3967 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 207.180.238.18 - - [29/Jun/2026:22:34:12 +0200] "POST /wp-login.php HTTP/2.0" 200 4617 "https://www.bente-personaldienstleistung.de/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 207.180.238.18 - - [30/Jun/2026:00:09:48 +0200] "GET /wp-login.php HTTP/2.0" 200 3897 "-" "Mo show less	Brute-Force Web App Attack
🇩🇪 Prodscape	2026-06-29 21:40:26 (2 hours ago)	(WPLOGIN) WP Login Attack 207.180.238.18 (DE/Germany/web154.fastservers.africa): 5 in the last 86400 ... show more (WPLOGIN) WP Login Attack 207.180.238.18 (DE/Germany/web154.fastservers.africa): 5 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER show less	Port Scan
🇺🇸 integrantservices.com	2026-06-29 21:26:05 (2 hours ago)	(PERMBLOCK) 207.180.238.18 (FR/France/web154.fastservers.africa) has had more than 4 temp blocks	Hacking
🇫🇷 solution.it	2026-06-29 21:24:01 (2 hours ago)	[Mon Jun 29 23:24:00.624460 2026] [php7:error] [pid 3798969:tid 3798969] [client 207.180.238.18:4571 ... show more [Mon Jun 29 23:24:00.624460 2026] [php7:error] [pid 3798969:tid 3798969] [client 207.180.238.18:45716] script '/var/www/html/blog.solution.it/wp-login.php' not found or unable to stat show less	Web App Attack
🇫🇷 Yepngo	2026-06-29 21:23:58 (2 hours ago)	207.180.238.18 - - [29/Jun/2026:23:23:58 +0200] "POST /wp-login.php HTTP/2.0" 200 11368 "https://dev ... show more 207.180.238.18 - - [29/Jun/2026:23:23:58 +0200] "POST /wp-login.php HTTP/2.0" 200 11368 "https://dev.yepngo.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
🇨🇭 Origon	2026-06-29 19:34:29 (4 hours ago)	recidive - IP: 207.180.238.18 - 2026-06-29 16:56:30,267 fail2ban.actions [1068196]: NOTICE [plesk-w ... show more recidive - IP: 207.180.238.18 - 2026-06-29 16:56:30,267 fail2ban.actions [1068196]: NOTICE [plesk-wordpress] Ban 207.180.238.18 2026-06-29 17:59:18,015 fail2ban.actions [1068196]: NOTICE [plesk-wordpress] Ban 207.180.238.18 2026-06-29 21:34:29,144 fail2ban.actions [1068196]: NOTICE [plesk-wordpress] Ban 207.180.238.18 show less	Web App Attack
🇺🇸 dtorrer	2026-06-29 18:52:53 (5 hours ago)	Brute-force general attack.	Brute-Force
🇫🇷 masterguru	2026-06-29 18:50:49 (5 hours ago)	(wordpress) Apache: Failed WordPress login from 207.180.238.18 (DE/Germany/web154.fastservers.africa ... show more (wordpress) Apache: Failed WordPress login from 207.180.238.18 (DE/Germany/web154.fastservers.africa): 10 in the last 3600 secs (0-197) show less	Hacking
🇩🇪 FeG Deutschland	2026-06-29 18:41:23 (5 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack
🇪🇸 masterguru	2026-06-29 17:57:46 (6 hours ago)	(wplogin) Failed WordPress login from 207.180.238.18 (DE/Germany/web154.fastservers.africa): 5 in th ... show more (wplogin) Failed WordPress login from 207.180.238.18 (DE/Germany/web154.fastservers.africa): 5 in the last 3600 secs (0-122) show less	Hacking
🇩🇪 F242	2026-06-29 17:56:33 (6 hours ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇫🇷 Yepngo	2026-06-29 17:12:01 (7 hours ago)	207.180.238.18 - - [29/Jun/2026:18:56:48 +0200] "POST /wp-login.php HTTP/2.0" 200 11372 "https://dev ... show more 207.180.238.18 - - [29/Jun/2026:18:56:48 +0200] "POST /wp-login.php HTTP/2.0" 200 11372 "https://dev.yepngo.com/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 207.180.238.18 - - [29/Jun/2026:19:12:01 +0200] "POST /wp-login.php HTTP/2.0" 200 11368 "https://yepngo.com/wp-login.php" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
Anonymous	2026-06-29 16:46:51 (7 hours ago)	[Mon Jun 29 18:46:50.214569 2026] [authz_core:error] [pid 87899:tid 87935] [client 207.180.238.18:40 ... show more [Mon Jun 29 18:46:50.214569 2026] [authz_core:error] [pid 87899:tid 87935] [client 207.180.238.18:40872] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php [Mon Jun 29 18:46:50.292797 2026] [authz_core:error] [pid 87899:tid 87947] [client 207.180.238.18:40872] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php, referer: https://pre.cimt-precision.de/wp-login.php [Mon Jun 29 18:46:50.292797 2026] [authz_core:error] [pid 87899:tid 87947] [client 207.180.238.18:40872] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php, referer: https://pre.cimt-precision.de/wp-login.php ... show less	Brute-Force Web App Attack

Showing 1 to 15 of 116 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.85.54.40

🇺🇸 216.25.89.91

🇳🇵 202.70.78.237

🇫🇷 195.154.118.29

🇸🇪 193.235.202.218

🇺🇸 172.56.17.151

🇺🇸 158.94.187.38

🇳🇱 91.92.40.11

🇧🇬 79.124.62.134

🇺🇸 74.205.137.195

🇳🇱 45.148.10.147

🇩🇪 45.43.62.37

🇩🇪 43.228.157.8

🇺🇸 43.166.242.149

🇿🇦 41.181.156.205

🇨🇳 223.82.97.51

🇧🇷 205.210.31.177

🇸🇪 195.178.191.5

🇬🇧 191.96.110.39

🇨🇳 180.76.134.19