JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.16.6.56

154.16.6.56 was found in our database!

This IP was reported 80 times. Confidence of Abuse is 95%: ?

95%

ISP	Digital Energy Technologies Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS48314
Domain Name	abuseradar.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.16.6.56

Whois 154.16.6.56

IP Abuse Reports for 154.16.6.56:

This IP address has been reported a total of 80 times from 60 distinct sources. 154.16.6.56 was first reported on December 16th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇪 AutosOnShow	2026-06-24 16:21:05 (1 day ago)	blocked for webapp attack \| path requested: /.env \| seen at 2026-06-24 16:20:14.485 \|	Web App Attack
🇺🇸 xmission.com	2026-06-24 14:12:37 (1 day ago)	Blocked by UFW (TCP on 443) Source port: 49243 TTL: 236 Packet length: 40 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 443) Source port: 49243 TTL: 236 Packet length: 40 TOS: 0x08 This report (for 154.16.6.56) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
Anonymous	2026-06-24 13:33:40 (2 days ago)	(smtpauth) Failed SMTP AUTH login from 154.16.6.56 (DE/Germany/Hesse/Frankfurt am Main/-/[redacted])	Brute-Force
🇹🇭 thaizone.com	2026-06-24 13:06:26 (2 days ago)	Mail credential brute-force attack (SM6) #1	Email Spam Brute-Force
Anonymous	2026-06-24 12:55:02 (2 days ago)	...	Brute-Force
🇮🇩 xveil	2026-06-24 12:47:51 (2 days ago)	2026-06-24T19:47:49.043170 mail-honeypot postfix/submission/smtpd[16959]: warning: unknown[154.16.6. ... show more 2026-06-24T19:47:49.043170 mail-honeypot postfix/submission/smtpd[16959]: warning: unknown[154.16.6.56]: SASL PLAIN authentication failed: authentication failure ... show less	Brute-Force
🇩🇪 LRob.fr	2026-06-24 12:45:14 (2 days ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
Anonymous	2026-06-24 12:37:19 (2 days ago)	SMTP brute force - auth failed	Brute-Force Exploited Host
🇿🇦 hostsec_za	2026-06-24 12:10:01 (2 days ago)	SMTP/cPanel/WHM/Webmail Auth Attack. 32 failed logins in 6 hours.	Brute-Force
🇫🇷 dwmp	2026-06-24 12:08:16 (2 days ago)	Jun 24 14:08:15 plesk postfix/smtpd[658430]: lost connection after CONNECT from unknown[154.16.6.56] ... show more Jun 24 14:08:15 plesk postfix/smtpd[658430]: lost connection after CONNECT from unknown[154.16.6.56] Jun 24 14:08:15 plesk postfix/smtpd[658682]: lost connection after CONNECT from unknown[154.16.6.56] Jun 24 14:08:15 plesk postfix/smtpd[658682]: lost connection after CONNECT from unknown[154.16.6.56] ... show less	Brute-Force SSH
🇮🇩 xveil	2026-06-24 12:05:12 (2 days ago)	2026-06-24T19:05:09.971523 mail-honeypot postfix/submission/smtpd[16160]: warning: unknown[154.16.6. ... show more 2026-06-24T19:05:09.971523 mail-honeypot postfix/submission/smtpd[16160]: warning: unknown[154.16.6.56]: SASL PLAIN authentication failed: authentication failure ... show less	Brute-Force
🇫🇷 UM3	2026-06-24 12:02:57 (2 days ago)	Exim Auth Failed	Brute-Force
🇮🇹 VHosting	2026-06-24 08:55:03 (2 days ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇹🇷 baku.hosting	2026-06-24 08:51:56 (2 days ago)	CSF Auto Report: (cpanel) Failed cPanel login from 154.16.6.56 (DE/Germany/-): 4 in the last 3600 se ... show more CSF Auto Report: (cpanel) Failed cPanel login from 154.16.6.56 (DE/Germany/-): 4 in the last 3600 secs show less	Brute-Force Web App Attack
Anonymous	2026-06-21 14:02:08 (5 days ago)	Web attack	Bad Web Bot Web App Attack

Showing 1 to 15 of 80 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 200.232.114.71

🇺🇸 170.130.187.50

🇺🇸 162.216.149.172

🇸🇬 157.230.42.17

🇸🇪 155.4.244.179

🇰🇷 115.68.208.117

🇪🇸 88.21.21.240

🇧🇬 79.124.62.126

🇺🇸 66.132.172.208

🇺🇸 54.165.1.142

🇮🇳 4.213.38.49

🇸🇪 185.213.154.183

🇻🇳 180.93.249.92

🇧🇷 177.92.128.20

🇨🇳 139.129.36.142

🇩🇪 134.122.80.112

🇨🇳 111.4.78.74

🇱🇻 81.30.98.158

🇺🇸 64.62.156.98

🇱🇹 62.60.130.219