JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.182.245.159

154.182.245.159 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 52%: ?

52%

ISP	TE Data
Usage Type	Fixed Line ISP
ASN	AS8452
Domain Name	tedata.net
Country	🇪🇬 Egypt
City	Giza, Giza

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.182.245.159

Whois 154.182.245.159

IP Abuse Reports for 154.182.245.159:

This IP address has been reported a total of 11 times from 8 distinct sources. 154.182.245.159 was first reported on June 4th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-05 04:48:13 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 154.182.245.159 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 154.182.245.159 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 00:48:08.404940 2026] [security2:error] [pid 31019:tid 31019] [client 154.182.245.159:61137] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 154.182.245.159 (+1 hits since last alert)\|kdgsf.xyz\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kdgsf.xyz"] [uri "/xmlrpc.php"] [unique_id "aiJVCEc687JRe0erulv0owAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Dolphi	2026-06-05 04:20:03 (1 day ago)	Excessive POST /xmlrpc.php requests	Brute-Force Web App Attack
🇲🇾 Rizzy	2026-06-05 01:39:03 (1 day ago)	Multiple WAF Violations	Brute-Force Web App Attack
Anonymous	2026-06-04 21:04:41 (1 day ago)	Attac	Brute-Force
Anonymous	2026-06-04 19:08:36 (1 day ago)	[server.tmg.gr] httpd-xmlrpc-post: sites=tmg.gr; logs=/var/log/httpd/domains/tmg.gr.log; samples=/xm ... show more [server.tmg.gr] httpd-xmlrpc-post: sites=tmg.gr; logs=/var/log/httpd/domains/tmg.gr.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 17:01:05 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 154.182.245.159 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 154.182.245.159 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 13:00:58.769520 2026] [security2:error] [pid 21664:tid 21746] [client 154.182.245.159:61645] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 154.182.245.159 (+1 hits since last alert)\|nabsci.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "nabsci.com"] [uri "/xmlrpc.php"] [unique_id "aiGvSkJOfIu43_YqLOsF3AAAAY0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 13:52:21 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 154.182.245.159 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 154.182.245.159 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 09:52:16.158001 2026] [security2:error] [pid 20774:tid 20774] [client 154.182.245.159:57135] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 154.182.245.159 (+1 hits since last alert)\|briannalls.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "briannalls.com"] [uri "/xmlrpc.php"] [unique_id "aiGDEBgvwM0z7krhpGEATgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 11:40:59 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 154.182.245.159 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 154.182.245.159 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 07:40:52.477109 2026] [security2:error] [pid 4137:tid 4137] [client 154.182.245.159:60603] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 154.182.245.159 (+1 hits since last alert)\|ideaofauniversity.website\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ideaofauniversity.website"] [uri "/xmlrpc.php"] [unique_id "aiFkRLdhqzcF235uTd2NbQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 applemooz	2026-06-04 05:47:24 (2 days ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-04 04:16:49 (2 days ago)	(xmlrpc) Apache: Failed xmlrpc access from 154.182.245.159 (EG/Egypt/-): 10 in the last 3600 secs (0 ... show more (xmlrpc) Apache: Failed xmlrpc access from 154.182.245.159 (EG/Egypt/-): 10 in the last 3600 secs (0-201) show less	Hacking
Anonymous	2026-06-04 01:41:00 (2 days ago)	(wordpress) Failed wordpress login from 154.182.245.159 (EG/Egypt/Cairo Governorate/Cairo/-/[redacte ... show more (wordpress) Failed wordpress login from 154.182.245.159 (EG/Egypt/Cairo Governorate/Cairo/-/[redacted]) show less	Brute-Force

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 147.185.133.201

🇸🇬 104.194.154.210

🇫🇷 85.217.140.42

🇧🇷 168.196.91.69

🇮🇳 139.59.6.237

🇺🇸 107.150.97.175

🇧🇩 103.42.228.176

🇹🇷 88.230.210.206

🇩🇪 69.5.169.220

🇧🇪 34.76.166.144

🇻🇳 27.71.230.31

🇧🇴 190.129.122.12

🇲🇽 186.96.145.241

🇳🇱 185.213.175.137

🇮🇳 167.71.239.213

🇺🇸 162.216.150.181

🇺🇸 147.185.132.192

🇺🇸 147.182.183.54

🇧🇬 78.128.113.46

🇪🇸 31.24.155.180