JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.193.159.244

154.193.159.244 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 0%: ?

ISP	Hostalika LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	Unknown
Domain Name	hostalika.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.193.159.244

Whois 154.193.159.244

IP Abuse Reports for 154.193.159.244:

This IP address has been reported a total of 23 times from 7 distinct sources. 154.193.159.244 was first reported on April 9th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-25 05:18:31 (3 months ago)	(mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 25 00:18:22.520047 2026] [security2:error] [pid 31665:tid 31665] [client 154.193.159.244:43890] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.gemco-mfg.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.gemco-mfg.com"] [uri "/wp-login.php"] [unique_id "aZ6GHl3mve7L-FBaTwAgZQAAAAs"], referer: https://www.gemco-mfg.com/wp-login.php show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-02-17 20:47:59 (3 months ago)	Web password guessing	Brute-Force
🇺🇸 TPI-Abuse	2026-02-10 03:21:42 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:21:37.678440 2026] [security2:error] [pid 5846:tid 5846] [client 154.193.159.244:16244] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|tedharris.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "tedharris.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aYqkQXKdIDt_tukxwG85vQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-07 09:50:08 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 07 04:50:01.030118 2026] [security2:error] [pid 10518:tid 10518] [client 154.193.159.244:18304] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|kmelson.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "kmelson.com"] [uri "/wp-login.php"] [unique_id "aYcKycRWAnjvfI49FIX3iQAAABw"], referer: http://kmelson.com/wp-login.php show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-07 03:07:56 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 06 22:07:50.718229 2026] [security2:error] [pid 16908:tid 16908] [client 154.193.159.244:48522] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|primacomm.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "primacomm.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aYashkv6gnBSUwYTJ-L2HQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 17:06:11 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 12:06:03.620819 2026] [security2:error] [pid 19454:tid 19454] [client 154.193.159.244:24998] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.kawkacevents.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.kawkacevents.com"] [uri "/wp-login.php"] [unique_id "aXJY-x-De2bfmuQti-tpAgAAABE"], referer: http://kawkacevents.com/wp-login.php show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-13 14:46:10 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 13 09:46:03.100576 2026] [security2:error] [pid 889:tid 889] [client 154.193.159.244:16500] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|eye7graphics.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "eye7graphics.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aWZaq5N710jwH_SfUJMX1AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-01 07:46:19 (5 months ago)	(mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 01 02:46:11.495186 2026] [security2:error] [pid 977:tid 977] [client 154.193.159.244:38424] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|passy.us\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "passy.us"] [uri "/wp-login.php"] [unique_id "aVYmQ-nmE3TaiCVVeBjp5gAAABY"], referer: http://passy.us/wp-login.php show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-31 00:57:35 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇩🇪 F242	2025-12-28 05:40:43 (5 months ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇺🇸 TPI-Abuse	2025-12-26 08:16:04 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 26 03:15:59.719200 2025] [security2:error] [pid 2768:tid 2768] [client 154.193.159.244:53936] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|method1.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "method1.net"] [uri "/wp-json/wp/v2/users/"] [unique_id "aU5EP7oThjeyh8YzIOVYqwAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-22 11:47:42 (5 months ago)	(mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 22 06:47:37.987062 2025] [security2:error] [pid 18085:tid 18085] [client 154.193.159.244:17888] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|mcbrearty.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "mcbrearty.org"] [uri "/wp-login.php"] [unique_id "aUkv2blLcOhBpud7yN1cQwAAAAQ"], referer: http://mcbrearty.org/wp-login.php show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-11 00:53:32 (6 months ago)	(mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 19:53:24.975508 2025] [security2:error] [pid 8726:tid 8726] [client 154.193.159.244:49176] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.centrodentalsindolor.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.centrodentalsindolor.com"] [uri "/wp-login.php"] [unique_id "aToWBIyfdON8Y_KhiWDSqgAAACw"], referer: https://www.centrodentalsindolor.com/wp-login.php show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 F242	2025-12-02 19:32:03 (6 months ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 14:25:28 (6 months ago)	(mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 154.193.159.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 09:25:25.296034 2025] [security2:error] [pid 12310:tid 12310] [client 154.193.159.244:48567] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.versallis.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.versallis.com"] [uri "/wp-login.php"] [unique_id "aScN1Vw4He3VrVSIZiYkfAAAACg"], referer: https://www.versallis.com/wp-login.php show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.186.13.130

🇫🇮 185.172.128.115

🇦🇿 185.40.34.212

🇩🇪 167.94.146.32

🇨🇦 159.203.5.3

🇩🇪 135.136.19.104

🇺🇸 108.206.146.146

🇸🇪 85.203.44.197

🇺🇸 75.228.72.107

🇺🇸 32.210.219.126

🇬🇧 209.97.183.43

🇻🇳 203.205.37.233

🇰🇷 118.218.219.250

🇿🇦 105.233.67.36

🇺🇸 99.145.17.11

🇺🇸 73.76.222.204

🇺🇸 71.94.245.2

🇺🇸 47.38.1.246

🇳🇱 45.148.10.152

🇮🇩 43.230.5.42