JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.213.160.104

154.213.160.104 was found in our database!

This IP was reported 90 times. Confidence of Abuse is 0%: ?

ISP	Cloud Innovation Ltd
Usage Type	Unknown
ASN	Unknown
Domain Name	cloudinnovation.org
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.213.160.104

Whois 154.213.160.104

IP Abuse Reports for 154.213.160.104:

This IP address has been reported a total of 90 times from 26 distinct sources. 154.213.160.104 was first reported on April 8th 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
Anonymous	2025-12-31 12:41:37 (5 months ago)	wordpress-trap	Web App Attack
🇬🇷 Staging	2025-12-27 07:53:00 (5 months ago)	usual attacks	Hacking Bad Web Bot
🇺🇸 myagent.site	2025-12-09 19:36:48 (6 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-12-09 14:43:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 09:43:13.702132 2025] [security2:error] [pid 24765:tid 24765] [client 154.213.160.104:17229] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "efsews.com"] [uri "/.git/HEAD"] [unique_id "aTg1gWYRFqg7unsy9SUobgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 10:19:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 05:19:14.938494 2025] [security2:error] [pid 16331:tid 16331] [client 154.213.160.104:11909] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tinseltownartificials.com"] [uri "/.svn/wc.db"] [unique_id "aTf3oiu-hmxq2yHloh2U7gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 03:07:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 22:07:37.601413 2025] [security2:error] [pid 21373:tid 21398] [client 154.213.160.104:16829] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "plumberw9.com"] [uri "/.env"] [unique_id "aTeSeeD1IRS3k1ut3rfAQQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 06:21:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 01:20:57.440811 2025] [security2:error] [pid 25214:tid 25214] [client 154.213.160.104:19855] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "schonuniverse.com"] [uri "/.svn/wc.db"] [unique_id "aTZuSf8gObs83jd4vg3pVAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 05:15:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 00:15:29.215510 2025] [security2:error] [pid 7305:tid 7305] [client 154.213.160.104:29297] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "club1069media.com"] [uri "/.env"] [unique_id "aTZe8Q9u6H9UyM3uN9AwiwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 13:01:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 08:01:18.854201 2025] [security2:error] [pid 31677:tid 31677] [client 154.213.160.104:10119] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "efhgtc.org"] [uri "/.svn/wc.db"] [unique_id "aTV6nsssye5bg52GVlb1-gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 12:18:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 07:18:08.963998 2025] [security2:error] [pid 12879:tid 12879] [client 154.213.160.104:60541] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "koorsen.net"] [uri "/.env"] [unique_id "aTQfAL7fnQUjC5MZstAesAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:17:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:17:05.527193 2025] [security2:error] [pid 9405:tid 9405] [client 154.213.160.104:27597] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaels-house.net"] [uri "/.env"] [unique_id "aTQQsSqmjvXhWCUoUooDDwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 03:40:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 22:40:43.599078 2025] [security2:error] [pid 797:tid 797] [client 154.213.160.104:40307] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "solarfarms.info"] [uri "/.git/HEAD"] [unique_id "aTOlu2PB61sy-pv4uEAQxQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 06:35:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 01:35:12.023995 2025] [security2:error] [pid 26963:tid 26963] [client 154.213.160.104:20343] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "westernchristmascards.com"] [uri "/.git/HEAD"] [unique_id "aTJ9IOe1g1S0GmBuWs0vFgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 04:49:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 23:49:05.565775 2025] [security2:error] [pid 17932:tid 17932] [client 154.213.160.104:31761] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wilburmanagementgroup.com"] [uri "/.svn/wc.db"] [unique_id "aTJkQd2H_LoWza-_C6KXLAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 90 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.22

🇳🇱 185.113.175.27

🇮🇩 158.140.171.105

🇧🇯 154.127.39.22

🇺🇸 147.185.132.86

🇦🇴 102.213.34.99

🇫🇷 85.217.140.4

🇸🇬 20.212.25.134

🇬🇧 193.163.125.251

🇧🇷 189.73.51.142

🇪🇨 177.234.195.246

🇪🇬 156.198.201.163

🇺🇸 129.146.4.116

🇩🇪 64.226.126.91

🇵🇱 20.215.210.222

🇺🇸 20.150.193.52

🇸🇪 2a05:d016:268:8b02:f40f:e965:cddd:a3ea

🇷🇴 193.32.162.82

🇨🇱 179.60.74.53

🇮🇩 103.129.27.113