JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.213.160.143

154.213.160.143 was found in our database!

This IP was reported 75 times. Confidence of Abuse is 0%: ?

ISP	Cloud Innovation Ltd
Usage Type	Unknown
ASN	Unknown
Domain Name	cloudinnovation.org
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.213.160.143

Whois 154.213.160.143

IP Abuse Reports for 154.213.160.143:

This IP address has been reported a total of 75 times from 18 distinct sources. 154.213.160.143 was first reported on April 7th 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇭🇺 DumaNet	2026-02-19 04:24:00 (4 months ago)	Web app attack attempts, scanning for vulnerability. Date: 2026 Feb 19. 02:55:55 Source IP: 154.21 ... show more Web app attack attempts, scanning for vulnerability. Date: 2026 Feb 19. 02:55:55 Source IP: 154.213.160.143 Portion of the log(s): 154.213.160.143 - [19/Feb/2026:02:54:44 +0100] "GET /wp/.git/config HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 154.213.160.143 - [19/Feb/2026:02:54:42 +0100] "GET /v2/.git/config HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 154.213.160.143 - [19/Feb/2026:02:54:39 +0100] "GET /admin/.git/config HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 154.213.160.143 - [19/Feb/2026:02:54:37 +0100] "GET /dev/.git/config HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 154.213.160.143 - [19/Feb/2026:02:54:36 +0100] "GET /.git/config HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 154.213.160.143 - [19/Feb/2026:02:54:35 +0100] "GET /config/.env HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Windows NT 10 show less	Web App Attack
🇫🇷 dynamix	2026-02-18 20:04:42 (4 months ago)	Multiple WAF Violations	Web App Attack
🇨🇭 backslash	2026-01-05 01:10:05 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇦🇺 MAGIC	2025-12-12 00:28:39 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-10 12:10:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 07:09:58.451135 2025] [security2:error] [pid 27311:tid 27311] [client 154.213.160.143:42593] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "myaiphoneagent.com"] [uri "/.env"] [unique_id "aTljFrFPqRTYuukruFPuDwAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Swiptly	2025-12-08 18:53:01 (6 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 21:00:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 16:00:17.613379 2025] [security2:error] [pid 7045:tid 7045] [client 154.213.160.143:28075] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jenricker.com"] [uri "/.git/HEAD"] [unique_id "aTXq4Zr4Jf68_WiH_uaL0gAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 15:00:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 10:00:36.048196 2025] [security2:error] [pid 4091:tid 4091] [client 154.213.160.143:38459] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shiner.org"] [uri "/.git/HEAD"] [unique_id "aTWWlCXRv-b-h60aI-ZqQwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 12:09:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:09:27.811702 2025] [security2:error] [pid 31753:tid 31753] [client 154.213.160.143:29593] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "allisonstiles.org"] [uri "/.env"] [unique_id "aTVudwwea3FU5fg_r0B2egAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2025-12-06 23:02:19 (6 months ago)	Auto-ban: >3000 req/min op 2025-12-06	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-05 14:37:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 09:37:54.252306 2025] [security2:error] [pid 28525:tid 28550] [client 154.213.160.143:26545] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brucejoell.com"] [uri "/.git/HEAD"] [unique_id "aTLuQk-9wTtKSD2wFdhEAwAAAVY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 09:03:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 04:03:46.197537 2025] [security2:error] [pid 14240:tid 14240] [client 154.213.160.143:14179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "menzelassociates.com"] [uri "/.svn/wc.db"] [unique_id "aTKf8ndu8SVRkbJ5HadkTwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 03:57:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 22:57:14.969328 2025] [security2:error] [pid 31400:tid 31400] [client 154.213.160.143:18815] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "josecastillo.com"] [uri "/.env"] [unique_id "aTJYGspLZiPldrIEQC3oXwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 madeit	2025-11-02 14:08:47 (7 months ago)		Web App Attack
🇩🇪 dihost	2025-10-03 15:28:41 (8 months ago)	(cpanel) Failed cPanel login from 154.213.160.143 (SC/Seychelles/-): 5 in the last 3600 secs	Brute-Force

Showing 1 to 15 of 75 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇺 103.246.28.185

🇪🇬 197.133.11.243

🇻🇳 115.78.9.138

🇮🇩 103.139.193.187

🇶🇦 78.101.161.39

🇭🇰 23.91.97.170

🇯🇵 8.216.16.121

🇭🇰 118.193.33.130

🇱🇹 62.60.130.14

🇺🇸 20.64.104.195

🇺🇸 20.15.224.64

🇺🇸 199.195.254.215

🇮🇷 185.18.212.176

🇱🇰 173.239.196.179

🇩🇪 167.94.146.64

🇨🇳 118.145.246.44

🇧🇷 118.26.105.144

🇺🇸 192.241.140.178

🇺🇸 89.187.170.180

🇪🇪 83.166.50.15