JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.213.160.22

154.213.160.22 was found in our database!

This IP was reported 73 times. Confidence of Abuse is 0%: ?

ISP	Cloud Innovation Ltd
Usage Type	Unknown
ASN	Unknown
Domain Name	cloudinnovation.org
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.213.160.22

Whois 154.213.160.22

IP Abuse Reports for 154.213.160.22:

This IP address has been reported a total of 73 times from 25 distinct sources. 154.213.160.22 was first reported on April 7th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 taivas.nl	2026-02-12 04:32:10 (3 months ago)	Wordpress_xmlrpc_attack	Bad Web Bot
🇺🇸 gu-alvareza	2026-02-08 07:05:09 (4 months ago)	WordPress.xmlrpc.Pingback.DoS	DDoS Attack
🇵🇱 sefinek.net	2026-01-23 12:11:52 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Linux x86_64; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇦🇺 MAGIC	2025-12-28 03:03:59 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇱🇻 garmtech.com	2025-12-26 08:50:53 (5 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 10-50.154.213.160.22.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 10-50.154.213.160.22.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2025-12-04 05:59:17 (6 months ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
🇺🇸 TPI-Abuse	2025-12-03 03:19:06 (6 months ago)	(mod_security) mod_security (id:210740) triggered by 154.213.160.22 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210740) triggered by 154.213.160.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 22:18:59.825530 2025] [security2:error] [pid 27252:tid 27252] [client 154.213.160.22:22791] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy\|\|linhsbridal.com\|F\|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "linhsbridal.com"] [uri "/modules.php"] [unique_id "aS-sI8VzpVYgYg3N3wBI4gAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 IROK	2025-11-27 13:02:32 (6 months ago)	Firewall Blocked - Unauthorized Port Scanning ...	Port Scan
🇺🇸 TPI-Abuse	2025-11-24 06:34:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.22 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:33:56.229549 2025] [security2:error] [pid 24129:tid 24129] [client 154.213.160.22:22731] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.nysasports.com"] [uri "/.svn/wc.db"] [unique_id "aSP8VJ9kxmzSqqAmZGfBeQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 09:56:59 (6 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇫🇷 applemooz	2025-11-01 12:08:39 (7 months ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇩🇪 Marc	2025-10-29 19:14:07 (7 months ago)		Brute-Force Web App Attack
🇳🇱 applemooz	2025-10-07 16:50:46 (8 months ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇳🇱 applemooz	2025-10-05 09:23:28 (8 months ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇩🇪 neckaralb-admin.de	2025-09-27 11:59:34 (8 months ago)	(wordpress) Failed login wp-login.php or xmlrpc.php	Web App Attack

Showing 1 to 15 of 73 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 91.92.241.87

🇺🇸 13.89.125.252

🇺🇸 13.58.178.173

🇰🇷 220.118.173.234

🇺🇸 195.184.76.203

🇺🇸 195.184.76.181

🇳🇱 185.242.226.87

🇩🇪 167.172.104.217

🇺🇸 129.212.184.120

🇺🇸 72.240.125.133

🇺🇸 71.19.150.18

🇧🇪 35.195.33.56

🇳🇱 204.76.203.30

🇦🇲 176.32.193.16

🇨🇦 85.217.149.59

🇸🇪 81.170.248.221

🇷🇺 78.24.219.71

🇫🇷 75.119.132.109

🇻🇳 14.229.216.145

🇧🇷 205.210.31.166