JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.213.160.25

154.213.160.25 was found in our database!

This IP was reported 63 times. Confidence of Abuse is 0%: ?

ISP	Cloud Innovation Ltd
Usage Type	Unknown
ASN	Unknown
Domain Name	cloudinnovation.org
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.213.160.25

Whois 154.213.160.25

IP Abuse Reports for 154.213.160.25:

This IP address has been reported a total of 63 times from 14 distinct sources. 154.213.160.25 was first reported on April 7th 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:00:57 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-12-28 20:12:32 (5 months ago)	"GET /.aws/credentials HTTP/1.1"	Hacking Web App Attack
🇦🇺 MAGIC	2025-12-09 00:05:07 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-25 04:25:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:25:15.038011 2025] [security2:error] [pid 8118:tid 8118] [client 154.213.160.25:42057] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.informativearticles.com"] [uri "/.svn/wc.db"] [unique_id "aSUvqy4MwpCsUZR7_ECl_gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:00:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:00:30.179522 2025] [security2:error] [pid 32146:tid 32146] [client 154.213.160.25:36527] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.fynyx.com"] [uri "/.git/HEAD"] [unique_id "aSUp3ogdUeRwNvxipaBLnAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:09:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:09:36.959075 2025] [security2:error] [pid 14661:tid 14661] [client 154.213.160.25:52801] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.verventdft.com"] [uri "/.svn/wc.db"] [unique_id "aSUP4CeEr9-un0HxTpLRGgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:20:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:20:24.196521 2025] [security2:error] [pid 2680:tid 2680] [client 154.213.160.25:12683] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.organizeit.biz"] [uri "/.svn/wc.db"] [unique_id "aSUEWO95gKzbyuerl3rrHgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:36:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:23:02.504669 2025] [security2:error] [pid 1304:tid 1304] [client 154.213.160.25:26451] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "retiredexecutivetravel.banis-associates.com"] [uri "/.git/HEAD"] [unique_id "aST25uPJeLRPAf0Ia73TvAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:55:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:55:24.021429 2025] [security2:error] [pid 12560:tid 12560] [client 154.213.160.25:17739] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.untraceable.org"] [uri "/.svn/wc.db"] [unique_id "aSQdfPP7zmBKsL1r02zwAQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:48:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:47:47.077483 2025] [security2:error] [pid 29626:tid 29626] [client 154.213.160.25:13171] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.sykesclan.com"] [uri "/.svn/wc.db"] [unique_id "aSP_k0TPo6dqW4lcR7weowAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:57:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:57:17.971788 2025] [security2:error] [pid 30010:tid 30010] [client 154.213.160.25:10443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.jboomergrenier.com"] [uri "/.git/HEAD"] [unique_id "aSPlrfCeZtYPvLTdgxnTewAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:22:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:22:48.659138 2025] [security2:error] [pid 24947:tid 24971] [client 154.213.160.25:11821] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.joshuapaulweckesser.com"] [uri "/.env"] [unique_id "aSPPiLNDwY-6OT-DeElxjQAAAEw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-17 01:24:45 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 16 20:24:38.299591 2025] [security2:error] [pid 1108:tid 1108] [client 154.213.160.25:23225] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.compupackinc.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.compupackinc.com"] [uri "/s3cmd.ini"] [unique_id "aRp5VhPwWLW0RpTAn4ELYAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-14 04:10:48 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.160.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 23:10:41.156977 2025] [security2:error] [pid 31816:tid 31816] [client 154.213.160.25:58279] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fromthecellarnyc.com"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aRarwbDB3_rVZyKlhF5-qAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-13 18:37:40 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/13 12:33:17	Port Scan Brute-Force Exploited Host Web App Attack

Showing 1 to 15 of 63 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 100.24.167.60

🇧🇬 5.188.206.30

🇧🇷 189.80.44.147

🇫🇷 85.217.140.24

🇺🇸 66.175.212.77

🇳🇱 45.153.34.71

🇮🇳 223.237.148.106

🇩🇪 213.209.159.11

🇰🇷 211.247.127.250

🇺🇸 193.37.33.129

🇧🇷 181.192.121.92

🇺🇸 162.216.149.139

🇮🇹 151.115.166.76

🇭🇰 118.26.153.102

🇮🇩 103.172.20.218

🇺🇸 66.132.195.145

🇺🇸 64.225.53.191

🇳🇱 45.198.224.5

🇨🇳 27.215.45.85

🇨🇳 144.123.76.151