JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.213.163.63

154.213.163.63 was found in our database!

This IP was reported 66 times. Confidence of Abuse is 0%: ?

ISP	Cloud Innovation Ltd
Usage Type	Unknown
ASN	Unknown
Domain Name	cloudinnovation.org
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.213.163.63

Whois 154.213.163.63

IP Abuse Reports for 154.213.163.63:

This IP address has been reported a total of 66 times from 17 distinct sources. 154.213.163.63 was first reported on April 7th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-03-01 00:15:07 (3 months ago)	"GET /.aws/credentials HTTP/1.1"	Hacking Web App Attack
Anonymous	2025-12-23 19:25:41 (5 months ago)	wordpress-trap	Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 10:14:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 05:14:33.935255 2025] [security2:error] [pid 16368:tid 16368] [client 154.213.163.63:59981] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "centerofhopefl.com"] [uri "/.env"] [unique_id "aTf2ie-Bcs2ONAlZkG7D5gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 07:14:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 02:14:28.555487 2025] [security2:error] [pid 31286:tid 31286] [client 154.213.163.63:10387] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gildemello.com"] [uri "/.svn/wc.db"] [unique_id "aTZ61OkxiuUJ5FZFvRW92AAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-08 01:25:20 (6 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇳🇱 homeshowdomain.nl	2025-12-06 23:03:10 (6 months ago)	Auto-ban: >3000 req/min op 2025-12-06	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-06 16:23:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 11:23:27.685656 2025] [security2:error] [pid 30104:tid 30104] [client 154.213.163.63:9373] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pbhomesinc.net"] [uri "/.git/HEAD"] [unique_id "aTRYf6EGXfBIrOvEkWj5cwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 02:41:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 21:41:18.715620 2025] [security2:error] [pid 18819:tid 18819] [client 154.213.163.63:28243] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "prostar.industries"] [uri "/.env"] [unique_id "aTOXzh_9Eo-MX5UeRNxzTQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 08:18:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 03:18:16.707004 2025] [security2:error] [pid 23404:tid 23404] [client 154.213.163.63:54491] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "curtbeams.com"] [uri "/.env"] [unique_id "aTKVSBAO72MOYqnij1lWjAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:52:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:52:34.204000 2025] [security2:error] [pid 3538474:tid 3538633] [client 154.213.163.63:9285] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.media928.com"] [uri "/.svn/wc.db"] [unique_id "aSaVol3wcnJA0sU4fUskqAAAAkk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:57:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:57:00.924840 2025] [security2:error] [pid 5118:tid 5118] [client 154.213.163.63:26605] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.mycouchwriting.com"] [uri "/.git/HEAD"] [unique_id "aSZsfDD2CTlFK5piQMGDOwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:28:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:28:31.929563 2025] [security2:error] [pid 18318:tid 18318] [client 154.213.163.63:48991] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.queenscountyparade.org"] [uri "/.env"] [unique_id "aSUUT7eolpQXQTYYjlW6NQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:54:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:54:37.691056 2025] [security2:error] [pid 25479:tid 25479] [client 154.213.163.63:60567] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.torahorah.com"] [uri "/.env"] [unique_id "aSQrXZC-VWDw-_rMbwKYUgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:15:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 154.213.163.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:15:49.295182 2025] [security2:error] [pid 20653:tid 20653] [client 154.213.163.63:59131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.qcyprus.com"] [uri "/.env"] [unique_id "aSQUNUW9DP4yztw-RdZpbQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-21 18:49:29 (6 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/21 12:45:20	Port Scan Brute-Force Exploited Host Web App Attack

Showing 1 to 15 of 66 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.224.37.162

🇨🇳 125.124.183.254

🇮🇳 34.93.128.179

🇺🇸 31.59.40.94

🇸🇪 16.171.140.117

🇩🇪 167.94.145.17

🇺🇸 147.185.132.237

🇺🇸 146.235.214.154

🇷🇺 94.243.9.140

🇨🇳 47.98.157.200

🇹🇷 45.155.159.61

🇸🇪 13.60.172.24

🇧🇪 198.235.24.240

🇺🇸 198.62.0.246

🇺🇸 172.253.244.150

🇩🇪 167.94.145.26

🇰🇷 61.76.112.4

🇸🇬 47.241.108.227

🇱🇹 45.227.254.170

🇧🇷 2804:868:d040:923f:7933:8492:79:75f2