JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.213.202.134

154.213.202.134 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 0%: ?

ISP	Cloud Innovation Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS328608
Hostname(s)	154-213-202-134.techvpsnext.com
Domain Name	cloudinnovation.org
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.213.202.134

Whois 154.213.202.134

IP Abuse Reports for 154.213.202.134:

This IP address has been reported a total of 24 times from 11 distinct sources. 154.213.202.134 was first reported on November 9th 2024, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 hostseries	2025-09-11 06:14:07 (9 months ago)	Trigger: LF_DISTATTACK	Brute-Force
🇮🇩 Burayot	2025-09-05 18:33:19 (9 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 154.213.202.134 (FR/France/-): 1 in ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 154.213.202.134 (FR/France/-): 1 in the last 3600 secs show less	Web App Attack
Anonymous	2025-08-27 11:56:07 (9 months ago)	Ports: 2077,2078,2082,2083,2086,2087,2095,2096; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
Anonymous	2025-08-26 18:42:15 (9 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-08-23 12:47:42 (9 months ago)	Ports: 2077,2078,2082,2083,2086,2087,2095,2096; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-08-07 20:17:57 (10 months ago)	(mod_security) mod_security (id:225170) triggered by 154.213.202.134 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 154.213.202.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Aug 07 16:17:53.027430 2025] [security2:error] [pid 29765:tid 29765] [client 154.213.202.134:54455] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|jolankagroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jolankagroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aJUJ8Tux21NEjZLIbZFSTQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-08-05 16:43:32 (10 months ago)	wordpress-trap	Web App Attack
🇧🇪 cmbplf	2025-07-25 23:24:30 (10 months ago)	2.455 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2025-07-13 20:11:18 (11 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-07-12 23:24:03 (11 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-07-02 02:09:36 (11 months ago)	(mod_security) mod_security (id:225170) triggered by 154.213.202.134 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 154.213.202.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 01 22:09:28.825687 2025] [security2:error] [pid 8280:tid 8280] [client 154.213.202.134:42267] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|norinpaco.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "norinpaco.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aGSU2GUSex8-T_zVKqwNiQAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-07-01 20:19:25 (11 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇵🇱 sefinek.net	2025-06-02 20:37:16 (1 year ago)	Triggered Cloudflare WAF (firewallCustom) from FR. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from FR. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-05-22 10:02:49 (1 year ago)	(mod_security) mod_security (id:210740) triggered by 154.213.202.134 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210740) triggered by 154.213.202.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 22 06:02:44.156967 2025] [security2:error] [pid 420071:tid 420071] [client 154.213.202.134:12497] [client 154.213.202.134] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy\|\|summitartists.com:80\|F\|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "summitartists.com"] [uri "/"] [unique_id "aC72RO5FKkffSJXyHCMyHQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-03-17 05:38:40 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 160.30.160.194

🇨🇳 120.48.78.121

🇷🇴 92.118.39.62

🇨🇳 39.173.18.65

🇪🇸 185.59.67.23

🇨🇳 121.40.152.135

🇨🇳 113.77.102.57

🇨🇳 223.65.172.18

🇮🇩 182.253.89.115

🇺🇸 150.107.38.252

🇰🇬 92.62.74.41

🇵🇱 77.83.246.97

🇺🇸 65.49.1.69

🇨🇳 58.242.190.39

🇨🇭 209.99.190.113

🇺🇸 192.178.113.23

🇲🇴 182.93.50.90

🇻🇳 160.30.160.189

🇧🇷 45.160.84.97

🇰🇷 218.149.228.159