JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.28.239.219

154.28.239.219 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 18%: ?

18%

ISP	Aventice LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46261
Domain Name	aventice.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.28.239.219

Whois 154.28.239.219

IP Abuse Reports for 154.28.239.219:

This IP address has been reported a total of 3 times from 3 distinct sources. 154.28.239.219 was first reported on May 31st 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Oakley	2026-06-23 03:15:09 (2 days ago)	(antiscrape_rule) Web application abuse detected 154.28.239.219 (US/United States/-): 5 in the last ... show more (antiscrape_rule) Web application abuse detected 154.28.239.219 (US/United States/-): 5 in the last 900 secs show less	Hacking
🇮🇩 hermawan	2026-06-01 07:50:31 (3 weeks ago)	[Mon Jun 01 14:50:28.066826 2026] [security2:error] [pid 1724673:tid 140109895681728] [client 154.28 ... show more [Mon Jun 01 14:50:28.066826 2026] [security2:error] [pid 1724673:tid 140109895681728] [client 154.28.239.219:25388] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /images/Klimatologi/Infografis/Infografis-Iklim/Info/2024/10_Master_Infografis_Infrastruktur_Rev_2-05-600.webp HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Infografis/Infografis-Iklim/Info/2024/10_Master_Infografis_Infrastruktur_Rev_2-05-600.webp"] [unique_id "ah05xGGDQ2NqmRrxuW6rEQACFwY"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1724698] [O6+qcuwlKuc] [ah05xGGDQ2NqmRrxuW6rEQACFwY] keep_alive=[1] [2026-06-01 14:50: ... show less	Email Spam Hacking
🇺🇸 TPI-Abuse	2026-05-31 11:56:54 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 154.28.239.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 154.28.239.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 07:56:49.745586 2026] [security2:error] [pid 25217:tid 25217] [client 154.28.239.219:35210] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|med-engineering.com:443\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "med-engineering.com"] [uri "/emorivir.com"] [unique_id "ahwiARPWzMxeum_W5uteoAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇾 213.217.32.10

🇩🇪 213.209.159.235

🇧🇷 118.26.105.144

🇨🇳 117.50.208.11

🇧🇬 91.191.209.98

🇺🇸 2.58.202.98

🇷🇺 217.76.43.27

🇧🇷 191.17.213.159

🇩🇪 167.71.35.241

🇺🇸 162.216.149.191

🇺🇸 157.230.215.32

🇳🇬 152.32.140.39

🇺🇸 147.185.132.144

🇫🇷 91.196.152.118

🇷🇺 81.211.72.167

🇧🇬 79.124.58.142

🇧🇬 78.128.113.46

🇱🇹 62.60.130.129

🇨🇳 60.19.54.28

🇸🇦 46.153.238.227