JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.29.65.92

154.29.65.92 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 0%: ?

ISP	Tier.Net Technologies LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS397423
Domain Name	tier.net
Country	🇺🇸 United States of America
City	Bend, Oregon

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.29.65.92

Whois 154.29.65.92

IP Abuse Reports for 154.29.65.92:

This IP address has been reported a total of 3 times from 2 distinct sources. 154.29.65.92 was first reported on August 22nd 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2024-09-04 05:23:43 (1 year ago)	(mod_security) mod_security (id:211190) triggered by 154.29.65.92 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:211190) triggered by 154.29.65.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 04 01:23:38.622223 2024] [security2:error] [pid 12783:tid 12783] [client 154.29.65.92:54569] [client 154.29.65.92] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|mail.stdavids-media.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /filemanager/ajax_calls.php?action=get_file&sub_action=preview&preview_mode=text&title=source&file=../../../../../../../../../../etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.stdavids-media.com"] [uri "/filemanager/ajax_calls.php"] [unique_id "Ztfu2hCRhrdulA0PzuHTtAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-08-26 23:07:00 (1 year ago)	(mod_security) mod_security (id:211190) triggered by 154.29.65.92 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:211190) triggered by 154.29.65.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 26 19:03:23.193764 2024] [security2:error] [pid 532018:tid 532396] [client 154.29.65.92:40051] [client 154.29.65.92] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|staging.kettlehill.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "staging.kettlehill.com"] [uri "/wp-content/plugins/localize-my-post/ajax/include.php"] [unique_id "Zs0Juy_p85EHRlaaQPgcAwAAAFM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-08-22 08:10:05 (1 year ago)	\| Shellshock attack attempt	Hacking SQL Injection Web App Attack

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇬🇧 213.166.84.36

🇬🇧 195.206.182.196

🇸🇪 193.183.171.187

🇨🇳 180.76.143.203

🇺🇸 154.83.197.9

🇨🇴 138.84.41.20

🇬🇧 81.19.219.216

🇫🇮 80.223.186.171

🇺🇸 65.49.1.180

🇲🇲 37.111.53.110

🇻🇳 36.50.177.171

🇬🇧 31.14.254.2

🇺🇸 20.169.107.188

🇹🇼 220.134.33.198

🇮🇳 115.245.240.66

🇨🇳 106.13.122.214

🇩🇪 104.248.240.25

🇧🇩 103.122.249.49

🇳🇱 185.242.226.114