JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.47.16.54

154.47.16.54 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 46%: ?

46%

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-154-47-16-54.datapacket.com
Domain Name	datacamp.co.uk
Country	🇨🇴 Colombia
City	Bogota, Bogota D.C.

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.47.16.54

Whois 154.47.16.54

IP Abuse Reports for 154.47.16.54:

This IP address has been reported a total of 16 times from 14 distinct sources. 154.47.16.54 was first reported on August 6th 2024, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 lns.bz	2026-06-30 12:24:44 (2 hours ago)	Too many 404 requests [DOOZ]	Web App Attack
🇫🇮 oh.mg	2026-06-30 07:02:02 (7 hours ago)	[Tue Jun 30 09:02:01.746225 2026] [security2:error] [pid 1775682:tid 1775706] [client 154.47.16.54:5 ... show more [Tue Jun 30 09:02:01.746225 2026] [security2:error] [pid 1775682:tid 1775706] [client 154.47.16.54:53224] [client 154.47.16.54] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "95.216.72.247"] [uri "/.env.dev"] [unique_id "akNp6YFX6DYqj_0-R6gHrgAAANY"] [Tue Jun 30 09:02:02.312365 2026] [security2:error] [pid 1775682:tid 1775705] [client 154.47.16.54:53234] [client 154.47.16.54] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [ver "OWASP_CRS/4.10.0-dev"] [tag " ... show less	Web App Attack Bad Web Bot
🇩🇪 Bedios GmbH	2026-06-30 02:59:28 (11 hours ago)	Login credentials theft attempt	Hacking
🇺🇸 TPI-Abuse	2026-06-30 00:14:13 (14 hours ago)	(mod_security) mod_security (id:210492) triggered by 154.47.16.54 (unn-154-47-16-54.datapacket.com): ... show more (mod_security) mod_security (id:210492) triggered by 154.47.16.54 (unn-154-47-16-54.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 20:14:07.219819 2026] [security2:error] [pid 6749:tid 6749] [client 154.47.16.54:48206] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.219"] [uri "/.env.old"] [unique_id "akMKT5bIJDNjzMjLGWHzYAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 RogueAutomata	2026-06-29 23:23:51 (15 hours ago)	Detected malicious request: GET / Detections triggered: Access via IP addr (v4)	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-09 04:49:35 (3 weeks ago)	154.47.16.54 - - [09/Jun/2026:07:49:34 +0300] "GET /vpn/user/download/client?ostype=../../../../../. ... show more 154.47.16.54 - - [09/Jun/2026:07:49:34 +0300] "GET /vpn/user/download/client?ostype=../../../../../../../../../etc/passwd HTTP/1.1" 404 726 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-09 02:53:58 (3 weeks ago)	154.47.16.54 - - [09/Jun/2026:05:53:55 +0300] "GET /vpn/user/download/client?ostype=../../../../../. ... show more 154.47.16.54 - - [09/Jun/2026:05:53:55 +0300] "GET /vpn/user/download/client?ostype=../../../../../../../../../etc/passwd HTTP/1.1" 404 725 "-" "Mozilla/5.0 (Macintosh; arm64 Mac OS X 12_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.1 Safari/605.1.15" 154.47.16.54 - - [09/Jun/2026:05:53:56 +0300] "GET /export/classroom-course-statistics?fileNames[]=../../../../../../../etc/passwd HTTP/1.1" 404 725 "-" "Mozilla/5.0 (X11; Linux i686; rv:1.9.6.20) Gecko/ Firefox/3.8" ... show less	Web App Attack
🇬🇧 PeravixGroup	2026-06-07 23:10:21 (3 weeks ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 consul.to	2026-05-24 19:54:06 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 xmission.com	2026-01-18 02:27:23 (5 months ago)	Blocked by UFW (TCP on 51413) Source port: 62207 TTL: 115 Packet length: 52 TOS: 0x00 This report ( ... show more Blocked by UFW (TCP on 51413) Source port: 62207 TTL: 115 Packet length: 52 TOS: 0x00 This report (for 154.47.16.54) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇾 Rizzy	2025-12-10 23:56:08 (6 months ago)	Multiple failed cPanel logins	Web App Attack
🇺🇸 MPL	2025-11-19 13:24:22 (7 months ago)	tcp/80 (3 or more attempts)	Port Scan
🇺🇸 MPL	2025-11-19 13:24:22 (7 months ago)	tcp/80	Port Scan
🇯🇵 mkaraki	2025-05-31 12:15:21 (1 year ago)	1748693719 # Service_probe # SIGNATURE_SEND # source_ip:154.47.16.54 # dst_port:3306 ...	Port Scan
Anonymous	2025-01-22 16:09:20 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 185.247.137.25

🇧🇷 45.229.91.34

🇵🇰 223.123.124.124

🇨🇳 221.182.110.8

🇵🇱 166.88.60.164

🇩🇿 105.107.212.7

🇻🇳 103.153.75.186

🇩🇪 80.187.97.126

🇸🇪 51.20.252.164

🇹🇭 49.231.182.3

🇳🇱 45.198.224.115

🇬🇧 35.203.210.208

🇩🇪 2a09:bac5:2a95:2464::3a0:28

🇧🇷 200.141.47.190

🇨🇴 200.118.81.70

🇨🇳 180.107.108.41

🇺🇸 162.216.149.11

🇭🇰 154.23.185.75

🇺🇸 104.248.234.155

🇳🇱 104.248.80.12