JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.94.13.54

154.94.13.54 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 0%: ?

ISP	Xiapu County Yangyao Clothing Business Department
Usage Type	Data Center/Web Hosting/Transit
ASN	AS20326
Domain Name	cloudinnovation.org
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.94.13.54

Whois 154.94.13.54

IP Abuse Reports for 154.94.13.54:

This IP address has been reported a total of 13 times from 11 distinct sources. 154.94.13.54 was first reported on November 5th 2024, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 1gz	2025-08-28 22:39:21 (9 months ago)	Triggered Cloudflare WAF (l7ddos) from DE. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoin ... show more Triggered Cloudflare WAF (l7ddos) from DE. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /auth/login UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	DDoS Attack Bad Web Bot
🇳🇱 exxos	2025-08-25 18:03:01 (9 months ago)	Attacks with Bad user agents	Hacking
🇩🇪 Carsten	2025-08-17 11:31:35 (10 months ago)	GET [index.php?artnr=42&inhalt=news&inhalt=%27]	Port Scan
🇺🇸 TPI-Abuse	2025-08-14 09:32:13 (10 months ago)	(mod_security) mod_security (id:225170) triggered by 154.94.13.54 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 154.94.13.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Aug 14 05:32:06.240312 2025] [security2:error] [pid 19939:tid 19939] [client 154.94.13.54:58811] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|manaplas.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "manaplas.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aJ2tFkrDk7I6VvlnQShpvwAAAA0"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-30 04:55:06 (10 months ago)	(mod_security) mod_security (id:225170) triggered by 154.94.13.54 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 154.94.13.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 30 00:54:57.659107 2025] [security2:error] [pid 20625:tid 20625] [client 154.94.13.54:24119] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|amoriotech.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "amoriotech.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aImloUIxYjdwaFvuhLiv8gAAABI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2025-06-15 05:05:35 (1 year ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇭 backslash	2025-05-20 09:20:07 (1 year ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇬🇧 Steve	2025-02-11 19:47:01 (1 year ago)	Excessive crawling - not obeying robots.txt	Bad Web Bot
🇫🇷 Guardian	2025-01-16 00:49:44 (1 year ago)	Unauthorized connection attempt / Port scanning (x3) 154.94.13.54 [16/Jan/2025:00:49:40] "GET /wp-js ... show more Unauthorized connection attempt / Port scanning (x3) 154.94.13.54 [16/Jan/2025:00:49:40] "GET /wp-json/wp/v2/users HTTP/1.1" 154.94.13.54 [16/Jan/2025:00:49:41] "GET /?author=1 HTTP/1.1" 154.94.13.54 [16/Jan/2025:00:49:42] "GET /wp-json/wp/v2/users HTTP/1.1" 154.94.13.54 [16/Jan/2025:00:49:43] "GET /?author=1 HTTP/1.1" 154.94.13.54 [16/Jan/2025:00:49:44] "POST /xmlrpc.php HTTP/1.1" show less	Port Scan Web App Attack
Anonymous	2025-01-09 14:30:18 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-01-07 01:37:52 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-12-30 06:42:18 (1 year ago)	Attempted brute force login to web vpn 9 time(s); last attempt for 2024.12.30 is noted in report tim ... show more Attempted brute force login to web vpn 9 time(s); last attempt for 2024.12.30 is noted in report timestamp show less	Hacking Brute-Force
🇩🇪 nyuuzyou	2024-11-05 10:34:51 (1 year ago)	Intensive scraping: /web?s=spiderman%20quiz&country=kg-kg&scraper=brave. User-Agent: Mozilla/5.0 (X1 ... show more Intensive scraping: /web?s=spiderman%20quiz&country=kg-kg&scraper=brave. User-Agent: Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68. show less	Bad Web Bot

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 38.14.235.254

🇨🇳 223.199.168.81

🇬🇧 77.83.24.124

🇳🇱 45.148.10.157

🇧🇷 129.121.54.208

🇧🇬 79.124.56.210

🇳🇱 45.148.10.152

🇺🇸 8.229.79.192

🇩🇪 194.99.110.239

🇪🇸 149.86.233.213

🇺🇸 43.166.215.68

🇺🇸 216.25.89.130

🇺🇸 165.154.206.222

🇹🇼 111.70.33.193

🇨🇳 60.10.50.90

🇨🇳 36.104.144.114

🇺🇸 2607:f8b0:4004:1001::12a

🇰🇷 211.180.105.241

🇨🇳 120.211.194.118

🇨🇳 120.48.76.190