JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.94.13.93

154.94.13.93 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 0%: ?

ISP	Cloud Innovation Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS17561
Domain Name	cloudinnovation.org
Country	🇪🇸 Spain
City	Madrid, Madrid

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.94.13.93

Whois 154.94.13.93

IP Abuse Reports for 154.94.13.93:

This IP address has been reported a total of 22 times from 12 distinct sources. 154.94.13.93 was first reported on October 16th 2024, and the most recent report was 8 months ago.

Old Reports: The most recent abuse report for this IP address is from 8 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2025-09-26 10:10:14 (8 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
Anonymous	2025-09-16 00:58:24 (8 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-09-14 23:32:00 (8 months ago)	[Drupal AbuseIPDB module] Request path is blacklisted. /wp-login.php	Web App Attack
🇺🇸 TPI-Abuse	2025-08-28 00:40:32 (9 months ago)	(mod_security) mod_security (id:225170) triggered by 154.94.13.93 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 154.94.13.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 27 20:40:26.342523 2025] [security2:error] [pid 7603:tid 7603] [client 154.94.13.93:42025] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|primacomm.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "primacomm.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aK-lei632sQ66Z5SMGYjuQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-18 06:30:47 (9 months ago)	(mod_security) mod_security (id:225170) triggered by 154.94.13.93 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 154.94.13.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 18 02:30:43.814598 2025] [security2:error] [pid 3849510:tid 3849530] [client 154.94.13.93:30193] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|richardleeweatherman.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "richardleeweatherman.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aKLIk9WYcPorvHVGoYjjDwAAANE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-08-06 08:45:05 (10 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇦🇺 oncord	2025-07-31 05:58:48 (10 months ago)	Form spam	Web Spam
🇦🇺 oncord	2025-07-28 23:04:15 (10 months ago)	Form spam	Web Spam
🇦🇺 oncord	2025-07-21 18:16:27 (10 months ago)	Form spam	Web Spam
🇦🇺 oncord	2025-07-17 09:11:56 (10 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-05-13 21:26:31 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 154.94.13.93 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 154.94.13.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 13 17:26:23.753941 2025] [security2:error] [pid 3550268:tid 3550285] [client 154.94.13.93:18949] [client 154.94.13.93] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|power51.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "power51.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aCO4_3MIKj8W7XBFj0wkkgAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-08 11:12:25 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 154.94.13.93 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 154.94.13.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 08 07:12:20.767326 2025] [security2:error] [pid 88916:tid 88916] [client 154.94.13.93:52095] [client 154.94.13.93] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|edenberg.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "edenberg.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aByRlE-4lbmm2JpD9meFEwAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-05 13:35:04 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 154.94.13.93 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 154.94.13.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 05 09:35:00.335135 2025] [security2:error] [pid 1356688:tid 1356688] [client 154.94.13.93:27311] [client 154.94.13.93] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ardath.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ardath.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aBi-hIBC86c5wk1PvfWi-QAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2025-05-04 14:22:09 (1 year ago)	Accessed trap at '/xmlrpc.php'	Web App Attack
🇦🇺 MAGIC	2025-04-29 08:07:04 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.16.244.39

🇺🇸 107.152.44.215

🇮🇩 103.29.185.162

🇸🇬 47.236.181.225

🇮🇩 34.101.71.17

🇺🇸 20.64.106.116

🇷🇴 2.57.121.25

🇺🇸 2604:a880:400:d1:0:4:8c0b:a001

🇬🇧 206.189.120.96

🇲🇽 201.140.123.130

🇺🇸 192.155.90.118

🇮🇳 183.82.111.224

🇺🇸 165.154.172.223

🇺🇸 135.237.125.26

🇨🇳 101.89.141.184

🇧🇬 79.124.62.230

🇯🇵 60.40.45.223

🇺🇸 44.206.231.46

🇺🇸 40.124.175.76

🇺🇸 35.237.110.117