JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.94.14.215

154.94.14.215 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 0%: ?

ISP	Cloud Innovation Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS20326
Domain Name	cloudinnovation.org
Country	🇪🇸 Spain
City	Madrid, Madrid

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.94.14.215

Whois 154.94.14.215

IP Abuse Reports for 154.94.14.215:

This IP address has been reported a total of 24 times from 12 distinct sources. 154.94.14.215 was first reported on October 5th 2024, and the most recent report was 11 months ago.

Old Reports: The most recent abuse report for this IP address is from 11 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2025-06-26 20:42:51 (11 months ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇬🇧 Bytemark	2025-06-05 17:05:48 (1 year ago)	154.94.14.215 - - [05/Jun/2025:18:05:45 +0100] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.goog ... show more 154.94.14.215 - - [05/Jun/2025:18:05:45 +0100] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 154.94.14.215 - - [05/Jun/2025:18:05:46 +0100] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 154.94.14.215 - - [05/Jun/2025:18:05:48 +0100] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Brute-Force Web App Attack
🇫🇷 Psycho Solutions LLC	2025-06-02 05:31:07 (1 year ago)	Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N ... show more Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N/A - Timestamp: 6/2/2025 5:31 am (UTC-6) show less	Web Spam Hacking Bad Web Bot Web App Attack
🇩🇪 F242	2025-04-21 14:04:31 (1 year ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇨🇭 backslash	2025-04-16 19:05:03 (1 year ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-04-10 19:39:59 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 154.94.14.215 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 154.94.14.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 10 15:39:52.567487 2025] [security2:error] [pid 10315:tid 10315] [client 154.94.14.215:54537] [client 154.94.14.215] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ssion.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ssion.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z_geiJCMBC3EzfZrz9G6aAAAABE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-03-31 15:04:27 (1 year ago)	(mod_security) mod_security (id:210831) triggered by 154.94.14.215 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 154.94.14.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 31 11:04:18.833903 2025] [security2:error] [pid 4087147:tid 4087147] [client 154.94.14.215:35715] [client 154.94.14.215] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|backstore.com\|F\|4"] [data "a href="] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "backstore.com"] [uri "/webalizer/usage_202503.html"] [unique_id "Z-qu8hIfBo7Pclhmc4K92wAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-03-29 02:06:50 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-03-25 20:25:09 (1 year ago)	(mod_security) mod_security (id:210740) triggered by 154.94.14.215 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210740) triggered by 154.94.14.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 25 16:25:04.941937 2025] [security2:error] [pid 3531863:tid 3531863] [client 154.94.14.215:57643] [client 154.94.14.215] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy\|\|www.vangentholding.com\|F\|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.vangentholding.com"] [uri "/"] [unique_id "Z-MRIAamT2wbjFEzztjurQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 nyuuzyou	2025-03-14 18:37:02 (1 year ago)	Intensive scraping: /web?s=%22External%20Profiles%22%20%22Last%20online%22%20%22About%20Me%22&lang=c ... show more Intensive scraping: /web?s=%22External%20Profiles%22%20%22Last%20online%22%20%22About%20Me%22&lang=ceb&scraper=google_cse show less	Bad Web Bot
🇺🇸 Anonymous	2025-02-28 16:00:00 (1 year ago)	Brute force attack detected from 154.94.14.215	DDoS Attack Brute-Force Web App Attack
🇺🇸 Anonymous	2025-02-28 16:00:00 (1 year ago)	Brute force attack detected from 154.94.14.215	DDoS Attack Brute-Force Web App Attack
🇻🇳 trung.fun	2025-02-13 09:21:19 (1 year ago)	DDoS, Hack, Brute Force, Web Attack ...	DDoS Attack Web Spam Hacking Brute-Force Web App Attack
🇩🇪 nyuuzyou	2025-02-11 22:13:26 (1 year ago)	Intensive scraping: /web?s=%22Only%20you%20are%20responsible%20for%20the%20contents%20and%20your%20s ... show more Intensive scraping: /web?s=%22Only%20you%20are%20responsible%20for%20the%20contents%20and%20your%20site%20sent%20through%20this%20form.%22&lang=rm&scraper=mojeek show less	Bad Web Bot
🇩🇪 nyuuzyou	2025-02-11 22:09:25 (1 year ago)	Intensive scraping: /web?s=%22Powered%20by%20OrdaSoft%21%22%20%22Add%20Review%22&country=pl&scraper= ... show more Intensive scraping: /web?s=%22Powered%20by%20OrdaSoft%21%22%20%22Add%20Review%22&country=pl&scraper=yep show less	Bad Web Bot

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 130.131.220.95

🇨🇳 124.117.193.254

🇨🇳 101.200.243.197

🇫🇷 62.84.187.46

🇫🇷 51.44.250.177

🇧🇷 14.102.230.4

🇪🇸 217.160.226.51

🇩🇪 213.209.159.242

🇯🇵 212.32.76.17

🇺🇸 162.216.150.42

🇹🇷 95.70.171.72

🇪🇬 41.32.217.26

🇻🇳 27.79.44.4

🇨🇦 20.220.148.74

🇰🇷 222.116.34.23

🇩🇪 167.94.146.44

🇺🇸 71.6.199.23

🇱🇹 45.227.254.170

🇹🇼 35.234.3.67

🇺🇸 132.196.92.64