JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 160.179.154.3

160.179.154.3 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 100%: ?

100%

ISP	MarocTelecomASDL
Usage Type	Fixed Line ISP
ASN	AS36903
Domain Name	menara.ma
Country	🇲🇦 Morocco
City	Kenitra, Rabat-Sale-Kenitra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 160.179.154.3

Whois 160.179.154.3

IP Abuse Reports for 160.179.154.3:

This IP address has been reported a total of 43 times from 30 distinct sources. 160.179.154.3 was first reported on June 10th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-11 22:01:09 (2 hours ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-10. show less	Web App Attack SSH Hacking
🇫🇷 Baking333	2026-06-11 14:39:23 (9 hours ago)	[redacted] 160.179.154.3 - - [11/Jun/2026:15:39:19 +0100] "GET /.env HTTP/1.1" 302 1558 0/257717 "-" ... show more [redacted] 160.179.154.3 - - [11/Jun/2026:15:39:19 +0100] "GET /.env HTTP/1.1" 302 1558 0/257717 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/141 Safari/537.36" [redacted] 160.179.154.3 - - [11/Jun/2026:15:39:20 +0100] "GET /.env HTTP/1.1" 302 1533 0/111109 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/141 Safari/537.36" show less	Bad Web Bot Web App Attack
Anonymous	2026-06-11 14:17:19 (9 hours ago)	160.179.154.3 - - [11/Jun/2026:16:17:19 +0200] "GET /.env HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Window ... show more 160.179.154.3 - - [11/Jun/2026:16:17:19 +0200] "GET /.env HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/141 Safari/537.36" show less	Web App Attack
🇬🇧 Yosi	2026-06-11 14:11:55 (9 hours ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
Anonymous	2026-06-11 11:59:54 (12 hours ago)	6 hits, proto=tcp, ports=443	Port Scan Hacking
🇫🇷 Baking333	2026-06-11 10:52:19 (13 hours ago)	[redacted] 160.179.154.3 - - [11/Jun/2026:11:52:16 +0100] "GET /.env HTTP/1.1" 302 5293 0/748387 "-" ... show more [redacted] 160.179.154.3 - - [11/Jun/2026:11:52:16 +0100] "GET /.env HTTP/1.1" 302 5293 0/748387 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/141 Safari/537.36" [redacted] 160.179.154.3 - - [11/Jun/2026:11:52:17 +0100] "GET /.env HTTP/1.1" 302 5268 0/172269 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/141 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 09:06:40 (14 hours ago)	(mod_security) mod_security (id:210492) triggered by 160.179.154.3 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 160.179.154.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 05:06:33.376910 2026] [security2:error] [pid 4540:tid 4540] [client 160.179.154.3:39019] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "10bestattorneys.com"] [uri "/.env"] [unique_id "aip6mYWbEfjCrVGEZk784wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 08:47:09 (15 hours ago)	(mod_security) mod_security (id:210492) triggered by 160.179.154.3 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 160.179.154.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 04:47:04.891129 2026] [security2:error] [pid 24666:tid 24666] [client 160.179.154.3:19951] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "champschallenge.org"] [uri "/.env"] [unique_id "aip2CEDlPXo1inAPlmbiHwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-06-11 08:33:03 (15 hours ago)	Accessed trap at '/.env'	Web App Attack
🇫🇮 as211431.net	2026-06-11 07:31:25 (16 hours ago)	Triggered Cloudflare WAF (firewallCustom) from MA. Action taken: BLOCK Protocol: HTTP/1.1 (HEAD meth ... show more Triggered Cloudflare WAF (firewallCustom) from MA. Action taken: BLOCK Protocol: HTTP/1.1 (HEAD method) Endpoint: / UA: python-requests/2.32.5 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-11 06:19:39 (17 hours ago)	(mod_security) mod_security (id:210492) triggered by 160.179.154.3 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 160.179.154.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 02:19:35.051938 2026] [security2:error] [pid 27450:tid 27450] [client 160.179.154.3:17659] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "watonga.com"] [uri "/.env"] [unique_id "aipTd3e5fEwIHPDc2jOBrAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇽 octageeks.com	2026-06-11 04:19:35 (19 hours ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 03:58:30 (20 hours ago)	(mod_security) mod_security (id:210492) triggered by 160.179.154.3 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 160.179.154.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 23:58:26.319891 2026] [security2:error] [pid 1108:tid 1108] [client 160.179.154.3:16142] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jadeiteglobalholdings.com"] [uri "/.env"] [unique_id "aioyYp6b471UZmLjS62PrQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 00:22:18 (23 hours ago)	(mod_security) mod_security (id:210492) triggered by 160.179.154.3 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 160.179.154.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 20:22:10.817246 2026] [security2:error] [pid 19205:tid 19205] [client 160.179.154.3:6351] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "univey.com"] [uri "/.env"] [unique_id "ain_srlcZGLeTYivWqwqYQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 00:04:33 (23 hours ago)	(mod_security) mod_security (id:210492) triggered by 160.179.154.3 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 160.179.154.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 20:04:29.931634 2026] [security2:error] [pid 26637:tid 26637] [client 160.179.154.3:28714] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.tnthandy.com.inetbrain.com"] [uri "/.env"] [unique_id "ain7jW_j6dn04fOwZldg5gAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇸 196.196.150.5

🇺🇸 185.180.141.34

🇬🇧 35.203.211.246

🇬🇧 35.203.211.112

🇧🇷 187.78.164.231

🇮🇩 163.7.9.84

🇭🇰 161.81.121.239

🇵🇰 103.26.83.156

🇹🇷 91.151.88.168

🇬🇧 35.203.211.164

🇭🇰 199.45.154.138

🇬🇧 188.240.59.13

🇳🇱 185.223.235.10

🇺🇸 62.132.18.53

🇸🇦 2a02:cb81:1100:376b:2d09:8978:adcf:b5c6

🇸🇦 2001:16a2:f383:5f00:6497:37eb:b757:8790

🇫🇷 91.231.89.79

🇨🇦 40.85.247.124

🇸🇦 2a02:cb80:4284:9771:789a:ac6d:393:3750

🇸🇦 2a02:cb80:422d:427a:5488:7d29:aa5e:db4