AbuseIPDB » 167.253.19.54
167.253.19.54
This IP was reported 9 times. Confidence of
Abuse
is 19% : ?
ISP
VPNVault LLC
Usage Type
Data Center/Web Hosting/Transit
ASN
AS26548
Hostname(s)
167-253-19-54.cloudairone.com
Domain Name
vpnvau.lt
Country
๐บ๐ธ
United States of America
City
Seattle, Washington
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 167.253.19.54 :
This IP address has been reported a total of
9
times from
8 distinct
sources.
167.253.19.54 was first reported on
October 29th 2025 , and the most recent report was
14 hours ago
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
omc
2026-06-07 20:04:49
(14 hours ago)
AH01797: Unauthorized file
Bad Web Bot
๐ช๐ธ
el-brujo
2026-05-26 00:42:41
(1 week ago)
[Tue May 26 02:42:38.857324 2026] [proxy_fcgi:error] [pid 470709:tid 470751] [remote 167.253.19.54:0 ...
show more
[Tue May 26 02:42:38.857324 2026] [proxy_fcgi:error] [pid 470709:tid 470751] [remote 167.253.19.54:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com
[Tue May 26 02:42:41.244252 2026] [proxy_fcgi:error] [pid 464023:tid 464101] [remote 167.253.19.54:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com
...
show less
Hacking
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-05-12 09:52:20
(3 weeks ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-05-06 14:20:38
(1 month ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
kranem
2026-02-13 09:00:44
(3 months ago)
Triggered Cloudflare WAF from US.
Action taken: BLOCK
ASN: 26548 (PUREVOLTAGE-INC - PureVoltage Host ...
show more
Triggered Cloudflare WAF from US.
Action taken: BLOCK
ASN: 26548 (PUREVOLTAGE-INC - PureVoltage Hosting Inc.)
Protocol: HTTP/1.1 (GET method)
Endpoint: /
Timestamp: 2026-02-13T08:45:15Z
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:93.0) Gecko/20100101 Firefox/93.0
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-12-22 16:53:22
(5 months ago)
(mod_security) mod_security (id:210350) triggered by 167.253.19.54 (167-253-19-54.cloudairone.com): ...
show more
(mod_security) mod_security (id:210350) triggered by 167.253.19.54 (167-253-19-54.cloudairone.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 22 11:53:17.207036 2025] [security2:error] [pid 6192:tid 6207] [client 167.253.19.54:24983] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.managementlaw.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.managementlaw.com"] [uri "/wp-login.php"] [unique_id "aUl3fVqiiJ_rX8fYFbUV_wAAAQs"], referer: http://www.managementlaw.com/uncategorized/hello-world/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฑ๐ป
garmtech.com
2025-11-25 11:00:30
(6 months ago)
IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 13-00.167.253.19.54.web-spamme ...
show more
IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 13-00.167.253.19.54.web-spammers.v2.rbl.imunify.com._v4 succeeded.
show less
Web App Attack
๐จ๐ญ
backslash
2025-11-19 13:55:26
(6 months ago)
block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE
Bad Web Bot
๐ฉ๐ช
stinpriza
2025-10-29 19:45:34
(7 months ago)
Web App Attack
Web App Attack
Showing 1 to
9
of 9 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: