JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 195.78.54.155

195.78.54.155 was found in our database!

This IP was reported 128 times. Confidence of Abuse is 0%: ?

ISP	Internet Utilities NA LLC
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	iana.org
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 195.78.54.155

Whois 195.78.54.155

IP Abuse Reports for 195.78.54.155:

This IP address has been reported a total of 128 times from 53 distinct sources. 195.78.54.155 was first reported on December 27th 2021, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2025-07-30 11:53:51 (10 months ago)	Blocked by UFW (TCP on 1) Source port: 22922 TTL: 114 Packet length: 52 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 1) Source port: 22922 TTL: 114 Packet length: 52 TOS: 0x08 This report (for 195.78.54.155) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇷 diego	2025-02-01 00:36:21 (1 year ago)	Events: TCP SYN Discovery or Flooding, Seen 3 times in the last 10800 seconds	DDoS Attack
🇧🇷 diego	2025-01-12 16:00:56 (1 year ago)	Events: TCP SYN Discovery or Flooding, Seen 7 times in the last 10800 seconds	DDoS Attack
🇹🇷 rtbh.com.tr	2024-12-16 20:52:40 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇳🇱 CryptoYakari	2024-12-16 00:12:05 (1 year ago)	195.78.54.155 - - [16/Dec/2024:03:12:03 +0300] "GET //wp-includes/ID3/license.txt HTTP/1.0" 404 3252 ... show more 195.78.54.155 - - [16/Dec/2024:03:12:03 +0300] "GET //wp-includes/ID3/license.txt HTTP/1.0" 404 3252 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 195.78.54.155 - - [16/Dec/2024:03:12:03 +0300] "GET //feed/ HTTP/1.0" 404 3252 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 195.78.54.155 - - [16/Dec/2024:03:12:03 +0300] "GET //xmlrpc.php?rsd HTTP/1.0" 404 200 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 195.78.54.155 - - [16/Dec/2024:03:12:03 +0300] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.0" 404 3252 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 195.78.54.155 - - [16/Dec/2024:03:12:03 +0300] "GET //web/wp-includes/wlwmanifest.xml HTTP/1.0" 404 3252 "-" "Mozilla/5.0 (Windows NT 10.0; Win ... show less	Web Spam Blog Spam Bad Web Bot Web App Attack
🇳🇱 Savvii	2024-12-15 15:25:27 (1 year ago)	10 attempts against mh-misc-ban on ether	Web App Attack
🇩🇪 ps-center	2024-12-15 14:49:53 (1 year ago)	DIS: Web Attack GET //blog/wp-includes/wlwmanifest.xml	Web Spam Hacking Bad Web Bot Web App Attack
🇨🇦 KIsmay	2024-12-15 13:39:31 (1 year ago)	Dec 15 08:39:28 www4 WPAudit[1058156]: 195.78.54.155 www.trilloperelloyates.com "Mozilla/5.0 (Window ... show more Dec 15 08:39:28 www4 WPAudit[1058156]: 195.78.54.155 www.trilloperelloyates.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" trillo:A�ERTY FAIL Dec 15 08:39:29 www4 WPAudit[1058156]: 195.78.54.155 www.trilloperelloyates.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" trillo:a�erty FAIL Dec 15 08:39:30 www4 WPAudit[1058156]: 195.78.54.155 www.trilloperelloyates.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" trillo:UGJRMV FAIL Dec 15 08:39:30 www4 WPAudit[1058156]: 195.78.54.155 www.trilloperelloyates.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" trillo:ugjrmv FAIL Dec 15 08:39:31 www4 WPAudit[1058156]: 195.78.54.155 www.trilloperelloyates.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebK ... show less	Brute-Force Web App Attack
🇨🇦 Dolphi	2024-12-15 13:20:03 (1 year ago)	Excessive POST //wp-login.php requests	Brute-Force Web App Attack
🇺🇦 URAN Publishing Service	2024-12-15 11:05:51 (1 year ago)	195.78.54.155 - - [15/Dec/2024:13:05:51 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 196 " ... show more 195.78.54.155 - - [15/Dec/2024:13:05:51 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" ... show less	Web App Attack
🇺🇸 Hazael	2024-12-15 09:21:01 (1 year ago)	SNOOPING - intended to probe for or exploit website vulnerabilities. From: Amsterdam, The Netherland ... show more SNOOPING - intended to probe for or exploit website vulnerabilities. From: Amsterdam, The Netherlands - Cogent Communications (AS174 Cogent Communications) - Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36 show less	Web App Attack
🇺🇸 TPI-Abuse	2024-12-15 07:49:50 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 195.78.54.155 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 195.78.54.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 15 02:49:44.920583 2024] [security2:error] [pid 27236:tid 27236] [client 195.78.54.155:22844] [client 195.78.54.155] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.californiacbcdelegation.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.californiacbcdelegation.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z16KGGESEOregy6QxGjXXwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Vegascosmetics	2024-12-15 07:01:44 (1 year ago)	Kingcopy(AI-IDS):IP does Excessive BAD Request Abuse	Bad Web Bot
🇺🇸 TPI-Abuse	2024-12-15 05:15:24 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 195.78.54.155 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 195.78.54.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 15 00:15:18.393955 2024] [security2:error] [pid 22515:tid 22515] [client 195.78.54.155:32572] [client 195.78.54.155] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|semisysteme.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "semisysteme.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z15l5iGtWSPdV2vZ6wt0kQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-12-15 02:51:34 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 195.78.54.155 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 195.78.54.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 14 21:51:28.743704 2024] [security2:error] [pid 5430:tid 5430] [client 195.78.54.155:54021] [client 195.78.54.155] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.prayers4america.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.prayers4america.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z15EMM_Dji-Fxj9ti6TEbgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 128 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 199.48.128.86

🇬🇧 194.50.235.157

🇨🇳 183.66.149.42

🇬🇧 101.36.97.172

🇭🇰 43.242.203.160

🇩🇪 8.211.9.207

🇷🇴 2.57.122.98

🇱🇹 194.165.16.11

🇳🇱 167.99.215.46

🇺🇸 162.216.150.45

🇮🇩 103.172.204.219

🇷🇴 80.94.92.166

🇺🇸 205.210.31.78

🇹🇳 197.5.145.114

🇧🇷 170.238.191.165

🇩🇪 138.124.73.150

🇮🇳 135.235.138.43

🇹🇭 125.26.165.160

🇹🇭 122.154.74.205

🇳🇱 45.198.224.240