JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 195.78.54.189

195.78.54.189 was found in our database!

This IP was reported 342 times. Confidence of Abuse is 0%: ?

ISP	Internet Utilities NA LLC
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	iana.org
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 195.78.54.189

Whois 195.78.54.189

IP Abuse Reports for 195.78.54.189:

This IP address has been reported a total of 342 times from 170 distinct sources. 195.78.54.189 was first reported on January 13th 2022, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 rtbh.com.tr	2026-02-11 00:11:29 (4 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2026-02-09 20:11:28 (4 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2026-02-08 20:11:27 (4 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇬🇧 Marcello	2024-05-13 08:26:00 (2 years ago)	195.78.54.189 - - [07/May/2024:06:32:59 +0200] "GET /mah.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Win ... show more 195.78.54.189 - - [07/May/2024:06:32:59 +0200] "GET /mah.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" "-" : 3346 x : 195.78.54.189 - - [07/May/2024:06:35:38 +0200] "GET http://n1.n2.n3.n4/blog/2020/09/30/piam-expresses-profound-disappointment-at-myccs-decision/wp-content/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" show less	Brute-Force Web App Attack
🇳🇱 BlueWire Hosting	2024-05-12 20:10:01 (2 years ago)	Probing for Wordpress vulnerabilities	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-05-12 17:05:09 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 12 13:05:00.600342 2024] [security2:error] [pid 22325] [client 195.78.54.189:64115] [client 195.78.54.189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "postranecky.eu"] [uri "/wp-includes/css/wp-config.php"] [unique_id "ZkD2vALYx5dGVVw20qcNMgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 Rizzy	2024-05-12 16:07:50 (2 years ago)	Multiple WAF Violations	Brute-Force Web App Attack
Anonymous	2024-05-12 04:32:01 (2 years ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-05-12 00:15:12 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 11 20:15:07.466758 2024] [security2:error] [pid 5461] [client 195.78.54.189:56523] [client 195.78.54.189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tradingview.tlo-afghanistan.org"] [uri "/wp-includes/css/wp-config.php"] [unique_id "ZkAKC40Cl8G2797sxSJdBgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ps-center	2024-05-11 18:37:34 (2 years ago)	C1: Web Attack GET /wp-includes/IXR/admin.php	Web Spam Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-05-11 17:50:19 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 11 13:50:15.842819 2024] [security2:error] [pid 3761] [client 195.78.54.189:55206] [client 195.78.54.189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.hadleyofficecenter.com"] [uri "/wp-includes/css/wp-config.php"] [unique_id "Zj-v1wFg3QNxzw2-WQW3-gAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-05-11 14:50:26 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 11 10:50:23.845634 2024] [security2:error] [pid 17973] [client 195.78.54.189:64141] [client 195.78.54.189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "intersession.net"] [uri "/wp-includes/css/wp-config.php"] [unique_id "Zj-Fr027dawMN93VhVIAEgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-05-11 14:12:56 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 11 10:12:52.640425 2024] [security2:error] [pid 3622468] [client 195.78.54.189:64372] [client 195.78.54.189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brickyardinn.com"] [uri "/wp-includes/css/wp-config.php"] [unique_id "Zj985KceECf48pA984zp6QAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-05-11 10:06:36 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 11 06:06:29.504171 2024] [security2:error] [pid 1908] [client 195.78.54.189:59164] [client 195.78.54.189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pschitchat.com"] [uri "/wp-includes/css/wp-config.php"] [unique_id "Zj9DJWb7Qf5LPtrMBtUcPgAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-05-11 08:57:55 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 195.78.54.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 11 04:57:48.591070 2024] [security2:error] [pid 19909] [client 195.78.54.189:61740] [client 195.78.54.189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.eurobrake.com"] [uri "/wp-includes/css/wp-config.php"] [unique_id "Zj8zDJCMP-pU6mNVFXFWTgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 342 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇹 78.211.209.248

🇳🇱 45.148.10.147

🇯🇵 152.32.146.182

🇨🇳 120.48.26.113

🇮🇹 109.117.218.5

🇺🇸 20.3.129.142

🇺🇸 3.86.250.156

🇺🇸 216.73.160.12

🇧🇷 200.153.86.250

🇦🇷 190.123.111.227

🇲🇽 187.190.182.215

🇨🇦 174.112.231.37

🇳🇱 159.223.213.49

🇺🇸 154.83.197.96

🇺🇸 154.83.197.75

🇭🇰 118.26.36.248

🇫🇷 82.64.223.111

🇧🇼 41.223.73.248

🇺🇸 207.254.40.89

🇻🇪 190.120.253.140