JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 195.78.54.194

195.78.54.194 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 0%: ?

ISP	Internet Utilities NA LLC
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	iana.org
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 195.78.54.194

Whois 195.78.54.194

IP Abuse Reports for 195.78.54.194:

This IP address has been reported a total of 40 times from 21 distinct sources. 195.78.54.194 was first reported on August 29th 2021, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇰 EVISION	2026-02-06 06:33:07 (4 months ago)	Automatic report from MS firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Reporti ... show more Automatic report from MS firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Reporting show less	Port Scan Hacking Brute-Force
🇨🇭 teamsecure	2025-06-11 08:55:25 (1 year ago)	Banned for trying to access wp-login	Web App Attack
🇩🇪 bsoft.de	2025-06-11 07:53:21 (1 year ago)	195.78.54.194 - - [11/Jun/2025:09:53:18 +0200] "GET /wp-login.php?action=register HTTP/1.0" 404 7665 ... show more 195.78.54.194 - - [11/Jun/2025:09:53:18 +0200] "GET /wp-login.php?action=register HTTP/1.0" 404 76656 "https://www.b-kits.com/wp-login.php?action=register" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0" 195.78.54.194 - - [11/Jun/2025:09:53:19 +0200] "GET /wp-login.php?action=register HTTP/1.0" 404 76610 "https://www.b-kits.com/wp-login.php?action=register" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0" 195.78.54.194 - - [11/Jun/2025:09:53:19 +0200] "GET /wp-login.php?action=register HTTP/1.0" 404 76654 "https://www.b-kits.com/wp-login.php?action=register" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0" show less	Web App Attack
🇫🇮 paissangroup	2025-06-11 07:02:05 (1 year ago)	Multiple WAF Violations	Web App Attack
Anonymous	2025-06-11 04:35:33 (1 year ago)		Web Spam Bad Web Bot
Anonymous	2025-03-09 00:20:06 (1 year ago)	BruteForce IMAP/POP3	Brute-Force
🇺🇸 TPI-Abuse	2024-12-06 04:01:34 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 195.78.54.194 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 195.78.54.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 23:01:31.173445 2024] [security2:error] [pid 29685:tid 29685] [client 195.78.54.194:59043] [client 195.78.54.194] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|longleggedblonde.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "longleggedblonde.com"] [uri "/site/default/settings.php.BAK"] [unique_id "Z1J3G4ggR4u7KmCMuQO-wAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 WeCloudit-Anti-Abuse	2024-12-06 02:00:01 (1 year ago)	SPAM - Bruteforce Attack - DDOS 3	Email Spam Brute-Force
🇺🇸 TPI-Abuse	2024-12-05 23:14:33 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 195.78.54.194 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 195.78.54.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 18:14:27.312402 2024] [security2:error] [pid 1657523:tid 1657523] [client 195.78.54.194:52515] [client 195.78.54.194] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|willandtrustlaw.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "willandtrustlaw.com"] [uri "/site/default/settings.php.BAK"] [unique_id "Z1Iz071s-XOKn0Fms5vvWQAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-12-05 19:12:51 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 195.78.54.194 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 195.78.54.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 14:12:44.404665 2024] [security2:error] [pid 5669:tid 5669] [client 195.78.54.194:54215] [client 195.78.54.194] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|howardherrell.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "howardherrell.com"] [uri "/site/default/settings.php.BAK"] [unique_id "Z1H7LMv0HKlbTWgwU9-pagAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 WeCloudit-Anti-Abuse	2024-12-05 19:00:05 (1 year ago)	SPAM - Bruteforce Attack - DDOS 5	Email Spam Brute-Force
🇺🇸 TPI-Abuse	2024-12-05 18:35:14 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 195.78.54.194 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 195.78.54.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 13:35:07.909068 2024] [security2:error] [pid 9917:tid 9917] [client 195.78.54.194:51304] [client 195.78.54.194] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|tigerpathteam.org\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "tigerpathteam.org"] [uri "/site/default/settings.php.BAK"] [unique_id "Z1HyW7hfC3HYWefnHGKlBAAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-12-05 17:36:32 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 195.78.54.194 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 195.78.54.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 12:36:25.512587 2024] [security2:error] [pid 506536:tid 506536] [client 195.78.54.194:62207] [client 195.78.54.194] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ridgerunners.biz\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ridgerunners.biz"] [uri "/site/default/settings.php.BAK"] [unique_id "Z1HkmYPavENmq6DLng8mzQAAACw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-12-05 16:50:48 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 195.78.54.194 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 195.78.54.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 11:50:44.683619 2024] [security2:error] [pid 1676619:tid 1676619] [client 195.78.54.194:59829] [client 195.78.54.194] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kevinfranz.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kevinfranz.com"] [uri "/site/default/settings.php.BAK"] [unique_id "Z1HZ5ONc114DxCn_eoae9wAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-12-05 15:46:45 (1 year ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 165.154.6.75

🇫🇷 51.68.34.131

🇺🇸 43.173.69.147

🇩🇪 213.209.159.56

🇨🇳 182.44.116.87

🇹🇼 165.154.227.158

🇳🇱 160.119.76.33

🇺🇸 157.230.220.147

🇪🇨 157.100.134.220

🇨🇳 152.136.188.221

🇮🇳 122.162.146.24

🇨🇦 104.255.152.29

🇺🇸 103.234.62.36

🇭🇰 103.81.170.109

🇨🇳 223.167.206.3

🇺🇸 208.84.100.130

🇬🇧 188.240.59.62

🇫🇮 147.185.133.76

🇩🇪 134.122.93.100

🇨🇳 125.111.209.85