JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 204.168.157.54

204.168.157.54 was found in our database!

This IP was reported 42 times. Confidence of Abuse is 52%: ?

52%

ISP	Hetzner Online GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS24940
Hostname(s)	static.54.157.168.204.clients.your-server.de
Domain Name	hetzner.com
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 204.168.157.54

Whois 204.168.157.54

IP Abuse Reports for 204.168.157.54:

This IP address has been reported a total of 42 times from 13 distinct sources. 204.168.157.54 was first reported on March 18th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 sockominfo	2026-06-03 01:00:41 (1 day ago)	Suspicious user agent detected Python/3.12 aiohttp/3.12.15. Threat Score: 3.8/10 (LOW). Confidence: ... show more Suspicious user agent detected Python/3.12 aiohttp/3.12.15. Threat Score: 3.8/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-03 00:00:14 (1 day ago)	Suspicious user agent detected Python/3.12 aiohttp/3.12.15. Threat Score: 0/10 (INFORMATIONAL). Repo ... show more Suspicious user agent detected Python/3.12 aiohttp/3.12.15. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇩🇪 www.Examensfragen.de	2026-05-31 02:42:48 (4 days ago)		Web Spam Bad Web Bot
🇫🇷 Sklurk	2026-05-30 07:08:52 (5 days ago)	Web App Attack	Web App Attack
🇦🇺 MAGIC	2026-05-30 00:00:54 (5 days ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇪🇸 masterguru	2026-05-29 13:58:38 (5 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "aiohttp" at REQUEST_HEADERS:User-Agent. (1100000-12 ... show more BAD BOT - Detected and Blocked.. Matched phrase "aiohttp" at REQUEST_HEADERS:User-Agent. (1100000-122) show less	Bad Web Bot
🇫🇷 Sklurk	2026-05-29 06:08:06 (6 days ago)	Web App Attack	Web App Attack
🇮🇩 sockominfo	2026-05-28 00:00:39 (1 week ago)	Suspicious user agent detected Python/3.12 aiohttp/3.12.15. Threat Score: 3.7/10 (LOW). Confidence: ... show more Suspicious user agent detected Python/3.12 aiohttp/3.12.15. Threat Score: 3.7/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-27 22:00:11 (1 week ago)	Suspicious user agent detected Python/3.12 aiohttp/3.12.15. Threat Score: 0/10 (INFORMATIONAL). Repo ... show more Suspicious user agent detected Python/3.12 aiohttp/3.12.15. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇫🇷 Sklurk	2026-05-25 10:43:56 (1 week ago)	Web App Attack	Web App Attack
🇩🇪 4server	2026-05-23 07:59:52 (1 week ago)	[SatMay2309:59:46.1725322026][security2:error][pid663062:tid663161][client204.168.157.54:0]ModSecuri ... show more [SatMay2309:59:46.1725322026][security2:error][pid663062:tid663161][client204.168.157.54:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\(\?i\)\(curl\\|wget\\|python\\|nikto\\|sqlmap\\|acunetix\\|fimap\\|dirbuster\\|cmsmap\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"217\"][id\"990210\"][msg\"Suspicioususer-agentblocked\"][hostname\"www.agilityrossoblu.ch\"][uri\"/wp-content/uploads/2016/02/Meeting-RB-2018-flyer-definitivo.jpg\"][unique_id\"ahFectsvSrumTYixEeFatgAAAMs\"] show less	Port Scan Brute-Force Web App Attack
🇦🇺 MAGIC	2026-05-22 05:05:22 (1 week ago)	VM5 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇫🇷 Sklurk	2026-05-20 04:39:36 (2 weeks ago)	Web App Attack	Web App Attack
🇫🇷 Sklurk	2026-05-17 00:42:59 (2 weeks ago)	Web App Attack	Web App Attack
🇩🇪 4server	2026-05-15 02:10:11 (2 weeks ago)	[FriMay1504:10:06.2313222026][security2:error][pid29416:tid29543][client204.168.157.54:0]ModSecurity ... show more [FriMay1504:10:06.2313222026][security2:error][pid29416:tid29543][client204.168.157.54:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\(\?i\)\(curl\\|wget\\|python\\|nikto\\|sqlmap\\|acunetix\\|fimap\\|dirbuster\\|cmsmap\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"217\"][id\"990210\"][msg\"Suspicioususer-agentblocked\"][hostname\"feldenkraisticino.ch\"][uri\"/feldenkraisticino.ch/wp-content/uploads/2022/01/Feldenkrais_ATM_20.jpg\"][unique_id\"agaAftUOpsCSAocItI__1wAAAJE\"] show less	Port Scan Brute-Force Web App Attack

Showing 1 to 15 of 42 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇺 197.227.14.33

🇭🇰 144.48.243.18

🇨🇳 111.26.63.87

🇸🇬 45.132.75.45

🇺🇸 135.148.217.213

🇨🇭 104.253.55.156

🇷🇴 92.118.39.236

🇮🇶 62.201.202.180

🇮🇳 34.131.130.174

🇮🇩 34.101.93.155

🇮🇳 202.177.235.109

🇩🇪 195.14.218.186

🇳🇱 176.65.148.156

🇭🇰 152.32.175.179

🇭🇰 123.58.210.86

🇫🇷 109.205.180.231

🇭🇰 103.210.22.17

🇺🇬 102.85.35.52

🇺🇸 100.49.117.77

🇺🇸 69.73.187.130