JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.198.131.231

124.198.131.231 was found in our database!

This IP was reported 114 times. Confidence of Abuse is 100%: ?

100%

ISP	1337 Services GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS210558
Domain Name	as210558.net
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.198.131.231

Whois 124.198.131.231

IP Abuse Reports for 124.198.131.231:

This IP address has been reported a total of 114 times from 74 distinct sources. 124.198.131.231 was first reported on June 17th 2026, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-21 19:47:16 (17 hours ago)	$f2bV_matches	Brute-Force
🇬🇧 Mendip_Defender	2026-06-21 11:22:21 (1 day ago)	124.198.131.231 - - [21/Jun/2026:12:22:14 +0100] "POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 301 ... show more 124.198.131.231 - - [21/Jun/2026:12:22:14 +0100] "POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 124.198.131.231 - - [21/Jun/2026:12:22:14 +0100] "POST /wp-plain.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 124.198.131.231 - - [21/Jun/2026:12:22:14 +0100] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" ... show less	Hacking Web App Attack
🇩🇪 conseilgouz	2026-06-21 10:38:50 (1 day ago)	coe-7 : Trying access unauthorized files/dir=>/wp-content/themes/seotheme/db.php?u	Hacking
🇳🇱 CryptoYakari	2026-06-21 09:19:44 (1 day ago)	124.198.131.231 - - [21/Jun/2026:12:19:42 +0300] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.0" ... show more 124.198.131.231 - - [21/Jun/2026:12:19:42 +0300] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.0" 404 6989 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 124.198.131.231 - - [21/Jun/2026:12:19:42 +0300] "GET /wp-content/plugins/fix/up.php HTTP/1.0" 404 3515 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 124.198.131.231 - - [21/Jun/2026:12:19:42 +0300] "POST /wp-plain.php HTTP/1.0" 404 531 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 124.198.131.231 - - [21/Jun/2026:12:19:42 +0300] "POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.0" 404 3515 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4. ... show less	Web Spam Blog Spam Web App Attack Bad Web Bot
🇺🇸 n2nguyenn2nguyen	2026-06-21 08:31:18 (1 day ago)	Blocked by YFC Security on https://fencingforward.com — type: malicious_file_attempts	Web App Attack SSH
🇺🇸 agenciahypelab.com.br	2026-06-21 06:59:16 (1 day ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇫🇷 pm33	2026-06-21 06:38:31 (1 day ago)	Unauthorized connections HTTP 403	Web App Attack
🇵🇱 strefapi_com	2026-06-21 06:37:04 (1 day ago)	Brute-force, web ...	Hacking Brute-Force Web App Attack
🇩🇪 maxpower	2026-06-21 06:17:12 (1 day ago)	(backdoor_scan) REGOLA 7 - Backdoor Scan Attempt 124.198.131.231 (US/United States/-): 2 in the last ... show more (backdoor_scan) REGOLA 7 - Backdoor Scan Attempt 124.198.131.231 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 124.198.131.231 - - [21/Jun/2026:08:16:58 +0200] "GET /wp-content/themes/seotheme/db.php?u HTTP/2.0" 404 5378 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "124.198.131.231" host=www.marialauracaselli.com 124.198.131.231 - - [21/Jun/2026:08:16:58 +0200] "GET /wp-content/themes/seotheme/db.php?u HTTP/2.0" 404 5378 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "124.198.131.231" host=www.marialauracaselli.com show less	Port Scan
🇩🇪 Dennis	2026-06-21 06:10:09 (1 day ago)	124.198.131.231 has been banned for triggering http-bad-user-agent (2 events over 582.968µs). The us ... show more 124.198.131.231 has been banned for triggering http-bad-user-agent (2 events over 582.968µs). The user-agent Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36 is not allowed. show less	Bad Web Bot
🇩🇪 todix	2026-06-21 05:12:51 (1 day ago)	Web App Attack Exploid from 124.198.131.231	Web App Attack
🇫🇷 SpaceHost-Server	2026-06-20 22:26:13 (1 day ago)		Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-20 20:00:06 (1 day ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇩🇪 LRob.fr	2026-06-20 19:45:04 (1 day ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
🇺🇸 1cyb3rpunk	2026-06-20 19:44:44 (1 day ago)	Honeypot trap [path_not_found_probe] on sectrace.org — path: /wp-plain.php stage: recon. Automated s ... show more Honeypot trap [path_not_found_probe] on sectrace.org — path: /wp-plain.php stage: recon. Automated scanner/attacker activity. show less	Port Scan Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 114 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.177

🇳🇱 194.26.192.129

🇳🇱 185.242.226.85

🇺🇸 170.187.165.218

🇺🇸 159.183.170.245

🇺🇸 107.172.188.142

🇫🇷 94.23.34.95

🇺🇸 67.215.227.141

🇳🇱 45.148.10.240

🇫🇮 34.88.138.99

🇳🇱 204.76.203.36

🇧🇷 189.6.88.213

🇨🇳 175.170.144.19

🇺🇸 172.202.118.17

🇩🇪 159.65.123.129

🇨🇳 111.225.148.238

🇨🇳 111.225.148.24

🇩🇪 68.183.209.26

🇺🇸 47.251.107.237

🇳🇱 45.156.87.13