JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 144.217.135.252

144.217.135.252 was found in our database!

This IP was reported 74 times. Confidence of Abuse is 15%: ?

15%

ISP	B.V., Dataprovider
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	crawl-144-217-135-252.dataproviderbot.com
Domain Name	dataprovider.com
Country	🇨🇦 Canada
City	Beauharnois, Quebec

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 144.217.135.252

Whois 144.217.135.252

IP Abuse Reports for 144.217.135.252:

This IP address has been reported a total of 74 times from 23 distinct sources. 144.217.135.252 was first reported on June 24th 2021, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 RodGel	2026-06-02 17:06:06 (2 days ago)	Multiple 404 errors (Potential brute force attempt)	Web App Attack
Anonymous	2026-05-25 07:22:57 (1 week ago)	(apache-useragents) Failed apache-useragents trigger with match [Mozilla/5.0 (compatible; Dataprovid ... show more (apache-useragents) Failed apache-useragents trigger with match [Mozilla/5.0 (compatible; Dataprovider.com)] from 144.217.135.252 (NL/The Netherlands/crawl-144-217-135-252.dataproviderbot.com): 5 in the last 300 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 144.217.135.252 - - [25/May/2026:09:22:38 +0200] "GET / HTTP/1.1" 301 525 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 144.217.135.252 - - [25/May/2026:09:22:38 +0200] "GET / HTTP/2.0" 200 115652 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 144.217.135.252 - - [25/May/2026:09:22:44 +0200] "GET /robots.txt HTTP/2.0" 200 129 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 144.217.135.252 - - [25/May/2026:09:22:45 +0200] "GET /sitemap.xml HTTP/2.0" 302 98 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 144.217.135.252 - - [25/May/2026:09:22:49 +0200] "GET /wp-sitemap.xml HTTP/2.0" 200 736 "https://www.1883-routin.nl/sitemap.xml" "Mozilla/5.0 (compatible; Dataprovider.com)" show less	Port Scan
🇺🇸 TPI-Abuse	2026-04-05 16:13:22 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 144.217.135.252 (crawl-144-217-135-252.dataprov ... show more (mod_security) mod_security (id:210730) triggered by 144.217.135.252 (crawl-144-217-135-252.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 12:13:13.677499 2026] [security2:error] [pid 28759:tid 28759] [client 144.217.135.252:43613] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.ipostsocialmedia.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.ipostsocialmedia.com"] [uri "/[email protected]"] [unique_id "adKKGQI029JVlzKuS-ijSwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2026-02-21 13:05:09 (3 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-12-20 10:56:46 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 144.217.135.252 (crawl-144-217-135-252.dataprov ... show more (mod_security) mod_security (id:210730) triggered by 144.217.135.252 (crawl-144-217-135-252.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 20 05:56:42.489405 2025] [security2:error] [pid 22812:tid 22812] [client 144.217.135.252:33821] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.raintechgutters.com\|F\|2"] [data ".raintechgutters.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.raintechgutters.com"] [uri "/local-gutter-services-orlando/www.raintechgutters.com"] [unique_id "aUaA6sPoDWEW6NXliLwjmQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-20 08:25:52 (5 months ago)	(mod_security) mod_security (id:243420) triggered by 144.217.135.252 (crawl-144-217-135-252.dataprov ... show more (mod_security) mod_security (id:243420) triggered by 144.217.135.252 (crawl-144-217-135-252.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 20 03:25:48.290123 2025] [security2:error] [pid 14328:tid 14328] [client 144.217.135.252:60053] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.gensou.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.gensou.net"] [uri "/contact.html"] [unique_id "aUZdjA5Hn5wk8c2t4cRsMQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-03 12:11:54 (8 months ago)	144.217.135.252 - sliver85.eu - [03/Oct/2025:14:11:52 +0200] "GET / HTTP/1.1" 444 "Mozilla/5.0 (comp ... show more 144.217.135.252 - sliver85.eu - [03/Oct/2025:14:11:52 +0200] "GET / HTTP/1.1" 444 "Mozilla/5.0 (compatible; Dataprovider.com)" 144.217.135.252 - sliver85.eu - [03/Oct/2025:14:11:53 +0200] "GET / HTTP/1.1" 444 "Mozilla/5.0 (compatible; Dataprovider.com)" 144.217.135.252 - sliver85.eu - [03/Oct/2025:14:11:54 +0200] "GET / HTTP/1.1" 444 "Mozilla/5.0 (compatible; Dataprovider.com)" ... show less	Brute-Force Web App Attack
Anonymous	2025-09-26 14:03:37 (8 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇿🇦 Immersive	2025-08-17 00:50:36 (9 months ago)	Probing server for potential vulnerabilities	Hacking Web App Attack
🇩🇪 webmaster67.fr	2025-07-03 15:04:32 (11 months ago)	Tentative bloquée par Fail2Ban sur webmaster67.fr (xmlrpc.php ou scan récurrent)	Brute-Force
Anonymous	2025-06-16 09:30:26 (11 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-06-07 01:46:54 (11 months ago)	Excessive crawling/scraping	Hacking Brute-Force
🇩🇪 SCHAPPY	2025-05-29 14:45:02 (1 year ago)	Brute-force attack to identify web exploits	Brute-Force Web App Attack
Anonymous	2025-05-06 08:07:56 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇨🇦 JuicyJ	2025-04-22 13:47:52 (1 year ago)	Excessive crawling/scraping	Web App Attack

Showing 1 to 15 of 74 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 116.68.162.169

🇨🇳 112.103.72.118

🇧🇪 104.199.27.43

🇳🇱 45.148.10.67

🇧🇪 34.52.221.216

🇨🇳 222.92.61.242

🇩🇪 213.209.159.56

🇬🇧 193.163.125.120

🇦🇹 152.53.111.131

🇺🇸 146.70.168.173

🇺🇸 146.70.168.139

🇰🇷 118.37.214.187

🇺🇸 66.132.224.28

🇱🇻 62.60.234.140

🇳🇱 45.198.224.22

🇧🇷 205.210.31.200

🇳🇱 185.107.80.93

🇸🇦 153.94.77.252

🇷🇴 80.94.92.187

🇸🇬 47.237.201.179