JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 144.31.5.196

144.31.5.196 was found in our database!

This IP was reported 81 times. Confidence of Abuse is 0%: ?

ISP	H2.NEXUS Warsaw Network
Usage Type	Data Center/Web Hosting/Transit
ASN	AS215730
Hostname(s)	s264350.love-is.nexus
Domain Name	h2.nexus
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 144.31.5.196

Whois 144.31.5.196

IP Abuse Reports for 144.31.5.196:

This IP address has been reported a total of 81 times from 68 distinct sources. 144.31.5.196 was first reported on December 16th 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ingroscart.it	2025-12-23 15:49:15 (5 months ago)	(mod_security) mod_security triggered on hostname [redacted] 144.31.5.196 (PL/Poland/s215539.love-is ... show more (mod_security) mod_security triggered on hostname [redacted] 144.31.5.196 (PL/Poland/s215539.love-is.nexus) show less	SQL Injection
Anonymous	2025-12-23 15:04:38 (5 months ago)	144.31.5.196 - - [23/Dec/2025:16:04:38 +0100] "GET /product-category/marke/big-zone/wp-content/plugi ... show more 144.31.5.196 - - [23/Dec/2025:16:04:38 +0100] "GET /product-category/marke/big-zone/wp-content/plugins/.git/config HTTP/1.1" 403 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Web App Attack
🇮🇹 alph44	2025-12-23 14:06:38 (5 months ago)	(mod_security) mod_security (id:949110) triggered by 144.31.5.196 (PL/Poland/s215539.love-is.nexus): ... show more (mod_security) mod_security (id:949110) triggered by 144.31.5.196 (PL/Poland/s215539.love-is.nexus): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: show less	Web App Attack
🇫🇷 dwmp	2025-12-23 13:40:48 (5 months ago)	[23/Dec/2025:12:39:45.680783 +0100] aUp-gYop@hiImamdCksmfQAAAIk 144.31.5.196 49102 38.242.227.117 70 ... show more [23/Dec/2025:12:39:45.680783 +0100] aUp-gYop@hiImamdCksmfQAAAIk 144.31.5.196 49102 38.242.227.117 7081 [23/Dec/2025:12:39:45.777448 +0100] aUp-gYop@hiImamdCksmfgAAAIU 144.31.5.196 49104 38.242.227.117 7081 [23/Dec/2025:14:40:46.952739 +0100] aUqb3oop@hiImamdCks6JgAAAJY 144.31.5.196 37258 38.242.227.117 7081 ... show less	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-12-23 13:37:31 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 144.31.5.196 (s215539.love-is.nexus): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 144.31.5.196 (s215539.love-is.nexus): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 23 08:37:26.654268 2025] [security2:error] [pid 16169:tid 16169] [client 144.31.5.196:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abdulhameeds.art"] [uri "/ar/wp-content/plugins/.git/config"] [unique_id "aUqbFuA4TSoW7V9_cHp59gAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dbmwebdesign	2025-12-23 13:15:10 (5 months ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇺🇸 Rip	2025-12-23 13:11:20 (5 months ago)	Automated recon attempt targeting restricted and sensitive paths.	Web App Attack
🇩🇪 s@ch@	2025-12-23 13:00:02 (5 months ago)	Banned by Fail2Ban	Brute-Force
🇬🇧 Mendip_Defender	2025-12-23 12:51:34 (5 months ago)	[23/Dec/2025:12:51:19.699090 +0000] aUqQRwqwvyxSwuzmUKqGegAAAJM 144.31.5.196 44390 188.246.206.60 70 ... show more [23/Dec/2025:12:51:19.699090 +0000] aUqQRwqwvyxSwuzmUKqGegAAAJM 144.31.5.196 44390 188.246.206.60 7081 [23/Dec/2025:12:51:19.830806 +0000] aUqQRwqwvyxSwuzmUKqGewAAAJc 144.31.5.196 44394 188.246.206.60 7081 ... show less	Brute-Force
🇩🇪 XICTRON	2025-12-23 12:50:04 (5 months ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack
🇳🇱 Site.eu	2025-12-23 12:38:40 (5 months ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 ut-addicted.com	2025-12-23 12:20:47 (5 months ago)	\[Tue Dec 23 13:20:45.610200 2025\] \[:error\] \[pid 4664:tid 140545982654208\] \[client 144.31.5.19 ... show more \[Tue Dec 23 13:20:45.610200 2025\] \[:error\] \[pid 4664:tid 140545982654208\] \[client 144.31.5.196:50278\] \[client 144.31.5.196\] ModSecurity: Access denied with code 403 \(phase 2\). Operator GE matched 5 at TX:anomaly_score. \[file "/usr/local/apache/modsecurity-owasp-latest/rules/REQUEST-949-BLOCKING-EVALUATION.conf"\] \[line "57"\] \[id "949110"\] \[msg "Inbound Anomaly Score Exceeded \(Total Score: 5\)"\] \[severity "CRITICAL"\] \[tag "application-multi"\] \[tag "language-multi"\] \[tag "platform-multi"\] \[tag "attack-generic"\] \[hostname "www.ut-addicted.com"\] \[uri "/wp-content/plugins/.git/config"\] \[unique_id "aUqJHZsDbPoplcuYL8EC4gAAANE"\] show less	Brute-Force Web App Attack
🇩🇪 SCHAPPY	2025-12-23 12:19:21 (5 months ago)	Probing for non-installed web apps or current vulnerabilities.	Hacking Web App Attack
🇩🇪 LRob.fr	2025-12-23 11:47:42 (5 months ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇧🇪 cmbplf	2025-12-23 11:35:35 (5 months ago)	188 requests with url.path */.git/config	Brute-Force Bad Web Bot

Showing 1 to 15 of 81 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.79

🇨🇳 139.212.69.57

🇨🇳 123.118.230.64

🇮🇩 111.68.120.152

🇹🇷 85.96.7.66

🇸🇬 43.153.194.220

🇸🇬 43.133.61.150

🇩🇿 41.103.101.94

🇧🇷 160.238.111.255

🇮🇩 157.85.212.54

🇲🇾 175.144.238.198

🇫🇷 163.172.183.245

🇨🇳 117.50.89.245

🇨🇦 95.173.219.210

🇩🇪 80.237.133.28

🇷🇴 80.94.92.164

🇫🇷 51.68.34.131

🇮🇩 182.10.161.56

🇩🇪 167.94.146.69

🇩🇪 146.70.178.254