JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.51.131.142

154.51.131.142 was found in our database!

This IP was reported 462 times. Confidence of Abuse is 0%: ?

ISP	Cogent Communications - IPENG
Usage Type	Fixed Line ISP
ASN	AS174
Hostname(s)	bot.h12-media.com
Domain Name	cogentco.com
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	London, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.51.131.142

Whois 154.51.131.142

IP Abuse Reports for 154.51.131.142:

This IP address has been reported a total of 462 times from 31 distinct sources. 154.51.131.142 was first reported on November 24th 2020, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2024-06-29 06:40:03 (1 year ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
🇦🇺 MAGIC	2024-06-27 11:11:17 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2024-06-26 22:55:27 (1 year ago)	SuspiciousC Activity detected by FMBAD System 2024-06-27 01:55:27	Hacking Bad Web Bot Web App Attack
🇦🇺 MAGIC	2024-06-25 02:18:37 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇮🇩 hermawan	2024-06-24 17:48:51 (1 year ago)	[Tue Jun 25 00:48:46.354708 2024] [security2:error] [pid 636516:tid 133266302568000] [client 154.51. ... show more [Tue Jun 25 00:48:46.354708 2024] [security2:error] [pid 636516:tid 133266302568000] [client 154.51.131.142:15336] [client 154.51.131.142] ModSecurity: Access denied with code 403 (phase 1). String match within "/accept-charset/ /content-encoding/ /content-range/ /identity/ /if/ /lock-token/ /proxy/ /x-http-method/ /x-http-method-override/ /x-method-override/" at TX:header_name_920450_accept-charset. [file "/etc/modsecurity/coreruleset-4.3.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1727"] [id "920450"] [msg "HTTP header is restricted by policy (/accept-charset/)"] [data "Restricted header detected: /accept-charset/ dan Matched Data: connection found within TX:header_name_920450_accept-charset: /accept-charset/ request_line = GET / HTTP/1.1"] [severity "CRITICAL"] [ver "OWASP_CRS/4.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/12.1"] [hostna ... show less	Hacking Web App Attack
Anonymous	2024-06-21 21:00:13 (1 year ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2024-06-19 11:55:19 (1 year ago)	SuspiciousC Activity detected by FMBAD System 2024-06-19 14:55:18	Hacking Bad Web Bot Web App Attack
Anonymous	2024-06-18 20:40:05 (1 year ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
🇦🇺 MAGIC	2024-06-18 00:08:50 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇮🇩 hermawan	2024-06-17 03:02:39 (1 year ago)	[Mon Jun 17 10:02:34.891004 2024] [security2:error] [pid 469047:tid 123197133424192] [client 154.51. ... show more [Mon Jun 17 10:02:34.891004 2024] [security2:error] [pid 469047:tid 123197133424192] [client 154.51.131.142:42836] [client 154.51.131.142] ModSecurity: Access denied with code 403 (phase 1). String match within "/accept-charset/ /content-encoding/ /content-range/ /identity/ /if/ /lock-token/ /proxy/ /x-http-method/ /x-http-method-override/ /x-method-override/" at TX:header_name_920450_accept-charset. [file "/etc/modsecurity/coreruleset-4.3.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1727"] [id "920450"] [msg "HTTP header is restricted by policy (/accept-charset/)"] [data "Restricted header detected: /accept-charset/ dan Matched Data: connection found within TX:header_name_920450_accept-charset: /accept-charset/ request_line = GET / HTTP/1.1"] [severity "CRITICAL"] [ver "OWASP_CRS/4.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/12.1"] [hostna ... show less	Hacking Web App Attack
🇱🇹 Evag Touf	2024-06-15 18:47:19 (1 year ago)	(mod_security) mod_security triggered on hostname [redacted] 154.51.131.142 (GB/United Kingdom/bot.h ... show more (mod_security) mod_security triggered on hostname [redacted] 154.51.131.142 (GB/United Kingdom/bot.h12-media.com): (CF_ENABLE) show less	SQL Injection
Anonymous	2024-06-14 03:40:06 (1 year ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2024-06-13 02:38:00 (1 year ago)	"Scanning for multiple vulnerable file extensions and wp-login.php xmlrpc.php"	Web App Attack
🇦🇺 MAGIC	2024-06-09 17:02:23 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇮🇩 hermawan	2024-06-09 12:59:03 (1 year ago)	[Sun Jun 09 19:58:59.640564 2024] [security2:error] [pid 741119:tid 136066497513024] [client 154.51. ... show more [Sun Jun 09 19:58:59.640564 2024] [security2:error] [pid 741119:tid 136066497513024] [client 154.51.131.142:35389] [client 154.51.131.142] ModSecurity: Access denied with code 403 (phase 1). String match within "/accept-charset/ /content-encoding/ /content-range/ /identity/ /if/ /lock-token/ /proxy/ /x-http-method/ /x-http-method-override/ /x-method-override/" at TX:header_name_920450_accept-charset. [file "/etc/modsecurity/coreruleset-4.3.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1727"] [id "920450"] [msg "HTTP header is restricted by policy (/accept-charset/)"] [data "Restricted header detected: /accept-charset/ dan Matched Data: connection found within TX:header_name_920450_accept-charset: /accept-charset/ request_line = GET / HTTP/1.1"] [severity "CRITICAL"] [ver "OWASP_CRS/4.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/12.1"] [hostna ... show less	Hacking Web App Attack

Showing 16 to 30 of 462 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇸 209.20.170.119

🇺🇸 195.184.76.166

🇺🇸 162.216.149.72

🇺🇸 162.216.149.25

🇳🇱 45.148.10.183

🇺🇸 2602:fb54:1a00::19b

🇰🇷 220.95.208.142

🇨🇦 217.181.82.189

🇩🇪 213.209.159.235

🇸🇬 152.42.160.174

🇵🇰 121.52.147.5

🇬🇷 92.112.82.119

🇺🇸 76.183.120.186

🇪🇨 45.224.97.245

🇳🇱 45.148.10.151

🇺🇸 23.94.136.36

🇮🇪 4.210.91.174

🇩🇪 217.79.213.82

🇦🇺 158.178.141.16

🇻🇳 103.153.254.96