JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 51.195.123.99

51.195.123.99 was found in our database!

This IP was reported 391 times. Confidence of Abuse is 0%: ?

ISP	OVH SAS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Domain Name	ovh.net
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 51.195.123.99

Whois 51.195.123.99

IP Abuse Reports for 51.195.123.99:

This IP address has been reported a total of 391 times from 56 distinct sources. 51.195.123.99 was first reported on December 23rd 2023, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 majhmgmt	2025-12-18 01:15:00 (6 months ago)	Direct Send SMTP impersonation from this IP	Email Spam Spoofing
🇮🇩 penjaga BRIN	2024-12-16 22:10:19 (1 year ago)	nginx-alfa-95	Web App Attack
🇪🇸 el-brujo	2024-12-16 20:53:34 (1 year ago)	Cloudflare WAF: Request Path: /.env Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Linux ... show more Cloudflare WAF: Request Path: /.env Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30 Action: block Source: firewallManaged ASN Description: OVH Country: FR Method: GET Timestamp: 2024-12-16T20:53:34Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 beehivesafety	2024-12-16 20:52:31 (1 year ago)	Malicious activity detected from 16276 OVH towards host beehive.systems (GET HTTP/1.1) @ 2024-12-16 ... show more Malicious activity detected from 16276 OVH towards host beehive.systems (GET HTTP/1.1) @ 2024-12-16T20:52:31Z show less	Open Proxy VPN IP Port Scan Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
🇪🇸 el-brujo	2024-12-13 09:29:24 (1 year ago)	Cloudflare WAF: Request Path: /.env Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Linux ... show more Cloudflare WAF: Request Path: /.env Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30 Action: block Source: firewallManaged ASN Description: OVH Country: FR Method: GET Timestamp: 2024-12-13T09:29:24Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 beehivesafety	2024-12-13 09:10:37 (1 year ago)	Malicious activity detected from 16276 OVH towards host beehive.systems (GET HTTP/1.1) @ 2024-12-13 ... show more Malicious activity detected from 16276 OVH towards host beehive.systems (GET HTTP/1.1) @ 2024-12-13T09:10:37Z show less	Open Proxy VPN IP Port Scan Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
🇭🇺 DumaNet	2024-12-11 06:34:00 (1 year ago)	Web app attack attempts, scanning for vulnerability. Date: 2024 Dec 10. 21:52:08 Source IP: 51.195 ... show more Web app attack attempts, scanning for vulnerability. Date: 2024 Dec 10. 21:52:08 Source IP: 51.195.123.99 Portion of the log(s): 51.195.123.99 - [10/Dec/2024:21:52:05 +0100] "GET /.env HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 51.195.123.99 - [10/Dec/2024:21:51:58 +0100] "GET /.env HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 51.195.123.99 - [10/Dec/2024:21:51:56 +0100] "GET /.env HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 51.195.123.99 - [10/Dec/2024:21:51:51 +0100] "GET /.env HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM show less	Web App Attack
🇭🇺 DumaNet	2024-12-11 06:14:00 (1 year ago)	Web app attack attempts, scanning for vulnerability. Date: 2024 Dec 10. 21:48:25 Source IP: 51.195 ... show more Web app attack attempts, scanning for vulnerability. Date: 2024 Dec 10. 21:48:25 Source IP: 51.195.123.99 Portion of the log(s): 51.195.123.99 - [10/Dec/2024:21:48:22 +0100] "POST / HTTP/1.1" 405 157 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 51.195.123.99 - [10/Dec/2024:21:48:22 +0100] "GET /.env HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 51.195.123.99 - [10/Dec/2024:21:48:15 +0100] "POST / HTTP/1.1" 405 157 "-" "python-requests/2.32.3" 51.195.123.99 - [10/Dec/2024:21:48:14 +0100] "POST / HTTP/1.1" 405 157 "-" "python-requests/2.32.3" 51.195.123.99 - [10/Dec/2024:21:48:14 +0100] "POST / HTTP/1.1" 405 157 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko show less	Web App Attack
🇧🇪 cmbplf	2024-12-08 18:43:43 (1 year ago)	317 requests to *.env	Brute-Force Bad Web Bot
🇮🇩 penjaga BRIN	2024-12-08 12:12:34 (1 year ago)	nginx-alfa-95	Web App Attack
🇫🇷 Savoie	2024-12-08 00:42:00 (1 year ago)	51.195.123.99 *.* - [08/Dec/2024:01:42:46 +0100] "GET /.env HTTP/1.1" 404 196 "-" "Mozilla/5.0 ( ... show more 51.195.123.99 *.* - [08/Dec/2024:01:42:46 +0100] "GET /.env HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 51.195.123.99 *.* - [08/Dec/2024:01:42:46 +0100] "GET /?%3Cplay%3Ewithme%3C/%3E HTTP/1.1" 200 228 "-" "python-requests/2.32.3" show less	Bad Web Bot Web App Attack
🇫🇷 conseilgouz	2024-12-07 14:07:07 (1 year ago)	ame-12 : Block return, carriage return, ... characters=>/?%3Cplay%3Ewithme%3C/%3E(>)	Hacking
🇺🇦 URAN Publishing Service	2024-12-07 09:46:42 (1 year ago)	51.195.123.99 - - [07/Dec/2024:11:46:32 +0200] "GET /.env HTTP/1.1" 404 279 "-" "Mozilla/5.0 (Linux; ... show more 51.195.123.99 - - [07/Dec/2024:11:46:32 +0200] "GET /.env HTTP/1.1" 404 279 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 51.195.123.99 - - [07/Dec/2024:11:46:40 +0200] "GET /.env HTTP/1.1" 404 276 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" ... show less	Web App Attack
🇪🇸 loadsoporte	2024-12-07 03:16:36 (1 year ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇺🇸 TPI-Abuse	2024-12-06 22:07:53 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 51.195.123.99 (ip99.ip-51-195-123.eu): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 51.195.123.99 (ip99.ip-51-195-123.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 06 17:07:49.429429 2024] [security2:error] [pid 2566834:tid 2566834] [client 51.195.123.99:52043] [client 51.195.123.99] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "10bestcountryclubs.com"] [uri "/.env"] [unique_id "Z1N1tdRsgFLM9JwUUEqnvAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 391 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.236

🇨🇭 20.203.140.114

🇧🇷 205.210.31.199

🇧🇷 177.66.137.121

🇩🇪 159.69.123.234

🇨🇳 118.145.238.115

🇨🇳 117.50.218.37

🇺🇸 66.132.172.114

🇳🇱 45.90.13.191

🇺🇸 44.246.136.73

🇬🇧 35.203.211.186

🇬🇧 35.203.210.247

🇷🇴 2.57.122.150

🇨🇳 210.22.149.155

🇺🇸 185.180.141.35

🇺🇸 185.180.141.34

🇺🇸 185.180.141.33

🇨🇳 115.55.58.150

🇭🇰 103.229.125.106

🇷🇴 94.156.152.50