AbuseIPDB » 51.254.59.113

51.254.59.113 was found in our database!

This IP was reported 17,027 times. Confidence of Abuse is 100%: ?

100%

ISP	OVH SAS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	scan018.intrinsec.com
Domain Name	ovh.net
Country	France
City	Dunkerque, Hauts-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 51.254.59.113

Whois 51.254.59.113

IP Abuse Reports for 51.254.59.113:

This IP address has been reported a total of 17,027 times from 211 distinct sources. 51.254.59.113 was first reported on November 22nd 2020, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
major_tom	2025-06-01 09:32:54 (3 weeks ago)	Nginx - URL probing, bad requests 400-401-403-404-444	Bad Web Bot Web App Attack
webbfabriken	2025-06-01 02:54:20 (3 weeks ago)	spam or other hacking activities reported by webbfabriken security servers Attack reported by ... show morespam or other hacking activities reported by webbfabriken security servers Attack reported by Webbfabriken Security API - WFSecAPI show less	Web Spam
slartybartfast69420blazit	2025-05-31 20:34:11 (3 weeks ago)	Fail2ban picked up 51.254.59.113 attacking nginx	Web App Attack
swrlly	2025-05-30 23:41:48 (3 weeks ago)	attempted directly connecting to webserver using origin ip	Web App Attack
ThreatBook.io	2025-05-30 23:10:54 (3 weeks ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/51.254.59.113 ... show moreThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/51.254.59.113 2025-05-30 00:35:57 / 2025-05-30 00:35:58 /login show less	Web App Attack
slartybartfast69420blazit	2025-05-30 20:30:13 (3 weeks ago)	Fail2ban picked up 51.254.59.113 attacking nginx	Web App Attack
Mykola Spesivtsev	2025-05-30 09:17:13 (3 weeks ago)	HTTP Tarpit detected bot activity:TargetPort:80, Path:/, Method:GET, UA:Mozilla/5.0 (Windows NT 6.1) ... show moreHTTP Tarpit detected bot activity:TargetPort:80, Path:/, Method:GET, UA:Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 show less	Port Scan Bad Web Bot Web App Attack
Roper123	2025-05-30 08:17:32 (3 weeks ago)	Web exploits	Web App Attack
ThreatBook.io	2025-05-29 23:14:21 (3 weeks ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/51.254.59.113 ... show moreThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/51.254.59.113 2025-05-29 01:17:14 / show less	Web App Attack
slartybartfast69420blazit	2025-05-29 20:25:58 (3 weeks ago)	Fail2ban picked up 51.254.59.113 attacking nginx	Web App Attack
Linuxmalwarehuntingnl	2025-05-29 08:36:42 (3 weeks ago)	Suspicious web activity: Multiple 404 status codes detected. Example request: "GET / HTTP/1.1"	Brute-Force Web App Attack
6o6ep	2025-05-29 04:50:04 (3 weeks ago)	direct access by ip: GET / HTTP/1.1	Port Scan Hacking Web App Attack
webbfabriken	2025-05-29 01:04:22 (3 weeks ago)	spam or other hacking activities reported by webbfabriken security servers Attack reported by ... show morespam or other hacking activities reported by webbfabriken security servers Attack reported by Webbfabriken Security API - WFSecAPI show less	Web Spam
slartybartfast69420blazit	2025-05-28 20:21:50 (3 weeks ago)	Fail2ban picked up 51.254.59.113 attacking nginx	Web App Attack
Unwasted	2025-05-28 16:12:20 (3 weeks ago)	Abusive content scan (abuse_score:>80)	Hacking Brute-Force Web App Attack

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩