JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 51.254.7.137

51.254.7.137 was found in our database!

This IP was reported 260 times. Confidence of Abuse is 83%: ?

83%

ISP	OVH SAS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	ip137.ip-51-254-7.eu
Domain Name	ovh.net
Country	🇫🇷 France
City	Dunkirk, Hauts-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 51.254.7.137

Whois 51.254.7.137

IP Abuse Reports for 51.254.7.137:

This IP address has been reported a total of 260 times from 127 distinct sources. 51.254.7.137 was first reported on May 5th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-17 12:46:23 (1 week ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-05-27 03:46:35 (4 weeks ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-05-16 10:46:38 (1 month ago)	Failed Wordpress Logins	Web App Attack
🇸🇮 administrator	2026-05-15 22:01:57 (1 month ago)	2026-05-10 00:01:37,803 fail2ban.actions [1274341]: NOTICE [wordpress-hard] Ban 51.254.7.137 ... show more 2026-05-10 00:01:37,803 fail2ban.actions [1274341]: NOTICE [wordpress-hard] Ban 51.254.7.137 2026-05-11 00:00:37,291 fail2ban.actions [1056]: NOTICE [wordpress-hard] Ban 51.254.7.137 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇫🇷 GEDAL	2026-05-15 11:00:13 (1 month ago)	Fail2ban webexploits @ <hostname> : 51.254.7.137 - - [06/May/2026:10:28:23 +0200] "GET /wp-login.php ... show more Fail2ban webexploits @ <hostname> : 51.254.7.137 - - [06/May/2026:10:28:23 +0200] "GET /wp-login.php HTTP/1.1" 503 592 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" show less	Brute-Force SSH
🇮🇳 evicky2002	2026-05-14 06:00:00 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
Anonymous	2026-05-11 01:46:31 (1 month ago)	Failed Wordpress Logins	Web App Attack
🇳🇱 Site.eu	2026-05-10 06:55:11 (1 month ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇧🇪 taivas.nl	2026-05-10 04:32:46 (1 month ago)	Many_bad_calls	Web App Attack
🇬🇧 andypiper	2026-05-10 01:01:30 (1 month ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-10 00:43:20 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 51.254.7.137 (ip137.ip-51-254-7.eu): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 51.254.7.137 (ip137.ip-51-254-7.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 20:43:14.035990 2026] [security2:error] [pid 2721:tid 2721] [client 51.254.7.137:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mail.pixacast.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mail.pixacast.com"] [uri "/wp-json/wp/v2/users"] [unique_id "af_Uoh9duvKOOEDPYa12LwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Campus France	2026-05-10 00:40:47 (1 month ago)	51.254.7.137 - - [10/May/2026:02:00:41 +0200] "POST /wp-login.php HTTP/1.1" 200 2495 "https://perpig ... show more 51.254.7.137 - - [10/May/2026:02:00:41 +0200] "POST /wp-login.php HTTP/1.1" 200 2495 "https://perpignan.radiocampus.org/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 51.254.7.137 - - [10/May/2026:02:40:46 +0200] "POST /wp-login.php HTTP/1.1" 200 2495 "https://www.perpignan.radiocampus.fr/wp-login.php" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 51.254.7.137 - - [10/May/2026:02:40:46 +0200] "POST /wp-login.php HTTP/1.1" 200 2495 "https://www.perpignan.radiocampus.fr/wp-login.php" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
🇧🇪 taivas.nl	2026-05-10 00:32:09 (1 month ago)	Bad_requests	Bad Web Bot
🇨🇦 KIsmay	2026-05-10 00:26:56 (1 month ago)	May 9 17:45:12 www4 WPAudit[56702]: 51.254.7.137 www.amandasrestaurant.ca "Mozilla/5.0 (X11; Linux ... show more May 9 17:45:12 www4 WPAudit[56702]: 51.254.7.137 www.amandasrestaurant.ca "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" gina:amandasrestaurant88 FAIL May 9 17:57:24 www4 WPAudit[54525]: 51.254.7.137 servicesfyi.ca "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" servicesfyi:ca666 FAIL May 9 17:58:14 www4 WPAudit[56239]: 51.254.7.137 www.siscobc.com "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" sisco:com666 FAIL May 9 19:51:13 www4 WPAudit[65241]: 51.254.7.137 servicesfyi.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" servicesfyi:ca@admin FAIL May 9 20:26:55 www4 WPAudit[67513]: 51.254.7.137 trilloperelloyates.com "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" trillo:trilloperelloyates21 FA ... show less	Brute-Force Web App Attack
🇩🇪 expandmade.com	2026-05-10 00:14:25 (1 month ago)	unauthorized rest api call [10/May/2026:00:14:24 "GET /wp-json/um/v1/users"]	Web App Attack

Showing 1 to 15 of 260 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 213.171.208.62

🇧🇷 201.131.140.188

🇺🇸 185.198.240.36

🇸🇬 156.248.74.25

🇨🇳 115.190.249.177

🇺🇸 45.79.109.130

🇧🇷 205.210.31.136

🇺🇸 162.216.149.222

🇭🇰 150.5.169.138

🇮🇳 135.13.17.137

🇨🇳 123.191.134.121

🇬🇧 109.156.131.202

🇺🇸 69.57.167.133

🇱🇹 62.60.130.219

🇬🇧 35.203.211.232

🇪🇸 31.24.155.180

🇵🇭 208.71.224.11

🇩🇪 188.166.167.47

🇺🇸 173.70.130.252

🇬🇧 172.217.32.16