JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 57.128.247.242

57.128.247.242 was found in our database!

This IP was reported 127 times. Confidence of Abuse is 0%: ?

ISP	OVH Sp. z o. o.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	vps-480315ae.vps.ovh.net
Domain Name	ovh.net
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 57.128.247.242

Whois 57.128.247.242

IP Abuse Reports for 57.128.247.242:

This IP address has been reported a total of 127 times from 55 distinct sources. 57.128.247.242 was first reported on January 29th 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-03-25 00:08:35 (3 months ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇷🇺 6o6ep	2026-03-17 06:25:49 (3 months ago)	GET / HTTP/1.1	Port Scan Hacking
🇮🇹 Progetto1	2026-03-17 03:05:04 (3 months ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇫🇮 Jordy	2026-03-17 02:45:02 (3 months ago)	17/Mar/2026:03:39:46.996576 +0100Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 17/Mar/2026:03:39:46.996576 +0100Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 57.128.247.242] ModSecurity: Warning. String match within "/accept-charset/ /content-encoding/ /proxy/ /lock-token/ /content-range/ /if/" at TX:header_name_accept-charset. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1128"] [id "920450"] [msg "HTTP header is restricted by policy (/accept-charset/)"] [data "Restricted header detected: /accept-charset/"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/12.1"] [hostname "jordymarije.nl"] [uri "/"] [unique_id "abi-8k9MDLYgFwvmrViDpgAAAAg"] 17/Mar/2026:03:39:46.996576 +0100Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 57.128.247.242] ModSecurity: Warning. Operator GE matched 5 at TX:anomaly_score. [file "/usr/s ... show less	Web App Attack
🇺🇸 Charlesiv	2026-03-16 12:03:53 (3 months ago)	Triggered Cloudflare WAF (firewallCustom) from PL. Action taken: BLOCK ASN: 16276 (OVH) Protocol: HT ... show more Triggered Cloudflare WAF (firewallCustom) from PL. Action taken: BLOCK ASN: 16276 (OVH) Protocol: HTTP/1.1 (GET method) Endpoint: / Timestamp: 2026-03-16T11:30:40Z Ray ID: 9dd36d585ae014f3 UA: Mozilla/5.0 (iPhone; CPU iPhone OS 26_3_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/15E148 Safari/604.1 musical_ly_43.9.0 BytedanceWebview/d8a21c6 show less	Bad Web Bot
🇬🇧 poundawebsiteltd	2026-03-16 04:39:19 (3 months ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 57.128.247.242 - - [16/Mar/2026: ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 57.128.247.242 - - [16/Mar/2026:04:39:17 +0000] GET / HTTP/1.1 403 2843 - Mozilla/5.0 (iPhone; CPU iPhone OS 18_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/15E148 show less	Web App Attack
🇫🇷 Bensay	2026-03-15 05:03:34 (3 months ago)	[Sun Mar 15 03:26:51.549426 2026] [authz_core:error] [pid 257761:tid 257856] [client 57.128.247.242: ... show more [Sun Mar 15 03:26:51.549426 2026] [authz_core:error] [pid 257761:tid 257856] [client 57.128.247.242:46596] AH01630: client denied by server configuration: /var/www/empty/ [Sun Mar 15 06:03:33.762957 2026] [authz_core:error] [pid 257762:tid 257864] [client 57.128.247.242:56636] AH01630: client denied by server configuration: /var/www/empty/ ... show less	Hacking Bad Web Bot Web App Attack
🇫🇷 solution.it	2026-03-15 02:11:45 (3 months ago)	[Sun Mar 15 03:11:42.877818 2026] [authz_core:error] [pid 276397] [client 57.128.247.242:51250] AH01 ... show more [Sun Mar 15 03:11:42.877818 2026] [authz_core:error] [pid 276397] [client 57.128.247.242:51250] AH01630: client denied by server configuration: /var/empty/ [Sun Mar 15 03:11:44.451524 2026] [authz_core:error] [pid 276094] [client 57.128.247.242:51266] AH01630: client denied by server configuration: /var/empty/preland [Sun Mar 15 03:11:44.635423 2026] [authz_core:error] [pid 276293] [client 57.128.247.242:51278] AH01630: client denied by server configuration: /var/empty/preland, referer: https://cti.solution.it ... show less	Brute-Force
🇬🇧 poundawebsiteltd	2026-03-14 12:59:06 (3 months ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 57.128.247.242 - - [14/Mar/2026: ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 57.128.247.242 - - [14/Mar/2026:12:59:05 +0000] GET / HTTP/1.1 403 3034 - Mozilla/5.0 (iPhone; CPU iPhone OS 18_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/15E148 show less	Web App Attack
🇩🇪 MF Network	2026-03-14 12:47:37 (3 months ago)	Bad Calls: Webpage scraping, Web App Attack	Bad Web Bot Exploited Host Web App Attack
Anonymous	2026-03-14 10:23:49 (3 months ago)	Malicious activity detected	Hacking Web App Attack
🇫🇷 GoodOldTOS	2026-03-14 02:16:53 (3 months ago)	Highly suspect IP	Hacking Web App Attack
🇫🇮 wpwoodo	2026-03-13 23:40:26 (3 months ago)	Webpage crawler	Bad Web Bot
🇩🇪 Trashware	2026-03-13 13:22:07 (3 months ago)	Unsolicited connection attempt	Brute-Force
🇬🇧 poundawebsiteltd	2026-03-13 01:04:33 (3 months ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 57.128.247.242 - - [13/Mar/2026: ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 57.128.247.242 - - [13/Mar/2026:01:04:31 +0000] GET / HTTP/1.1 403 2844 - Mozilla/5.0 (iPhone; CPU iPhone OS 26_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/15E148 Safari/604.1 musical_ly_43.9.0 BytedanceWebview/d8a21c6 show less	Web App Attack

Showing 1 to 15 of 127 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 112.86.225.97

🇰🇷 222.109.73.135

🇺🇸 216.25.89.79

🇧🇷 204.9.37.234

🇳🇱 176.65.149.194

🇺🇸 172.245.225.106

🇨🇳 121.229.156.12

🇨🇳 112.86.225.213

🇨🇳 101.96.230.94

🇺🇸 64.62.156.181

🇺🇸 3.147.168.15

🇧🇷 191.210.133.134

🇻🇪 190.200.190.242

🇸🇪 185.246.130.20

🇵🇱 178.183.125.51

🇺🇸 172.202.113.251

🇸🇦 141.179.2.195

🇺🇸 52.203.166.17

🇳🇱 45.156.128.41

🇭🇰 43.154.140.188