Bensay - AbuseIPDB User Profile

User Bensay joined AbuseIPDB in August 2023 and has reported 10,262 IP addresses.

Standing (weight) is good.

ACTIVE USER WEBMASTER SUPPORTER

IP	Date	Comment	Categories
13.74.158.147	17 minutes ago	[Mon Jun 16 03:07:31.037095 2025] [proxy_fcgi:error] [pid 314331:tid 314331] [client 13.74.158.147:8 ... show more[Mon Jun 16 03:07:31.037095 2025] [proxy_fcgi:error] [pid 314331:tid 314331] [client 13.74.158.147:8949] AH01071: Got error 'Primary script unknown' [Mon Jun 16 03:07:31.185691 2025] [proxy_fcgi:error] [pid 314331:tid 314331] [client 13.74.158.147:8949] AH01071: Got error 'Primary script unknown' ... show less	Hacking Bad Web Bot Web App Attack
107.172.243.131	17 minutes ago	2025-06-16T00:08:09.102310+02:00 bzhbenjouille.ovh postfix/smtpd[270460]: warning: unknown[107.172.2 ... show more2025-06-16T00:08:09.102310+02:00 bzhbenjouille.ovh postfix/smtpd[270460]: warning: unknown[107.172.243.131]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=test 2025-06-16T03:07:15.469043+02:00 bzhbenjouille.ovh postfix/smtpd[413384]: warning: unknown[107.172.243.131]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=test ... show less	Email Spam Port Scan Brute-Force Exploited Host
198.55.98.164	2 hours ago	2025-06-16T01:15:49.663700+02:00 bzhbenjouille.ovh auth[324937]: pam_unix(dovecot:auth): authenticat ... show more2025-06-16T01:15:49.663700+02:00 bzhbenjouille.ovh auth[324937]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=user rhost=198.55.98.164 2025-06-16T01:15:52.272162+02:00 bzhbenjouille.ovh dovecot[848]: auth-worker(324937): conn unix:auth-worker (pid=321301,uid=0): auth-worker<6>: passwd(user,198.55.98.164): unknown user ... show less	Email Spam Port Scan Brute-Force Exploited Host
196.251.66.57	2 hours ago	196.251.66.57 - - [16/Jun/2025:00:30:01 +0200] "GET /wordpress HTTP/1.1" 404 440 "-" "-" 196.2 ... show more196.251.66.57 - - [16/Jun/2025:00:30:01 +0200] "GET /wordpress HTTP/1.1" 404 440 "-" "-" 196.251.66.57 - - [16/Jun/2025:00:30:01 +0200] "GET /wp-admin/setup-config.php HTTP/1.1" 404 440 "-" "-" 196.251.66.57 - - [16/Jun/2025:00:30:01 +0200] "GET /wp-admin/install.php HTTP/1.1" 404 440 "-" "-" 196.251.66.57 - - [16/Jun/2025:00:30:01 +0200] "GET /wp HTTP/1.1" 404 440 "-" "-" 196.251.66.57 - - [16/Jun/2025:00:30:01 +0200] "GET /blog HTTP/1.1" 404 440 "-" "-" ... show less	Hacking Bad Web Bot Web App Attack
103.161.172.57	3 hours ago	2025-06-16T00:21:39.507416+02:00 bzhbenjouille.ovh auth[282423]: pam_unix(dovecot:auth): authenticat ... show more2025-06-16T00:21:39.507416+02:00 bzhbenjouille.ovh auth[282423]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=test rhost=103.161.172.57 2025-06-16T00:21:40.955112+02:00 bzhbenjouille.ovh dovecot[848]: auth-worker(282416): conn unix:auth-worker (pid=280093,uid=0): auth-worker<4>: passwd(test,103.161.172.57): unknown user ... show less	Email Spam Port Scan Brute-Force Exploited Host
103.161.172.35	3 hours ago	2025-06-16T00:21:39.476740+02:00 bzhbenjouille.ovh auth[282420]: pam_unix(dovecot:auth): authenticat ... show more2025-06-16T00:21:39.476740+02:00 bzhbenjouille.ovh auth[282420]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=test rhost=103.161.172.35 2025-06-16T00:21:40.921114+02:00 bzhbenjouille.ovh dovecot[848]: auth-worker(282416): conn unix:auth-worker (pid=280093,uid=0): auth-worker<3>: passwd(test,103.161.172.35): unknown user ... show less	Email Spam Port Scan Brute-Force Exploited Host
103.161.172.63	3 hours ago	2025-06-16T00:21:39.457116+02:00 bzhbenjouille.ovh auth[282416]: pam_unix(dovecot:auth): authenticat ... show more2025-06-16T00:21:39.457116+02:00 bzhbenjouille.ovh auth[282416]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=test rhost=103.161.172.63 2025-06-16T00:21:40.893364+02:00 bzhbenjouille.ovh dovecot[848]: auth-worker(282416): conn unix:auth-worker (pid=280093,uid=0): auth-worker<2>: passwd(test,103.161.172.63): unknown user ... show less	Email Spam Port Scan Brute-Force Exploited Host
27.254.118.114	3 hours ago	Mon Jun 16 00:09:49.818262 202527.254.118.114 - - [16/Jun/2025:00:09:51 +0200] "POST /hello.world?%A ... show moreMon Jun 16 00:09:49.818262 202527.254.118.114 - - [16/Jun/2025:00:09:51 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1" 404 490 "-" "Custom-AsyncHttpClient" Mon Jun 16 00:09:49.818262 202527.254.118.114 - - [16/Jun/2025:00:09:51 +0200] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 489 "-" "Custom-AsyncHttpClient" Mon Jun 16 00:09:49.818262 202527.254.118.114 - - [16/Jun/2025:00:09:52 +0200] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 489 "-" "Custom-AsyncHttpClient" Mon Jun 16 00:09:49.818262 202527.254.118.114 - - [16/Jun/2025:00:09:52 +0200] "GET /vendor/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 489 "-" "Custom-AsyncHttpClient" Mon Jun 16 00:09:49.818262 202527.254.118.114 - - [16/Jun/2025:00:09:52 +0200] "GET /vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 489 "-" "Custom-AsyncHttpClient" ... show less	Hacking Bad Web Bot Web App Attack
23.94.251.170	3 hours ago	2025-06-16T00:07:55.705147+02:00 bzhbenjouille.ovh auth[270463]: pam_unix(dovecot:auth): authenticat ... show more2025-06-16T00:07:55.705147+02:00 bzhbenjouille.ovh auth[270463]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=test rhost=23.94.251.170 2025-06-16T00:07:58.017679+02:00 bzhbenjouille.ovh dovecot[848]: auth-worker(270463): conn unix:auth-worker (pid=269949,uid=0): auth-worker<2>: passwd(test,23.94.251.170): unknown user ... show less	Email Spam Port Scan Brute-Force Exploited Host
67.164.238.63	5 hours ago	2025-06-15T21:57:31.254653+02:00 bzhbenjouille.ovh auth[166345]: pam_unix(dovecot:auth): authenticat ... show more2025-06-15T21:57:31.254653+02:00 bzhbenjouille.ovh auth[166345]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot [email protected] rhost=67.164.238.63 2025-06-15T21:57:33.806293+02:00 bzhbenjouille.ovh dovecot[848]: auth-worker(166345): conn unix:auth-worker (pid=3166,uid=0): auth-worker<10>: passwd([email protected],67.164.238.63): unknown user ... show less	Email Spam Port Scan Brute-Force Exploited Host
175.125.68.208	5 hours ago	2025-06-15T21:57:13.151738+02:00 bzhbenjouille.ovh auth[166345]: pam_unix(dovecot:auth): authenticat ... show more2025-06-15T21:57:13.151738+02:00 bzhbenjouille.ovh auth[166345]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot [email protected] rhost=175.125.68.208 2025-06-15T21:57:15.566139+02:00 bzhbenjouille.ovh dovecot[848]: auth-worker(166345): conn unix:auth-worker (pid=3166,uid=0): auth-worker<8>: passwd([email protected],175.125.68.208): unknown user ... show less	Email Spam Port Scan Brute-Force Exploited Host
121.15.177.173	5 hours ago	2025-06-15T21:57:00.873393+02:00 bzhbenjouille.ovh auth[166345]: pam_unix(dovecot:auth): authenticat ... show more2025-06-15T21:57:00.873393+02:00 bzhbenjouille.ovh auth[166345]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot [email protected] rhost=121.15.177.173 2025-06-15T21:57:03.175093+02:00 bzhbenjouille.ovh dovecot[848]: auth-worker(166345): conn unix:auth-worker (pid=3166,uid=0): auth-worker<6>: passwd([email protected],121.15.177.173): unknown user ... show less	Email Spam Port Scan Brute-Force Exploited Host
1.34.51.163	5 hours ago	2025-06-15T21:56:47.622991+02:00 bzhbenjouille.ovh auth[166345]: pam_unix(dovecot:auth): authenticat ... show more2025-06-15T21:56:47.622991+02:00 bzhbenjouille.ovh auth[166345]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot [email protected] rhost=1.34.51.163 2025-06-15T21:56:49.469639+02:00 bzhbenjouille.ovh dovecot[848]: auth-worker(166345): conn unix:auth-worker (pid=3166,uid=0): auth-worker<4>: passwd([email protected],1.34.51.163): unknown user ... show less	Email Spam Port Scan Brute-Force Exploited Host
183.94.220.9	5 hours ago	2025-06-15T21:56:32.275382+02:00 bzhbenjouille.ovh auth[166345]: pam_unix(dovecot:auth): authenticat ... show more2025-06-15T21:56:32.275382+02:00 bzhbenjouille.ovh auth[166345]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot [email protected] rhost=183.94.220.9 2025-06-15T21:56:34.389647+02:00 bzhbenjouille.ovh dovecot[848]: auth-worker(166345): conn unix:auth-worker (pid=3166,uid=0): auth-worker<2>: passwd([email protected],183.94.220.9): unknown user ... show less	Email Spam Port Scan Brute-Force Exploited Host
107.170.69.71	5 hours ago	[Sun Jun 15 21:25:42.808042 2025] [proxy_fcgi:error] [pid 10769:tid 10769] [client 107.170.69.71:349 ... show more[Sun Jun 15 21:25:42.808042 2025] [proxy_fcgi:error] [pid 10769:tid 10769] [client 107.170.69.71:34902] AH01071: Got error 'Primary script unknown' [Sun Jun 15 21:25:43.120035 2025] [proxy_fcgi:error] [pid 12070:tid 12070] [client 107.170.69.71:33130] AH01071: Got error 'Primary script unknown' ... show less	Hacking Bad Web Bot Web App Attack
217.34.32.192	6 hours ago	2025-06-15T20:53:19.939673+02:00 bzhbenjouille.ovh postfix/smtpd[115734]: NOQUEUE: reject: RCPT from ... show more2025-06-15T20:53:19.939673+02:00 bzhbenjouille.ovh postfix/smtpd[115734]: NOQUEUE: reject: RCPT from host217-34-32-192.in-addr.btopenworld.com[217.34.32.192]: 554 5.7.1 Service unavailable; Client host [217.34.32.192] blocked using b.barracudacentral.org; http://www.barracudanetworks.com/reputation/?pr=1&ip=217.34.32.192; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<SH2ppc> ... show less	Email Spam Port Scan Brute-Force Exploited Host
34.83.78.18	11 hours ago	34.83.78.18 - - [15/Jun/2025:16:04:37 +0200] "HEAD /wordpress HTTP/1.1" 404 140 "-" "Mozilla/5.0 (Wi ... show more34.83.78.18 - - [15/Jun/2025:16:04:37 +0200] "HEAD /wordpress HTTP/1.1" 404 140 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 34.83.78.18 - - [15/Jun/2025:16:04:38 +0200] "HEAD /wp HTTP/1.1" 404 140 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 34.83.78.18 - - [15/Jun/2025:16:04:38 +0200] "HEAD /bc HTTP/1.1" 404 140 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 34.83.78.18 - - [15/Jun/2025:16:04:38 +0200] "HEAD /bk HTTP/1.1" 404 140 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 34.83.78.18 - - [15/Jun/2025:16:04:38 +0200] "HEAD /backup HTTP/1.1" 404 140 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" ... show less	Hacking Bad Web Bot Web App Attack
34.53.86.225	13 hours ago	34.53.86.225 - - [15/Jun/2025:13:29:39 +0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 495 "- ... show more34.53.86.225 - - [15/Jun/2025:13:29:39 +0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 495 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" Sun Jun 15 13:29:39.213015 202534.53.86.225 - - [15/Jun/2025:13:29:39 +0200] "GET /xmlrpc.php?rsd HTTP/1.1" 404 245 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" Sun Jun 15 13:29:39.213015 202534.53.86.225 - - [15/Jun/2025:13:29:39 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 495 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" Sun Jun 15 13:29:39.213015 202534.53.86.225 - - [15/Jun/2025:13:29:39 +0200] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 495 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" Sun Jun 15 13:29:39.213015 2025 ... show less	Hacking Bad Web Bot Web App Attack
107.170.37.104	17 hours ago	107.170.37.104 - - [15/Jun/2025:09:40:04 +0200] "GET /t4 HTTP/1.1" 404 434 "-" "Mozilla/5.0" 1 ... show more107.170.37.104 - - [15/Jun/2025:09:40:04 +0200] "GET /t4 HTTP/1.1" 404 434 "-" "Mozilla/5.0" 107.170.37.104 - - [15/Jun/2025:09:40:04 +0200] "GET /geoip/ HTTP/1.1" 404 434 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" Sun Jun 15 09:40:05.264111 2025107.170.37.104 - - [15/Jun/2025:09:40:05 +0200] "GET /password.php HTTP/1.1" 404 228 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" Sun Jun 15 09:40:05.699266 2025107.170.37.104 - - [15/Jun/2025:09:40:05 +0200] "GET /upl.php HTTP/1.1" 404 228 "-" "Mozilla/5.0" Sun Jun 15 09:40:05.699266 2025107.170.37.104 - - [15/Jun/2025:09:40:06 +0200] "GET /form.html HTTP/1.1" 404 434 "-" "curl/8.1.2" ... show less	Hacking Bad Web Bot Web App Attack
157.245.152.86	20 hours ago	157.245.152.86 - - [15/Jun/2025:07:06:36 +0200] "GET /wp-admin/css/ HTTP/1.1" 404 496 "binance.com" ... show more157.245.152.86 - - [15/Jun/2025:07:06:36 +0200] "GET /wp-admin/css/ HTTP/1.1" 404 496 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 157.245.152.86 - - [15/Jun/2025:07:06:43 +0200] "GET /.well-known/ HTTP/1.1" 404 496 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 157.245.152.86 - - [15/Jun/2025:07:06:51 +0200] "GET /sites/default/files/ HTTP/1.1" 404 496 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 157.245.152.86 - - [15/Jun/2025:07:06:57 +0200] "GET /admin/controller/extension/extension/ HTTP/1.1" 404 496 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 157.245.152.86 - - [15/Jun/2025:07:07:05 +0200] "GET /uploads/ HTTP/1.1" 404 496 "binance.com" "Mozill ... show less	Hacking Bad Web Bot Web App Attack
45.135.164.130	14 Jun 2025	2025-06-14T23:29:09.504236+02:00 bzhbenjouille.ovh postfix/smtpd[3033397]: NOQUEUE: reject: RCPT fro ... show more2025-06-14T23:29:09.504236+02:00 bzhbenjouille.ovh postfix/smtpd[3033397]: NOQUEUE: reject: RCPT from unknown[45.135.164.130]: 554 5.7.1 Service unavailable; Client host [45.135.164.130] blocked using truncate.gbudb.net; http://www.gbudb.com/truncate/ [45.135.164.130]; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<stonesaga.com> ... show less	Email Spam Port Scan Brute-Force Exploited Host
188.166.28.160	14 Jun 2025	[Sat Jun 14 21:40:35.882574 2025] [proxy_fcgi:error] [pid 2743403:tid 2743403] [client 188.166.28.16 ... show more[Sat Jun 14 21:40:35.882574 2025] [proxy_fcgi:error] [pid 2743403:tid 2743403] [client 188.166.28.160:40100] AH01071: Got error 'Primary script unknown' [Sat Jun 14 21:40:36.046711 2025] [proxy_fcgi:error] [pid 2743401:tid 2743401] [client 188.166.28.160:40154] AH01071: Got error 'Primary script unknown' ... show less	Hacking Bad Web Bot Web App Attack
194.87.239.179	14 Jun 2025	2025-06-14T20:55:08.029755+02:00 bzhbenjouille.ovh postfix/smtpd[2892656]: NOQUEUE: reject: RCPT fro ... show more2025-06-14T20:55:08.029755+02:00 bzhbenjouille.ovh postfix/smtpd[2892656]: NOQUEUE: reject: RCPT from unknown[194.87.239.179]: 554 5.7.1 Service unavailable; Client host [194.87.239.179] blocked using bl.spamcop.net; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<fvdl.ie> ... show less	Email Spam Port Scan Brute-Force Exploited Host
117.30.88.24	14 Jun 2025	2025-06-14T20:30:13.689213+02:00 bzhbenjouille.ovh postfix/smtpd[2869341]: NOQUEUE: reject: RCPT fro ... show more2025-06-14T20:30:13.689213+02:00 bzhbenjouille.ovh postfix/smtpd[2869341]: NOQUEUE: reject: RCPT from unknown[117.30.88.24]: 554 5.7.1 Service unavailable; Client host [117.30.88.24] blocked using bl.spamcop.net; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<mail.bstu.by> ... show less	Email Spam Port Scan Brute-Force Exploited Host
109.248.60.5	14 Jun 2025	2025-06-14T14:57:35.664820+02:00 bzhbenjouille.ovh postfix/smtpd[2631147]: NOQUEUE: reject: RCPT fro ... show more2025-06-14T14:57:35.664820+02:00 bzhbenjouille.ovh postfix/smtpd[2631147]: NOQUEUE: reject: RCPT from unknown[109.248.60.5]: 554 5.7.1 Service unavailable; Client host [109.248.60.5] blocked using truncate.gbudb.net; http://www.gbudb.com/truncate/ [109.248.60.5]; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<zimbra.regsv.com> ... show less	Email Spam Port Scan Brute-Force Exploited Host