JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.148.171.117

135.148.171.117 was found in our database!

This IP was reported 277 times. Confidence of Abuse is 100%: ?

100%

ISP	OVH US LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	ns1011615.ip-135-148-171.us
Domain Name	ovhcloud.com
Country	🇺🇸 United States of America
City	Warrenton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.148.171.117

Whois 135.148.171.117

IP Abuse Reports for 135.148.171.117:

This IP address has been reported a total of 277 times from 152 distinct sources. 135.148.171.117 was first reported on June 26th 2026, and the most recent report was 9 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tecnicorioja	2026-06-28 22:02:04 (9 minutes ago)	wp-login attack [28/Jun/2026:03:40:18	Brute-Force Web App Attack
🇩🇪 FeG Deutschland	2026-06-28 14:35:53 (7 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247	Exploited Host Web App Attack
🇨🇿 plzenskypruvodce.cz	2026-06-28 14:34:03 (7 hours ago)	2026-06-28T16:34:02.536510+02:00 web wordpress(varhanykolin.cz)[2121625]: Immediately block connecti ... show more 2026-06-28T16:34:02.536510+02:00 web wordpress(varhanykolin.cz)[2121625]: Immediately block connections from 135.148.171.117 ... show less	Brute-Force
🇦🇹 nomzamo	2026-06-28 14:13:14 (7 hours ago)	Fail2Ban reported: nginx-noscript	Brute-Force Bad Web Bot
🇬🇧 Mendip_Defender	2026-06-28 13:42:30 (8 hours ago)	135.148.171.117 - - [28/Jun/2026:12:37:46 +0100] "GET /wp-json/wp/v2/users?exclude=999999&per_page=1 ... show more 135.148.171.117 - - [28/Jun/2026:12:37:46 +0100] "GET /wp-json/wp/v2/users?exclude=999999&per_page=100&_fields=id,slug HTTP/1.1" 403 4853 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 135.148.171.117 - - [28/Jun/2026:12:38:55 +0100] "GET /wp-json/wp/v2/users?has_published_posts=true&per_page=100&_fields=slug HTTP/1.1" 403 4853 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 135.148.171.117 - - [28/Jun/2026:14:42:22 +0100] "GET /wp-json/wp/v2/users/4?_fields=id,slug,roles HTTP/1.1" 403 5004 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Hacking Web App Attack
🇫🇷 Security_Whaller	2026-06-28 13:41:51 (8 hours ago)	Malicious activity detected on Honeypot.	Brute-Force Hacking Web App Attack
🇨🇦 SoteriaCovenant	2026-06-28 13:22:38 (8 hours ago)	Automated probe: /wp-json/wp/v2/users on Soteria Global infrastructure. No vulnerable software prese ... show more Automated probe: /wp-json/wp/v2/users on Soteria Global infrastructure. No vulnerable software present. show less	Web App Attack
🇫🇷 dwmp	2026-06-28 13:11:04 (9 hours ago)	[28/Jun/2026:13:14:07.675117 +0200] akEB-2-eRlL5syqD799ATAAAAIo 135.148.171.117 37690 38.242.227.117 ... show more [28/Jun/2026:13:14:07.675117 +0200] akEB-2-eRlL5syqD799ATAAAAIo 135.148.171.117 37690 38.242.227.117 7081 [28/Jun/2026:14:13:43.465394 +0200] akEP97gifdL2KZEvijSogwAAABA 135.148.171.117 40262 38.242.227.117 7081 [28/Jun/2026:15:11:03.458117 +0200] akEdZ2-eRlL5syqD799FFgAAAJU 135.148.171.117 43018 38.242.227.117 7081 ... show less	Brute-Force SSH
🇺🇸 RH5	2026-06-28 12:53:09 (9 hours ago)	Restricted URL probing (/xmlrpc.php) (UTC 2026-06-28 12:53)	Web App Attack
🇩🇪 4server	2026-06-28 12:15:56 (9 hours ago)	[SunJun2814:15:53.7815332026][security2:error][pid1617735:tid1617824][client135.148.171.117:0]ModSec ... show more [SunJun2814:15:53.7815332026][security2:error][pid1617735:tid1617824][client135.148.171.117:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"agilityrossoblu.ch\"][uri\"/wordpress/xmlrpc.php\"][unique_id\"akEQebNNz6gLzeR-JSJI9AAAAMM\"] show less	Port Scan Brute-Force Web App Attack
🇩🇪 gadix	2026-06-28 12:07:15 (10 hours ago)	[28/Jun/2026:12:53:20.838275 +0200] akD9IOiDuDyjI9XIwOqWewAAAQ8 135.148.171.117 35178 127.0.0.1 7081 ... show more [28/Jun/2026:12:53:20.838275 +0200] akD9IOiDuDyjI9XIwOqWewAAAQ8 135.148.171.117 35178 127.0.0.1 7081 [28/Jun/2026:13:17:17.096274 +0200] akECvH30FaTq8Xe2fmNLtgAAAEE 135.148.171.117 45922 127.0.0.1 7081 [28/Jun/2026:14:07:12.639367 +0200] akEOcOiDuDyjI9XIwOqaNAAAAQY 135.148.171.117 39158 127.0.0.1 7081 ... show less	Web App Attack
🇫🇮 6kilowatti	2026-06-28 11:39:53 (10 hours ago)	135.148.171.117 - - [28/Jun/2026:14:39:52 +0300] "GET /feed/json?password-protected=login&redirect_t ... show more 135.148.171.117 - - [28/Jun/2026:14:39:52 +0300] "GET /feed/json?password-protected=login&redirect_to=https%3A%2F%2Flvi-viitala.6kw.fi%2Ffeed%2Fjson%2F HTTP/1.1" 404 1573 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36, Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Web App Attack
🇬🇧 Mendip_Defender	2026-06-28 11:39:03 (10 hours ago)	[28/Jun/2026:12:37:46.907935 +0100] akEHim5KIt8kx6m3nD_HPAAAAE8 135.148.171.117 46934 188.246.206.60 ... show more [28/Jun/2026:12:37:46.907935 +0100] akEHim5KIt8kx6m3nD_HPAAAAE8 135.148.171.117 46934 188.246.206.60 7081 [28/Jun/2026:12:38:55.716791 +0100] akEHz25KIt8kx6m3nD_HTwAAAFM 135.148.171.117 57210 188.246.206.60 7081 ... show less	Brute-Force
🇸🇰 DSSMART	2026-06-28 11:30:56 (10 hours ago)	Automatic report from DSSM firewall log.	Port Scan Hacking Brute-Force
🇺🇸 xxkodedxx	2026-06-28 11:30:02 (10 hours ago)	[Zorvexus edge-defense] GET .env / WordPress honeypot probe Trigger: 1× honeypot-get in 10m window. ... show more [Zorvexus edge-defense] GET .env / WordPress honeypot probe Trigger: 1× honeypot-get in 10m window. Active: 11:29:32 UTC Volume: 1 honeypot probe(s) Bait taken: /wp-json/wp/v2/users?slug=admin&_fields=id,slug UA: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" Auto-banned 30d. zorvexus-banner. show less	Bad Web Bot Web App Attack

Showing 1 to 15 of 277 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇱 201.186.40.250

🇬🇧 195.96.139.246

🇧🇷 190.83.4.221

🇫🇷 85.217.140.51

🇨🇳 222.176.200.119

🇭🇰 165.154.41.201

🇭🇰 103.158.29.100

🇩🇪 92.246.91.215

🇸🇪 83.177.240.110

🇺🇸 72.10.32.138

🇺🇸 67.205.168.91

🇧🇪 34.78.29.97

🇺🇸 209.222.98.158

🇭🇰 103.72.147.96

🇩🇪 92.246.90.152

🇲🇾 47.250.43.176

🇬🇭 41.242.115.83

🇺🇸 34.148.124.80

🇺🇸 20.14.78.253

🇦🇷 190.110.179.239