JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 148.135.151.125

148.135.151.125 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 0%: ?

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS393886
Domain Name	netutils.io
Country	🇺🇸 United States of America
City	Miami, Florida

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 148.135.151.125

Whois 148.135.151.125

IP Abuse Reports for 148.135.151.125:

This IP address has been reported a total of 4 times from 3 distinct sources. 148.135.151.125 was first reported on March 15th 2025, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-22 13:33:54 (4 weeks ago)	LH-Watcher: FAKE_ID [Fake Googlebot]	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-01 07:00:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 148.135.151.125 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 148.135.151.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 02:00:25.621507 2025] [security2:error] [pid 29337:tid 29431] [client 148.135.151.125:38545] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.kettlehill.com"] [uri "/.env"] [unique_id "aS09CYKlB8tvUjDrPEd9zgAAARQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-01 14:24:12 (7 months ago)	(mod_security) mod_security (id:217200) triggered by 148.135.151.125 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:217200) triggered by 148.135.151.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 01 10:24:08.814862 2025] [security2:error] [pid 27531:tid 27556] [client 148.135.151.125:43301] ModSecurity: Access denied with code 403 (phase 1). Match of "endsWith /wp-cron.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "103"] [id "217200"] [rev "2"] [msg "COMODO WAF: HTTP/1.1 POST request missing Content-Length Header\|\|cpanel.kettlehill.net:443\|F\|2"] [data "/cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh"] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "cpanel.kettlehill.net"] [uri "/cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh"] [unique_id "aQYYCH2WO2IkxYJ6zsL-owAAARc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 bitpanda	2025-03-15 00:02:25 (1 year ago)	Malicious activity detected by Imunify360	Brute-Force SSH

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.32.209.247

🇫🇷 163.172.143.147

🇻🇳 115.76.51.76

🇳🇱 91.92.40.14

🇨🇿 45.156.223.31

🇩🇪 8.211.42.24

🇳🇱 176.65.139.181

🇳🇱 176.65.139.99

🇸🇬 159.65.2.17

🇺🇸 154.6.110.30

🇺🇸 129.146.243.24

🇨🇳 49.64.85.138

🇷🇴 2.57.122.238

🇨🇳 220.197.85.196

🇩🇪 217.154.253.251

🇮🇳 124.253.217.110

🇩🇪 94.249.178.153

🇳🇱 45.198.224.138

🇳🇱 45.148.10.36

🇳🇱 45.142.193.35