JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 148.230.70.139

148.230.70.139 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 100%: ?

100%

ISP	Hostinger Operations UAB
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Hostname(s)	sportx.ae
Domain Name	hostinger.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 148.230.70.139

Whois 148.230.70.139

IP Abuse Reports for 148.230.70.139:

This IP address has been reported a total of 38 times from 29 distinct sources. 148.230.70.139 was first reported on May 24th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 netup.at	2026-06-18 20:17:45 (6 days ago)	IP 148.230.70.139 banned by Fail2Ban for sshd on Pangolin-Server	Brute-Force SSH
🇩🇪 grassau.com	2026-06-18 14:53:07 (6 days ago)	(sshd) Failed SSH login from 148.230.70.139 (DE/Germany/Hesse/Frankfurt am Main/sportx.ae)	Brute-Force SSH
🇫🇷 ZO3N	2026-06-18 14:11:34 (6 days ago)	SSH brute force — 3 tentatives, user: worldlab 2026-06-18T15:43:04.385024+02:00 vps-de5e3fcc sshd-se ... show more SSH brute force — 3 tentatives, user: worldlab 2026-06-18T15:43:04.385024+02:00 vps-de5e3fcc sshd-session[451773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.230.70.139 2026-06-18T15:43:06.567047+02:00 vps-de5e3fcc sshd-session[451773]: Failed password for invalid user worldlab from 148.230.70.139 port 57564 ssh2 2026-06-18T16:11:15.836039+02:00 vps-de5e3fcc sshd-session[451916]: Invalid user worldlab from 148.230.70.139 port 42778 show less	Brute-Force SSH
🇧🇾 lns.bz	2026-06-18 13:38:57 (6 days ago)	SSH bruteforce [BY]	SSH
🇦🇹 ipi.at	2026-06-18 11:59:01 (6 days ago)	2026-06-18T13:58:58.131203+02:00 n23 sshd[762078]: pam_unix(sshd:auth): authentication failure; logn ... show more 2026-06-18T13:58:58.131203+02:00 n23 sshd[762078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.230.70.139 2026-06-18T13:59:00.404272+02:00 n23 sshd[762078]: Failed password for invalid user n23 from 148.230.70.139 port 52374 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-18 11:49:52 (6 days ago)	148.230.70.139 (DE/Germany/sportx.ae), 5 distributed sshd attacks on account [root] in the last 3600 ... show more 148.230.70.139 (DE/Germany/sportx.ae), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 18 06:49:44 15066 sshd[8456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.230.70.139 user=root Jun 18 06:49:46 15066 sshd[8456]: Failed password for root from 148.230.70.139 port 51146 ssh2 Jun 18 06:44:40 15066 sshd[5732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.23.84.240 user=root Jun 18 06:28:42 15066 sshd[29281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.23.84.240 user=root Jun 18 06:28:45 15066 sshd[29281]: Failed password for root from 181.23.84.240 port 39417 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇳🇱 GabrielJST	2026-06-18 11:47:06 (6 days ago)	(sshd) Failed SSH login from 148.230.70.139 (DE/Germany/sportx.ae)	Brute-Force SSH
🇫🇷 ✨	2026-06-18 00:04:06 (1 week ago)	Rule : MySQL Rule: MySQL Event: MySQL Access denied for user 'oneprofile'@'148.230.70.139' (using ... show more Rule : MySQL Rule: MySQL Event: MySQL Access denied for user 'oneprofile'@'148.230.70.139' (using password: YES) show less	Port Scan Brute-Force
🇫🇮 inlink.ltd	2026-06-15 12:37:31 (1 week ago)	dot file probe	Web App Attack
🇮🇩 Burayot	2026-06-15 12:19:43 (1 week ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 148.230.70.139 (DE/Germany/sportx.ae ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 148.230.70.139 (DE/Germany/sportx.ae): 2 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 11:54:08 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 148.230.70.139 (sportx.ae): 1 in the last 300 s ... show more (mod_security) mod_security (id:210492) triggered by 148.230.70.139 (sportx.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 07:54:00.983493 2026] [security2:error] [pid 3353:tid 3353] [client 148.230.70.139:60578] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "greasythings.com"] [uri "/api/.env"] [unique_id "ai_n2EHACjYaL3sc0f02vAAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-15 10:03:13 (1 week ago)	[MonJun1512:03:10.8410032026][security2:error][pid4004241:tid4004373][client148.230.70.139:0]ModSecu ... show more [MonJun1512:03:10.8410032026][security2:error][pid4004241:tid4004373][client148.230.70.139:0]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"204\"][id\"390709\"][rev\"30\"][msg\"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely\"][data\"/.env\"][severity\"CRITICAL\"][hostname\"mjgold.ch\"][uri\"/functions/.env\"][unique_id\"ai_N3kyGx7UKdA1Nq0uKpwAAARU\"] show less	Port Scan Brute-Force Web App Attack
🇩🇪 formality	2026-06-15 04:37:40 (1 week ago)	Invalid user teoinsachsen from 148.230.70.139 port 56040	Brute-Force SSH
🇩🇪 Phenix Info	2026-06-15 03:41:30 (1 week ago)	SmallGuard.fr/Prestashop SSH Login failded	Brute-Force
🇺🇸 Zeeaster	2026-06-15 02:31:06 (1 week ago)	abuse-sshd h1	Brute-Force SSH

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 87.236.176.145

🇯🇵 8.216.15.23

🇧🇷 205.210.31.238

🇬🇧 185.216.145.181

🇧🇴 177.222.99.49

🇩🇪 162.158.111.228

🇮🇩 125.160.128.46

🇨🇳 106.117.109.109

🇵🇰 103.151.46.32

🇷🇺 95.84.137.185

🇫🇷 91.231.89.207

🇫🇷 91.231.89.112

🇺🇸 91.230.168.164

🇺🇸 91.230.168.32

🇬🇧 90.200.178.175

🇺🇸 64.62.197.147

🇳🇱 45.148.10.151

🇳🇱 45.148.10.141

🇧🇪 34.38.53.213

🇺🇸 20.83.167.28