JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 151.80.133.111

151.80.133.111 was found in our database!

This IP was reported 419 times. Confidence of Abuse is 100%: ?

100%

ISP	OVH SAS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	vps-c9b1691e.vps.ovh.net
Domain Name	ovhcloud.com
Country	🇫🇷 France
City	Strasbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 151.80.133.111

Whois 151.80.133.111

IP Abuse Reports for 151.80.133.111:

This IP address has been reported a total of 419 times from 96 distinct sources. 151.80.133.111 was first reported on May 5th 2025, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 DZBOT	2026-06-20 07:30:22 (4 hours ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇫🇷 EDSL	2026-06-20 07:13:15 (5 hours ago)	[mail.edsl.fr] Blocked by SysWarden Firewall (Web Attack)	Web App Attack Hacking Port Scan
🇺🇸 Starburst SysOp Team	2026-06-20 01:07:25 (11 hours ago)	URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .b ... show more URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .backup/ .bak/ .bck/ .bk/ .bkp/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .cnf/ .com/ .compositefont/ .config/ .conf/ .copy/ .crt/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dist/ .dll/ .dos/ .dpkg-dist/ .drv/ .gadget/ .hta/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .inf/ .ini/ .jks/ .jse/ .key/ .licx/ .lnk/ .log/ .mdb/ .msc/ .ocx/ .old/ .pass/ .pdb/ .pfx/ .pif/ .pem/ .pol/ .prf/ .printer/ .pwd/ .rdb/ .rdp/ .reg/ .resources/ .resx/ .sav/ .save/ .scr/ .sct/ .sh/ .shs/ .sql/ .sqlite/ .sqlite3/ .swap/ .swo/ .swp/ .sys/ .temp/ .tfstate/ .tlb/ .tmp/ .vb/ .vbe/ .vbs/ .vbproj/ .vsdisco/ .vxd/ .webinfo/ .ws/ .wsc/ .wsf/ .wsh/ .xsd/ .xsx/" at TX:extension. (920440-mnz6-5) show less	Hacking
🇮🇹 A000Z	2026-06-19 18:44:06 (17 hours ago)	Fail2Ban: 151.80.133.111 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5 ... show more Fail2Ban: 151.80.133.111 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36 show less	Bad Web Bot
Anonymous	2026-06-19 09:20:04 (1 day ago)	FortiWeb WAF: 90 attacks detected. Threat Score: 31200. Types: Client Management(45), Block IP List( ... show more FortiWeb WAF: 90 attacks detected. Threat Score: 31200. Types: Client Management(45), Block IP List(45). Origin: France. show less	Web App Attack
🇩🇪 FeG Deutschland	2026-06-19 05:21:54 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 28	Exploited Host Web App Attack
🇩🇪 Hugopvigo	2026-06-18 20:42:47 (1 day ago)	"2026-06-18 20:42:47+00:00 151.80.133.111 IP con score alto (100) detectada en el log."	Brute-Force SSH
🇨🇭 backslash	2026-06-18 20:33:00 (1 day ago)	block ruleset WAF detection and high score on abuseIPDB 149EB1B42C242111FADBBC2EF8F90219570691E1	Bad Web Bot
🇺🇸 nodepile	2026-06-18 16:35:20 (1 day ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/media/catalog/product/cache ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/media/catalog/product/cache/0bc7e8298c705bb0d1bb16a5dfbdb6bc/1/_/1_185_15.jpg ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36') show less	Web App Attack Exploited Host
🇬🇷 setupgr	2026-06-18 04:59:03 (2 days ago)	(mod_security) mod_security (id:11000011) triggered by 151.80.133.111 (FR/France/Grand Est/Strasbour ... show more (mod_security) mod_security (id:11000011) triggered by 151.80.133.111 (FR/France/Grand Est/Strasbourg/-/[AS16276 OVH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 18 07:59:02.979023 2026] [security2:error] [pid 3040547:tid 3040588] [client 151.80.133.111:58764] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "ovh.net" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: vps-c9b1691e.vps.ovh.net"] [severity "CRITICAL"] [hostname "ftiaxtomonosou.gr"] [uri "/wp-content/uploads/2020/01/softboard.jpg"] [unique_id "ajN7FnJQXt_97GWFlLmIlwAAAE4"] show less	Port Scan
Anonymous	2026-06-18 04:51:09 (2 days ago)	Botnet activity	Port Scan Brute-Force
🇬🇷 setupgr	2026-06-18 00:41:13 (2 days ago)	(mod_security) mod_security (id:11000011) triggered by 151.80.133.111 (FR/France/Grand Est/Strasbour ... show more (mod_security) mod_security (id:11000011) triggered by 151.80.133.111 (FR/France/Grand Est/Strasbourg/-/[AS16276 OVH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 18 03:41:11.446691 2026] [security2:error] [pid 3029349:tid 3029380] [client 151.80.133.111:45550] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "ovh.net" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: vps-c9b1691e.vps.ovh.net"] [severity "CRITICAL"] [hostname "ftiaxtomonosou.gr"] [uri "/wp-content/uploads/2019/07/%CE%9A%CE%BF%CE%BC%CE%BC%CF%89%CF%84%CE%AE%CF%81%CE%B9%CE%BF05.jpg"] [unique_id "ajM-p4g6-UBtGfL1mHsmjwAAAMQ"] show less	Port Scan
🇬🇷 setupgr	2026-06-17 17:41:40 (2 days ago)	(mod_security) mod_security (id:11000011) triggered by 151.80.133.111 (FR/France/Grand Est/Strasbour ... show more (mod_security) mod_security (id:11000011) triggered by 151.80.133.111 (FR/France/Grand Est/Strasbourg/-/[AS16276 OVH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 17 20:41:35.559769 2026] [security2:error] [pid 2210294:tid 2210395] [client 151.80.133.111:55998] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "ovh.net" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: vps-c9b1691e.vps.ovh.net"] [severity "CRITICAL"] [hostname "ftiaxtomonosou.gr"] [uri "/wp-content/uploads/2019/06/%CE%A3%CE%BA%CE%AC%CF%86%CE%BF%CF%82-deck01.jpg"] [unique_id "ajLcT7hY-m9nTIYxKGQfvAAAAYg"] show less	Port Scan
🇬🇷 setupgr	2026-06-17 13:10:46 (2 days ago)	(mod_security) mod_security (id:11000011) triggered by 151.80.133.111 (FR/France/Grand Est/Strasbour ... show more (mod_security) mod_security (id:11000011) triggered by 151.80.133.111 (FR/France/Grand Est/Strasbourg/-/[AS16276 OVH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 17 16:10:45.318922 2026] [security2:error] [pid 2280080:tid 2280112] [client 151.80.133.111:56728] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "ovh.net" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: vps-c9b1691e.vps.ovh.net"] [severity "CRITICAL"] [hostname "ftiaxtomonosou.gr"] [uri "/%CF%80%CE%BF%CF%81%CF%84%CE%AC%CE%BA%CE%B9%CE%B1/page/2/"] [unique_id "ajKc1csskNLCXd8cDXS1hwAAAAU"] show less	Port Scan
Anonymous	2026-06-17 09:24:19 (3 days ago)	FortiWeb WAF: 70 attacks detected. Threat Score: 17800. Types: Client Management(35), Block IP List( ... show more FortiWeb WAF: 70 attacks detected. Threat Score: 17800. Types: Client Management(35), Block IP List(35). Origin: France. show less	Web App Attack

Showing 1 to 15 of 419 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.22.5.144

🇨🇿 77.237.158.44

🇹🇭 203.154.158.195

🇺🇸 95.173.221.189

🇱🇹 81.30.98.142

🇻🇳 36.50.134.129

🇬🇧 35.203.210.85

🇻🇪 200.71.154.142

🇨🇦 142.93.158.243

🇨🇳 140.246.137.102

🇨🇳 106.75.144.128

🇨🇳 101.200.91.165

🇷🇴 92.118.39.234

🇻🇳 203.205.37.233

🇲🇽 189.203.163.10

🇳🇱 176.65.139.56

🇵🇰 175.107.233.255

🇹🇼 172.69.221.71

🇹🇳 102.152.22.25

🇳🇱 91.92.40.204