JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 155.117.98.117

155.117.98.117 was found in our database!

This IP was reported 340 times. Confidence of Abuse is 8%: ?

ISP	Brander Group Inc
Usage Type	Data Center/Web Hosting/Transit
ASN	AS153656
Domain Name	brandergroup.net
Country	🇭🇰 Hong Kong
City	Tung Chung, Islands

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 155.117.98.117

Whois 155.117.98.117

IP Abuse Reports for 155.117.98.117:

This IP address has been reported a total of 340 times from 144 distinct sources. 155.117.98.117 was first reported on October 14th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ghostwarriors	2026-05-28 10:50:33 (3 weeks ago)	Unauthorized connection to FTP port 21	FTP Brute-Force Brute-Force
🇩🇪 ghostwarriors	2026-05-16 21:51:39 (1 month ago)	Unauthorized connection to FTP port 21	FTP Brute-Force Brute-Force
🇩🇪 ghostwarriors	2026-05-09 15:20:54 (1 month ago)	Unauthorized connection to FTP port 21	FTP Brute-Force Brute-Force
🇩🇪 ghostwarriors	2026-05-05 17:50:41 (1 month ago)	Unauthorized connection to FTP port 21	FTP Brute-Force Brute-Force
🇮🇳 evicky2002	2026-04-30 13:04:29 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=98, sources=1)	Hacking Brute-Force SSH
🇬🇧 consul.to	2026-04-25 03:09:31 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇵🇱 nfsec.pl	2026-04-25 02:50:25 (1 month ago)	155.117.98.117 - - [25/Apr/2026:02:50:22 +0000] "GET /nacos/v1/console/server/state HTTP/1.1" 404 29 ... show more 155.117.98.117 - - [25/Apr/2026:02:50:22 +0000] "GET /nacos/v1/console/server/state HTTP/1.1" 404 29776 "-" "Mozilla/5.0 (Nacos-AKSK-Scanner/1.0)" 155.117.98.117 - - [25/Apr/2026:02:50:23 +0000] "GET /nacos/v1/console/namespaces HTTP/1.1" 404 25193 "-" "Mozilla/5.0 (Nacos-AKSK-Scanner/1.0)" 155.117.98.117 - - [25/Apr/2026:02:50:24 +0000] "GET /nacos/v1/console/namespaces HTTP/1.1" 404 25205 "-" "Nacos-Server" 155.117.98.117 - - [25/Apr/2026:02:50:24 +0000] "POST /nacos/v1/auth/users/login HTTP/1.1" 403 413 "-" "Mozilla/5.0 (Nacos-AKSK-Scanner/1.0)" 155.117.98.117 - - [25/Apr/2026:02:50:25 +0000] "POST /nacos/v1/auth/users/login HTTP/1.1" 403 413 "-" "Mozilla/5.0 (Nacos-AKSK-Scanner/1.0)" ... show less	Web App Attack Exploited Host
🇺🇸 nyt	2026-04-24 23:45:49 (2 months ago)	Bad Web Bot, Web App Attack, suspicious: Scanner UA	Bad Web Bot Web App Attack
🇧🇾 lns.bz	2026-04-24 02:32:54 (2 months ago)	Too many 404 requests [BY]	Web App Attack
🇧🇪 voormedia	2026-04-24 02:30:29 (2 months ago)	Accessed trap at '/.git/config'	Web App Attack
🇪🇸 el-brujo	2026-04-24 00:47:27 (2 months ago)	Cloudflare WAF: Request Path: /web.config Request Query: Host: elhacker.net userAgent: Mozilla/5.0 ... show more Cloudflare WAF: Request Path: /web.config Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) Action: block Source: firewallManaged ASN Description: OWGELS INTERNATIONAL CO., LIMITED Country: HK Method: GET Timestamp: 2026-04-24T00:47:27Z ruleId: c2a2f414a67c409f90cccb6c5bba0215. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇨🇳 ThreatBook.io	2026-04-24 00:19:48 (2 months ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/155.117.98.117 2026 ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/155.117.98.117 2026-04-23 01:15:17 /xxxss 2026-04-23 01:12:20 /xxxss 2026-04-23 01:17:41 /xxxss show less	Web App Attack
🇺🇸 TPI-Abuse	2026-04-23 21:27:48 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 155.117.98.117 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 155.117.98.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 23 17:27:42.012825 2026] [security2:error] [pid 11963:tid 11977] [client 155.117.98.117:63809] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.officialseniorworldgolfranking.com"] [uri "/.env"] [unique_id "aeqOzvufe-4FAxkDeQv7mwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 PeravixGroup	2026-04-22 17:12:38 (2 months ago)	HoneyPot hit - Aaran.cloud \| Web Scan \| web exploitation \| GET /xxxss HTTP/1.1 Host: 103.1.73.163 Us ... show more HoneyPot hit - Aaran.cloud \| Web Scan \| web exploitation \| GET /xxxss HTTP/1.1 Host: 103.1.73.163 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gec show less	Web App Attack
🇨🇳 ThreatBook.io	2026-04-22 01:08:32 (2 months ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/155.117.98.117 2026 ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/155.117.98.117 2026-04-21 01:55:24 /ote.php?ote 2026-04-21 01:57:12 /ote.php?ote 2026-04-21 01:52:59 /ote.php?ote show less	Web App Attack

Showing 1 to 15 of 340 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 207.154.230.149

🇺🇸 179.61.232.245

🇮🇳 152.52.51.202

🇨🇳 150.139.201.247

🇨🇦 67.71.55.209

🇺🇸 64.62.156.132

🇳🇱 45.198.224.115

🇺🇸 34.226.5.110

🇨🇳 223.88.58.220

🇷🇺 193.233.94.108

🇲🇽 189.175.227.33

🇬🇧 185.247.137.244

🇮🇩 182.8.89.88

🇳🇱 176.65.139.234

🇨🇳 123.245.84.229

🇰🇷 121.164.144.172

🇰🇷 101.36.114.198

🇳🇱 91.92.40.176

🇳🇱 91.92.40.13

🇫🇷 85.217.140.5