JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.65.148.117

159.65.148.117 was found in our database!

This IP was reported 64 times. Confidence of Abuse is 8%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇮🇳 India
City	Bashettihalli, Karnataka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.65.148.117

Whois 159.65.148.117

IP Abuse Reports for 159.65.148.117:

This IP address has been reported a total of 64 times from 14 distinct sources. 159.65.148.117 was first reported on April 13th 2023, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 frederic deroubaix	2026-05-24 00:00:00 (3 weeks ago)	DMARC spoofing campaign impersonating fullsix.com. This source IP sent 10 emails that failed BOTH SP ... show more DMARC spoofing campaign impersonating fullsix.com. This source IP sent 10 emails that failed BOTH SPF and DKIM (DMARC policy_evaluated=fail) and were rejected by the DMARC p=reject policy. Observed 2026-05-22 to 2026-05-24. Source: Postmark DMARC aggregate (RUA) reports. show less	Email Spam Spoofing
🇨🇦 [email protected]	2026-05-24 00:00:00 (3 weeks ago)	"Tried to spoof our domain and sent volumistic attack emails to google.com and/or yahoo.ca"	Email Spam Spoofing
🇺🇸 MPL	2025-05-23 09:43:20 (1 year ago)	tcp port scan (5 or more attempts)	Port Scan
🇺🇸 MPL	2025-05-23 09:43:20 (1 year ago)	tcp/8000 (2 or more attempts)	Port Scan
🇦🇹 urnilxfgbez	2025-05-11 22:45:00 (1 year ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 RAP	2025-05-11 20:14:17 (1 year ago)	2025-05-11 20:14:17 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇺🇸 MPL	2025-02-26 00:49:46 (1 year ago)	tcp/22	Port Scan
🇺🇸 MPL	2025-02-26 00:49:46 (1 year ago)	tcp/22	Port Scan
🇦🇺 ipv4.fr	2025-02-25 17:52:59 (1 year ago)	159.65.148.117 - - [25/Feb/2025:17:52:59 +0000] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (compatible) ... show more 159.65.148.117 - - [25/Feb/2025:17:52:59 +0000] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (compatible)" ... show less	Brute-Force Web App Attack
🇨🇳 ThreatBook.io	2023-05-06 01:11:38 (3 years ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/159.65.148.117 2 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/159.65.148.117 2023-05-05 00:01:28 ["uname -s -v -n -r -m"] 2023-05-05 00:00:43 ["uname -s -v -n -r -m"] 2023-05-05 00:00:26 ["uname -s -v -n -r -m"] 2023-05-05 00:00:26 ["uname -s -v -n -r -m"] 2023-05-05 00:01:11 ["uname -s -v -n -r -m"] 2023-05-05 00:00:57 ["uname -s -v -n -r -m"] 2023-05-05 00:00:13 ["uname -s -v -n -r -m"] 2023-05-05 00:01:28 ["uname -s -v -n -r -m"] 2023-05-05 00:00:57 ["uname -s -v -n -r -m"] show less	Brute-Force
🇨🇳 ThreatBook.io	2023-05-05 02:32:14 (3 years ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/159.65.148.117 2 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/159.65.148.117 2023-05-04 00:03:40 ["uname -s -v -n -r -m"] 2023-05-04 00:01:37 ["uname -s -v -n -r -m"] 2023-05-04 00:01:05 ["uname -s -v -n -r -m"] 2023-05-04 00:02:40 ["uname -s -v -n -r -m"] show less	Brute-Force
🇨🇳 ThreatBook.io	2023-05-04 00:41:44 (3 years ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/159.65.148.117 2 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/159.65.148.117 2023-05-03 01:54:25 ["uname -s -v -n -r -m"] 2023-05-03 01:56:49 ["uname -s -v -n -r -m"] 2023-05-03 01:53:55 ["uname -s -v -n -r -m"] show less	Brute-Force
🇹🇼 AndCycle	2023-05-03 03:24:55 (3 years ago)	May 3 11:24:08 bacztwo sshd[29267]: Invalid user es from 159.65.148.117 port 53724 May 3 11:24:27 ... show more May 3 11:24:08 bacztwo sshd[29267]: Invalid user es from 159.65.148.117 port 53724 May 3 11:24:27 bacztwo sshd[3232]: Invalid user test from 159.65.148.117 port 41496 May 3 11:24:27 bacztwo sshd[3232]: Invalid user test from 159.65.148.117 port 41496 May 3 11:24:54 bacztwo sshd[12551]: Invalid user node from 159.65.148.117 port 57500 May 3 11:24:54 bacztwo sshd[12551]: Invalid user node from 159.65.148.117 port 57500 ... show less	Brute-Force SSH
🇹🇼 AndCycle	2023-05-03 02:44:06 (3 years ago)	May 3 10:42:06 bacztwo sshd[382]: Invalid user tomcat from 159.65.148.117 port 33762 May 3 10:42:4 ... show more May 3 10:42:06 bacztwo sshd[382]: Invalid user tomcat from 159.65.148.117 port 33762 May 3 10:42:44 bacztwo sshd[15098]: Invalid user wang from 159.65.148.117 port 37524 May 3 10:42:44 bacztwo sshd[15098]: Invalid user wang from 159.65.148.117 port 37524 May 3 10:43:11 bacztwo sshd[24691]: Invalid user ds from 159.65.148.117 port 53522 May 3 10:43:11 bacztwo sshd[24691]: Invalid user ds from 159.65.148.117 port 53522 May 3 10:43:38 bacztwo sshd[2234]: Invalid user user from 159.65.148.117 port 41290 May 3 10:43:38 bacztwo sshd[2234]: Invalid user user from 159.65.148.117 port 41290 May 3 10:44:05 bacztwo sshd[15220]: Invalid user ftpuser from 159.65.148.117 port 57288 ... show less	Brute-Force SSH
🇹🇼 AndCycle	2023-05-03 02:08:55 (3 years ago)	May 3 10:01:34 bacztwo sshd[4855]: Invalid user azureuser from 159.65.148.117 port 37376 May 3 10: ... show more May 3 10:01:34 bacztwo sshd[4855]: Invalid user azureuser from 159.65.148.117 port 37376 May 3 10:03:51 bacztwo sshd[25464]: Invalid user node from 159.65.148.117 port 60898 May 3 10:04:19 bacztwo sshd[3927]: Invalid user gitlab from 159.65.148.117 port 48666 May 3 10:04:47 bacztwo sshd[14735]: Invalid user sftpuser from 159.65.148.117 port 36436 May 3 10:05:15 bacztwo sshd[25243]: Invalid user centos from 159.65.148.117 port 52434 May 3 10:05:42 bacztwo sshd[1938]: Invalid user ts from 159.65.148.117 port 40204 May 3 10:06:09 bacztwo sshd[12491]: Invalid user node from 159.65.148.117 port 56204 May 3 10:06:37 bacztwo sshd[23452]: Invalid user steam from 159.65.148.117 port 43972 May 3 10:07:05 bacztwo sshd[1288]: Invalid user centos from 159.65.148.117 port 59974 May 3 10:07:32 bacztwo sshd[11747]: Invalid user es from 159.65.148.117 port 47740 May 3 10:08:00 bacztwo sshd[22059]: Invalid user oracle from 159.65.148.117 port 35506 May 3 10:08:27 bacztwo sshd[31780]: Invalid ... show less	Brute-Force SSH

Showing 1 to 15 of 64 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 92.113.142.203

🇺🇸 91.230.168.237

🇺🇸 66.132.172.250

🇲🇲 45.41.105.12

🇲🇽 201.108.5.249

🇲🇽 187.191.48.4

🇨🇳 162.14.80.253

🇮🇩 157.15.0.190

🇫🇮 147.185.133.191

🇨🇳 111.198.221.98

🇺🇸 107.150.103.12

🇹🇳 102.157.64.82

🇷🇺 94.231.212.185

🇫🇷 51.68.126.146

🇬🇧 35.203.210.246

🇮🇷 5.123.219.246

🇨🇦 4.206.92.183

🇮🇳 2409:40e2:20b6:a4c3:c74:6ec1:1f6e:dc4c

🇮🇩 203.89.29.4

🇲🇦 196.92.7.247