JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 62.248.117.185

62.248.117.185 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 48%: ?

48%

ISP	KADIKOY ANADOLU TIC. VE TIC MESLEK LISESI
Usage Type	Fixed Line ISP
ASN	AS9121
Domain Name	ultratv.com
Country	🇹🇷 Turkey
City	Istanbul, Istanbul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 62.248.117.185

Whois 62.248.117.185

IP Abuse Reports for 62.248.117.185:

This IP address has been reported a total of 9 times from 8 distinct sources. 62.248.117.185 was first reported on December 10th 2024, and the most recent report was 14 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 integrantservices.com	2026-06-23 12:06:57 (14 minutes ago)	(wordpress) Failed wordpress login from 62.248.117.185 (TR/Türkiye/-)	Brute-Force
🇬🇧 Bytemark	2026-06-22 14:38:21 (21 hours ago)	62.248.117.185 - - [22/Jun/2026:15:38:13 +0100] "GET /xmlrpc.php HTTP/1.1" 301 5334 "-" "Jetpack/13. ... show more 62.248.117.185 - - [22/Jun/2026:15:38:13 +0100] "GET /xmlrpc.php HTTP/1.1" 301 5334 "-" "Jetpack/13.0; WordPress/6.1; http://site97602101.com" 62.248.117.185 - - [22/Jun/2026:15:38:13 +0100] "GET /xmlrpc.php HTTP/1.1" 404 5135 "-" "Jetpack/13.0; WordPress/6.1; http://site97602101.com" 62.248.117.185 - - [22/Jun/2026:15:38:19 +0100] "POST /xmlrpc.php HTTP/1.1" 301 5334 "-" "Jetpack/13.0; WordPress/6.1; http://site19206346.com" show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 12:45:54 (23 hours ago)	(mod_security) mod_security (id:240335) triggered by 62.248.117.185 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 62.248.117.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 08:45:49.838698 2026] [security2:error] [pid 32670:tid 32670] [client 62.248.117.185:35940] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 62.248.117.185 (+1 hits since last alert)\|illumoonatedtarot.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "illumoonatedtarot.com"] [uri "/xmlrpc.php"] [unique_id "ajkufVYSMalIP7_0X2RwXAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-22 12:32:52 (23 hours ago)	Blocked by CSF 13 firewall - Rule: XMLRPC TR/Turkey/-	Web App Attack
🇫🇮 YF	2026-06-22 12:01:13 (1 day ago)	xmlrpc.php Potential DDoS or brute force	DDoS Attack Brute-Force
🇺🇸 TPI-Abuse	2026-06-22 10:39:49 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 62.248.117.185 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 62.248.117.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 06:39:44.523145 2026] [security2:error] [pid 23313:tid 23313] [client 62.248.117.185:34753] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 62.248.117.185 (+1 hits since last alert)\|ideaofauniversity.website\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ideaofauniversity.website"] [uri "/xmlrpc.php"] [unique_id "ajkQ8Cr_z-PJAPhqTyz7LQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 konseptit	2026-06-22 09:29:05 (1 day ago)	(wordpress) Failed wordpress login from 62.248.117.185 (TR/Türkiye/-)	Brute-Force
Anonymous	2026-06-22 07:58:10 (1 day ago)	Attac	Brute-Force
🇩🇪 NetworkOperationsTeam	2024-12-10 19:48:10 (1 year ago)	SMS Bombing. Trying to authenticate. API Abuse rate limit exceeded	Hacking Brute-Force Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 182.62.245.34

🇺🇸 135.237.126.37

🇹🇼 83.147.14.26

🇲🇾 27.125.248.129

🇨🇳 8.136.118.70

🇺🇸 185.228.72.109

🇺🇸 172.236.228.197

🇺🇸 135.222.40.118

🇺🇸 128.203.201.204

🇲🇾 121.121.56.244

🇳🇱 45.148.10.147

🇳🇱 195.178.110.199

🇦🇷 170.155.12.19

🇨🇦 165.227.34.189

🇨🇳 152.136.114.224

🇨🇲 129.0.60.186

🇲🇾 113.211.213.108

🇮🇹 72.146.1.254

🇩🇪 68.183.78.19

🇩🇪 47.245.143.108