JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 148.113.0.104

148.113.0.104 was found in our database!

This IP was reported 62 times. Confidence of Abuse is 50%: ?

50%

ISP	OVHTECH R&D (INDIA) PRIVATE LIMITED
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	ns5023791.ip-148-113-0.net
Domain Name	ovh.net
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 148.113.0.104

Whois 148.113.0.104

IP Abuse Reports for 148.113.0.104:

This IP address has been reported a total of 62 times from 41 distinct sources. 148.113.0.104 was first reported on October 25th 2023, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Axel	2026-06-13 11:10:39 (5 days ago)	Blocked by UFW on LAXHH [62992/tcp] \| SPT: 8081 \| TTL: 43 \| LEN: 52 \| TOS: 0x00 • Reported by: githu ... show more Blocked by UFW on LAXHH [62992/tcp] \| SPT: 8081 \| TTL: 43 \| LEN: 52 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇮🇩 sockominfo	2026-06-12 03:00:53 (6 days ago)	User login to application from malicious IP 148.113.0.104.. Threat Score: 3.8/10 (LOW). Confidence: ... show more User login to application from malicious IP 148.113.0.104.. Threat Score: 3.8/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-12 02:01:01 (6 days ago)	User login to application from malicious IP 148.113.0.104.. Threat Score: 4/10 (MEDIUM). Confidence: ... show more User login to application from malicious IP 148.113.0.104.. Threat Score: 4/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Very Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇺🇸 Alvino	2026-06-06 10:13:43 (1 week ago)	Blocked due to using a VPN or data center IP with abuse: 49	Web Spam VPN IP
🇵🇱 sefinek.net	2026-06-06 08:49:31 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from IN. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from IN. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: /sap/admin/public/index.html \| UA: Mozilla/5.0 (Macintosh, Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇵🇱 sefinek.net	2026-06-04 10:38:49 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from IN. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from IN. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: /sap/admin/public/index.html \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 ZOE/2 Safari/605.1.15 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-06-01 12:38:04 (2 weeks ago)	Bot / scanning and/or hacking attempts: GET /wp-config.php.original HTTP/1.1, GET /wp-config.old HTT ... show more Bot / scanning and/or hacking attempts: GET /wp-config.php.original HTTP/1.1, GET /wp-config.old HTTP/1.1, GET /wp-config.txt HTTP/1.1, GET /wp-config.php.swp HTTP/1.1, GET /wp-config.php.orig HTTP/1.1, GET /wp-config.php.txt HTTP/1.1, GET /wp-config.php~ HTTP/1.1, GET /wp-config.php.save HTTP/1.1, GET /wp-config-backup.txt HTTP/1.1, GET /wp-config.php.dist HTTP/1.1, GET /wp-config.php.old HTTP/1.1, GET /wp-config.php HTTP/1.1, GET /wp-config-sample.php HTTP/1.1, GET /wp-config.inc HTTP/1.1, GET /wp-config.php.bak HTTP/1.1, GET /.wp-config.php.swp HTTP/1.1, GET /wp-config.php.inc HTTP/1.1, GET /wp-config.php.html HTTP/1.1, GET /_wpeprivate/config.json HTTP/1.1 show less	Hacking Web App Attack
🇩🇪 PTScreens	2026-06-01 10:22:18 (2 weeks ago)	CrowdSec blocked attack: Http-Probing attempt(s) from 148.113.0.104 (OVH SAS). 27 events detected in ... show more CrowdSec blocked attack: Http-Probing attempt(s) from 148.113.0.104 (OVH SAS). 27 events detected in the last 300 seconds. show less	Web App Attack
🇺🇸 kosada.com	2026-05-31 20:57:09 (2 weeks ago)	Web vulnerability probing: /sap/admin/public/index.html	Web App Attack
🇫🇷 Security_Whaller	2026-05-31 17:55:23 (2 weeks ago)	Malicious activity detected on Honeypot.	Brute-Force Hacking Web App Attack
🇺🇸 ersei.net	2026-05-31 16:09:00 (2 weeks ago)	Web app exploiting	Web App Attack
🇸🇪 KIDOS	2026-05-31 02:22:36 (2 weeks ago)	malicious activity	Web App Attack
Anonymous	2026-05-31 01:09:36 (2 weeks ago)	Aggressive web scan	Web App Attack
🇸🇪 KIDOS	2026-05-30 19:15:54 (2 weeks ago)	IIS malicious activity: xss_attempt	Web App Attack
🇩🇪 ghostwarriors	2026-04-11 16:50:04 (2 months ago)	Attempts against non-existent wp-login	Brute-Force Web App Attack

Showing 1 to 15 of 62 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 190.89.136.173

🇦🇺 149.28.167.253

🇺🇸 66.132.198.56

🇳🇱 164.92.211.134

🇩🇪 162.158.87.173

🇺🇸 147.185.132.30

🇨🇳 112.94.252.103

🇳🇱 91.92.40.233

🇬🇧 90.194.185.175

🇺🇸 66.132.186.240

🇷🇺 5.255.231.43

🇰🇷 1.235.192.214

🇺🇸 206.189.168.223

🇮🇩 202.51.214.99

🇺🇸 185.191.171.8

🇺🇸 173.255.223.73

🇺🇸 147.185.132.58

🇭🇰 118.193.38.26

🇰🇷 112.149.68.143

🇺🇸 91.230.168.239