AbuseIPDB » 110.137.192.20
110.137.192.20 was found in our database!
This IP was reported 5 times. Confidence of
Abuse
is 1%: ?
| ISP |
PT TELKOM INDONESIA
|
| Usage Type |
Fixed Line ISP
|
| ASN |
AS7713
|
| Domain Name |
telkom.co.id
|
| Country |
๐ฎ๐ฉ
Indonesia
|
| City |
Jakarta, Jakarta
|
IP info including ISP, Usage Type, and Location provided
by IPInfo. Updated weekly.
IP Abuse Reports for 110.137.192.20:
This IP address has been reported a total of
5
times from
5 distinct
sources.
110.137.192.20 was first reported on
, and the most recent report was
.
Old Reports:
The most recent abuse report for this IP address is from
. It is possible that this IP is no longer involved in abusive activities.
| Reporter |
IoA Timestamp (UTC)
|
Comment |
Categories |
|
|
๐ฎ๐ฉ
sockominfo
|
|
User login to application during non-business hours. Threat Score: 6.6/10 (HIGH). Confidence: 40%. C ...
show more
User login to application during non-business hours. Threat Score: 6.6/10 (HIGH). Confidence: 40%. CVSS v3.1: 4.6/10 (Medium). CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L. Bayesian Probability: 87%. MITRE ATT&CK: T1046 (Network Service Scanning). Tactic: TA0001. Freshness: Very Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS
show less
|
Hacking
Web App Attack
|
|
|
๐ฉ๐ช
nyuuzyou
|
|
{"action": "connection", "dest_ip": "194.62.248.73", "dest_port": "1433", "server": "mssql_server", ...
show more
{"action": "connection", "dest_ip": "194.62.248.73", "dest_port": "1433", "server": "mssql_server", "src_ip": "110.137.192.20", "src_port": "13159", "timestamp": "2025-10-03T05:04:05.592251"}
show less
|
Port Scan
Brute-Force
|
|
|
๐ฉ๐ช
Mailguard-FRD
|
|
1759414197 - 10/02/2025 16:09:57 Host: 110.137.192.20/110.137.192.20 Port: 1433 TCP Blocked
...
|
Port Scan
|
|
|
๐ฎ๐ฉ
hermawan
|
|
[Fri May 24 16:23:17.093205 2024] [security2:error] [pid 492443:tid 140616616904256] [client 110.137 ...
show more
[Fri May 24 16:23:17.093205 2024] [security2:error] [pid 492443:tid 140616616904256] [client 110.137.192.20:4446] [client 110.137.192.20] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Python" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "37"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Python found within REQUEST_HEADERS:User-Agent: Python/3.11 aiohttp/3.9.3 request_line = GET / HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/"] [unique_id "ZlBchbhQBwmWV0lPuh4dygAAAQA"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[492485] [fje9t5/6074] [ZlBchbhQBwmWV0lPuh4dygAAAQA] keep_alive=[0] [2024-05-24 16:23:17.093208] [R:ZlBchbhQBwmWV0lPuh4dygAAAQA] UA:'Python/3.11 aiohttp/3.9.3' Host:'staklim-jatim.bmkg.go.id' ACCEPT:'*/*' Accept-Encoding:'gzip, deflate, br
...
show less
|
Hacking
Web App Attack
|
|
|
๐ฎ๐ฉ
ryanhf
|
|
Abuse IP
|
Web Spam
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
|
|
Showing 1 to
5
of 5 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: