JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 110.164.147.131

110.164.147.131 was found in our database!

This IP was reported 66 times. Confidence of Abuse is 0%: ?

ISP	3BB Broadband Internet service provider in Thailand
Usage Type	Fixed Line ISP
ASN	AS45758
Hostname(s)	mx-ll-110.164.147-131.static.3bb.co.th
Domain Name	3bb.co.th
Country	🇹🇭 Thailand
City	Bangkok, Bangkok

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 110.164.147.131

Whois 110.164.147.131

IP Abuse Reports for 110.164.147.131:

This IP address has been reported a total of 66 times from 10 distinct sources. 110.164.147.131 was first reported on October 10th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2025-06-06 17:12:52 (1 year ago)	[Sat Jun 07 00:08:50.632633 2025] [security2:error] [pid 282246:tid 140270242870976] [client 110.164 ... show more [Sat Jun 07 00:08:50.632633 2025] [security2:error] [pid 282246:tid 140270242870976] [client 110.164.147.131:59358] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "utf-8" at REQUEST_HEADERS:Accept-Charset. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "311"] [id "440015"] [msg "Bot Accept-Charset utf-8"] [data "Matched Data: utf-8 found within REQUEST_HEADERS:Accept-Charset: utf-8 request_line = GET / HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/"] [unique_id "aEMgoldX-VFJAfNqC4Sg7wAAANM"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[282297] [DaW4SDIoGNw] [aEMgoldX-VFJAfNqC4Sg7wAAANM] keep_alive=[0] [2025-06-07 00:08:50.632642] [R:aEMgoldX-VFJAfNqC4Sg7wAAANM] UA:'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Safari/537.36' Host:'staklim-jatim.bmkg.go.id' Accept-Encoding:'gzip ... show less	Hacking Web App Attack
🇮🇩 Hamzah Yakub	2025-04-11 22:02:11 (1 year ago)	Hacking Attempt /backend/js/plugins/ckeditor/kcfinder-3.12/upload.php	Hacking Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-04-05 09:22:09 (1 year ago)	TinyMCE Scan Activities	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-04-04 09:34:20 (1 year ago)	TinyMCE Scan Activities	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-03-31 10:50:31 (1 year ago)	TinyMCE Scan Activities	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-03-29 01:46:16 (1 year ago)	TinyMCE Scan Activities	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-03-27 19:58:19 (1 year ago)	TinyMCE Scan Activities	Web App Attack
🇮🇩 penjaga BRIN	2025-03-08 15:40:19 (1 year ago)	Laravel.Ignition.Phar.Stream.Wrapper.Insecure.Deserialization	Web App Attack
🇮🇩 penjaga BRIN	2025-03-05 23:13:57 (1 year ago)	Multiple web server 400 error codes from same source ip.-95	Web App Attack
🇮🇩 hermawan	2025-03-05 18:58:33 (1 year ago)	[Thu Mar 06 01:58:02.481141 2025] [security2:error] [pid 144246:tid 139924430894784] [client 110.164 ... show more [Thu Mar 06 01:58:02.481141 2025] [security2:error] [pid 144246:tid 139924430894784] [client 110.164.147.131:41752] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "utf-8" at REQUEST_HEADERS:Accept-Charset. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "284"] [id "440015"] [msg "Bot Accept-Charset utf-8"] [data "Matched Data: utf-8 found within REQUEST_HEADERS:Accept-Charset: utf-8 request_line = HEAD / HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/"] [unique_id "Z8ieupKfUrzUxsRuvQ9MMgAAAAo"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[144338] [ryYA+PTCy4Q] [Z8ieupKfUrzUxsRuvQ9MMgAAAAo] keep_alive=[0] [2025-03-06 01:58:02.481143] [R:Z8ieupKfUrzUxsRuvQ9MMgAAAAo] UA:'Mozilla/5.0 (CentOS; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36' Host:'staklim-jatim.bmkg.go.id' ... show less	Hacking Web App Attack
🇮🇩 Ridwan Na'im	2025-03-04 00:12:00 (1 year ago)	Multiple web server 400 error codes from same source ip. - Vulnerability Scanning	Hacking Web App Attack
🇮🇩 Ridwan Na'im	2025-02-09 00:32:38 (1 year ago)	Attempt to exploit CVE-2017-9841 - PHPUnit Remote Code Execution - Exploit Public-Facing Application	Hacking Web App Attack
🇮🇩 Burayot	2025-02-07 03:12:29 (1 year ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 110.164.147.131 (TH/Thailand/mx-ll- ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 110.164.147.131 (TH/Thailand/mx-ll-110.164.147-131.static.3bb.co.th): 2 in the last 3600 secs show less	Web App Attack
🇮🇩 Burayot	2025-02-06 15:40:55 (1 year ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 110.164.147.131 (TH/Thailand/mx-ll- ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 110.164.147.131 (TH/Thailand/mx-ll-110.164.147-131.static.3bb.co.th): 1 in the last 3600 secs show less	Web App Attack
🇮🇩 Ridwan Na'im	2025-02-06 06:25:39 (1 year ago)	Attempt to exploit CVE-2017-9841 - PHPUnit Remote Code Execution - Exploit Public-Facing Application	Hacking Web App Attack

Showing 1 to 15 of 66 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.154.144

🇳🇱 195.178.110.246

🇳🇱 193.176.31.221

🇺🇸 172.212.158.185

🇫🇮 147.185.133.239

🇺🇸 135.237.126.76

🇮🇹 2.33.239.68

🇨🇳 223.159.80.91

🇵🇭 222.127.73.23

🇲🇦 196.89.50.51

🇳🇱 193.176.31.203

🇵🇰 182.190.146.25

🇧🇷 170.238.160.191

🇺🇸 165.227.15.122

🇭🇰 119.8.53.134

🇨🇳 118.255.159.161

🇰🇷 112.216.129.27

🇮🇷 85.198.22.98

🇨🇳 60.18.139.82

🇵🇾 24.152.42.233