JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 113.103.3.166

113.103.3.166 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 5%: ?

ISP	CHINANET Guangdong province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 113.103.3.166

Whois 113.103.3.166

IP Abuse Reports for 113.103.3.166:

This IP address has been reported a total of 5 times from 3 distinct sources. 113.103.3.166 was first reported on June 8th 2021, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-10 23:01:03 (3 hours ago)	(mod_security) mod_security (id:210831) triggered by 113.103.3.166 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 113.103.3.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 19:00:58.895462 2026] [security2:error] [pid 20699:tid 20711] [client 113.103.3.166:0] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:user-agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.mindgardens.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.mindgardens.com"] [uri "/"] [unique_id "ainsqtXlLFNyZEBnPlQmOgAAAMk"], referer: http://www.mindgardens.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 20:39:01 (6 hours ago)	(mod_security) mod_security (id:210831) triggered by 113.103.3.166 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 113.103.3.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 16:38:54.947969 2026] [security2:error] [pid 7916:tid 7916] [client 113.103.3.166:48994] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|trasimeno.ws\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "trasimeno.ws"] [uri "/index.html"] [unique_id "ainLXuJdUDDUib6CUP_rLwAAAAc"], referer: http://trasimeno.ws/index.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 19:45:46 (7 hours ago)	(mod_security) mod_security (id:210831) triggered by 113.103.3.166 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 113.103.3.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 15:45:39.240013 2026] [security2:error] [pid 1298:tid 1298] [client 113.103.3.166:47902] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.icaruscreativearts.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.icaruscreativearts.com"] [uri "/"] [unique_id "aim-47lTnbotW3WiD8Ma4QAAAAA"], referer: http://www.icaruscreativearts.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 botreporter	2025-04-08 18:11:54 (1 year ago)	botnet ignoring robots.txt	Bad Web Bot
🇹🇼 kk_it_man	2021-06-08 02:57:00 (5 years ago)	ET SCAN Suspicious inbound to MSSQL port 1433	Port Scan

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2602:fb54:1a00::3e

🇬🇧 172.236.12.201

🇨🇳 171.114.230.56

🇫🇷 151.106.11.183

🇦🇫 149.54.62.170

🇵🇱 91.231.120.171

🇮🇳 59.179.31.237

🇺🇸 209.141.47.217

🇨🇭 209.99.190.113

🇨🇭 188.244.117.247

🇳🇱 185.242.226.18

🇬🇧 172.237.118.245

🇮🇳 164.52.196.73

🇰🇷 121.156.176.114

🇨🇭 104.244.74.201

🇭🇰 103.163.155.113

🇧🇩 103.154.158.70

🇨🇳 101.126.89.164

🇦🇪 94.205.250.78

🇩🇪 91.184.241.233