JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 119.13.157.229

119.13.157.229 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 10%: ?

10%

ISP	VIETTEL (CAMBODIA) PTE., LTD
Usage Type	Fixed Line ISP
ASN	AS38623
Domain Name	metfone.com.kh
Country	🇰🇭 Cambodia
City	Phnom Penh, Phnom Penh

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 119.13.157.229

Whois 119.13.157.229

IP Abuse Reports for 119.13.157.229:

This IP address has been reported a total of 24 times from 16 distinct sources. 119.13.157.229 was first reported on August 15th 2023, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 lostswordfish.com	2026-06-13 05:10:04 (4 days ago)	Wordfence waf block on pameganslaw	Web App Attack
🇨🇭 Origon	2026-04-30 12:47:51 (1 month ago)	NOQUEUE - IP: 119.13.157.229 - Apr 30 14:47:51 plesk postfix/smtpd[601872]: NOQUEUE: reject: RCPT f ... show more NOQUEUE - IP: 119.13.157.229 - Apr 30 14:47:51 plesk postfix/smtpd[601872]: NOQUEUE: reject: RCPT from unknown[119.13.157.229]: 554 5.7.1 Service unavailable; Client host [119.13.157.229] blocked using dnsbl-1.uceprotect.net; IP 119.13.157.229 is UCEPROTECT-Level 1 listed. See http://www.uceprotect.net/rblcheck.php?ipr=119.13.157.229; from=<REDACTED@REDACTED> to=<REDACTED@REDACTED> proto=ESMTP helo=<[119.13.157.229]> show less	Email Spam
Anonymous	2026-04-02 09:07:46 (2 months ago)	2026-04-02 11:07:45 ERROR util.AccessViolations - 119.13.157.229 report to fail2ban - action: block ... show more 2026-04-02 11:07:45 ERROR util.AccessViolations - 119.13.157.229 report to fail2ban - action: block ... show less	Hacking Brute-Force Bad Web Bot
Anonymous	2026-03-22 03:00:31 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-03-20 15:18:44 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 web4free.eu	2025-04-19 20:07:00 (1 year ago)	SMTPEX V5.2 COMBO-EDITION [HIT]	Email Spam Hacking Brute-Force
Anonymous	2025-04-18 16:21:51 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-04-18 14:45:49 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_MODSEC	Brute-Force SSH
🇧🇪 cmbplf	2025-04-18 12:24:47 (1 year ago)	143 requests with url.path *.env	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2025-04-18 10:12:05 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 119.13.157.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 119.13.157.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 18 06:12:01.886131 2025] [security2:error] [pid 21424:tid 21424] [client 119.13.157.229:61116] [client 119.13.157.229] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vsecuritysolutions.com"] [uri "/.env"] [unique_id "aAIlccIqViuhh89lD9JdAQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-04-17 14:45:23 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 119.13.157.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 119.13.157.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 17 10:45:15.251082 2025] [security2:error] [pid 8256:tid 8256] [client 119.13.157.229:43884] [client 119.13.157.229] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magodarman.com"] [uri "/.env"] [unique_id "aAET-0qVLE1l_xRTjM97vQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-04-17 13:13:15 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 119.13.157.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 119.13.157.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 17 09:13:07.986124 2025] [security2:error] [pid 1903013:tid 1903013] [client 119.13.157.229:9280] [client 119.13.157.229] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gre-home.com"] [uri "/.env"] [unique_id "aAD-Y9rzCnc64aG2Q2DylAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-04-17 10:34:05 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 119.13.157.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 119.13.157.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 17 06:34:00.655445 2025] [security2:error] [pid 2655083:tid 2655083] [client 119.13.157.229:11310] [client 119.13.157.229] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "frame-sa.com"] [uri "/.env"] [unique_id "aADZGAjGnFRV_uqhkbbRkAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-17 10:30:13 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_MODSEC	Brute-Force SSH
Anonymous	2025-04-17 08:46:07 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.107

🇺🇸 104.236.83.40

🇺🇸 23.95.165.169

🇰🇷 121.188.250.148

🇮🇩 103.186.31.66

🇧🇬 91.148.190.150

🇺🇸 74.235.120.62

🇮🇷 37.254.86.93

🇬🇧 35.203.210.172

🇰🇷 222.239.251.12

🇨🇳 220.180.107.193

🇯🇵 212.32.76.6

🇫🇮 147.185.133.178

🇫🇷 146.70.194.220

🇺🇸 138.197.204.198

🇨🇳 121.227.31.13

🇧🇩 103.133.200.95

🇮🇳 103.123.226.138

🇨🇳 101.96.195.62

🇫🇷 91.238.181.10