JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 148.222.129.64

148.222.129.64 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 32%: ?

32%

ISP	Starlink Paraguay SRL
Usage Type	Fixed Line ISP
ASN	AS14593
Hostname(s)	customer.splobra1.isp.starlink.com
Domain Name	starlink.com
Country	🇵🇾 Paraguay
City	Asuncion, Asuncion

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 148.222.129.64

Whois 148.222.129.64

IP Abuse Reports for 148.222.129.64:

This IP address has been reported a total of 17 times from 12 distinct sources. 148.222.129.64 was first reported on October 10th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 tjs	2026-06-01 06:50:00 (2 weeks ago)	web attack, shell command or exploit attempt	Hacking Web App Attack
🇦🇹 urnilxfgbez	2026-05-29 22:45:00 (3 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇯🇵 VXG-NET	2026-05-29 01:44:19 (3 weeks ago)	port=80, indicator_type=code-execution	Hacking
🇺🇸 MPL	2026-05-29 01:15:21 (3 weeks ago)	tcp/8888	Port Scan
🇩🇪 EGP Abuse Dept	2026-05-28 12:56:44 (3 weeks ago)	Scanning for web/db/file exploits on tpc-025.mach3builders.nl	SQL Injection Bad Web Bot Web App Attack
🇳🇱 NSCA-ISEU	2026-05-28 10:46:43 (3 weeks ago)	Dasan GPON Router Authentication Bypass. VT: Malicious: 1 - Suspicious: 0. AS14593 Space Exp ... show more Dasan GPON Router Authentication Bypass. VT: Malicious: 1 - Suspicious: 0. AS14593 Space Exploration Technologies Corporation. Org: Starlink Paraguay SRL show less	Web App Attack Port Scan IoT Targeted Bad Web Bot Exploited Host
🇳🇱 donarev419	2026-05-28 09:35:00 (3 weeks ago)	Connection to port 443 with data transfer. Data preview: POST /GponForm/diag_Form?style/ HTTP/1.1 U ... show more Connection to port 443 with data transfer. Data preview: POST /GponForm/diag_Form?style/ HTTP/1.1 User-Agent: terrabot-owned-you Accept: / Accept-Encodi show less	Port Scan Hacking
🇸🇬 mypatricks	2026-03-26 12:19:22 (2 months ago)	148.222.129.64 \| Port: 14139 \| DNS: customer.splobra1.isp.starlink.com 2026-03-26T20:19:21+08:00 Ame ... show more 148.222.129.64 \| Port: 14139 \| DNS: customer.splobra1.isp.starlink.com 2026-03-26T20:19:21+08:00 America/Asuncion \| LINK Data Center/Web Hosting/Transit Spam list \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 Edg/136.0.0.0 HTTP/1.1 443 GET \| URL: /account/signin/?109e7fce96b51779ac2612f50a1849c7=1774439935 \| Ref: https://xxxxxx/fondant-cakes-transformers/?a11fa8c02456cc49ffc8aa4ef58=SGD&code=SGD \| Country: PY/Paraguay/−04:00 IP City: Asunción Windows 9e261a5c8f9d344f-GRU/São Paulo, Brazil 1 hits/0 secs Robots 2 show less	Brute-Force Web App Attack Blog Spam Web Spam Exploited Host
🇺🇸 TPI-Abuse	2026-01-27 06:27:49 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 148.222.129.64 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 148.222.129.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 27 01:27:43.710000 2026] [security2:error] [pid 2758:tid 2772] [client 148.222.129.64:8587] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|chat.rwabutaza.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "chat.rwabutaza.com"] [uri "/support.php.bak"] [unique_id "aXha3xhTggdHK7uyzGav3QAAAYY"], referer: http://chat.rwabutaza.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 MPL	2026-01-18 17:20:47 (5 months ago)	tcp/23 (3 or more attempts)	Port Scan
Anonymous	2025-11-25 23:46:31 (6 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-21 14:51:31 (6 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-16 06:14:08 (7 months ago)	scanning http requests from known botnet	Web App Attack
🇩🇪 london2038.com	2025-11-04 23:55:31 (7 months ago)	Connection atttempts against closed TCP ports Nov 5 00:55:28 BLOCK SRC=148.222.129.64 LEN=52 TOS=0x ... show more Connection atttempts against closed TCP ports Nov 5 00:55:28 BLOCK SRC=148.222.129.64 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=20503 DF PROTO=TCP SPT=10521 DPT=443 WINDOW=32044 RES=0x00 ACK FIN Nov 5 00:55:29 BLOCK SRC=148.222.129.64 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=20504 DF PROTO=TCP SPT=10521 DPT=443 WINDOW=32044 RES=0x00 ACK FIN Nov 5 00:55:30 BLOCK SRC=148.222.129.64 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=20505 DF PROTO=TCP SPT=10521 DPT=443 WINDOW=32044 RES=0x00 ACK FIN show less	Port Scan
🇩🇪 london2038.com	2025-11-03 21:43:56 (7 months ago)	Connection atttempts against closed TCP ports Nov 3 22:43:53 BLOCK SRC=148.222.129.64 LEN=52 TOS=0x ... show more Connection atttempts against closed TCP ports Nov 3 22:43:53 BLOCK SRC=148.222.129.64 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=53357 DF PROTO=TCP SPT=24399 DPT=443 WINDOW=32044 RES=0x00 ACK FIN Nov 3 22:43:54 BLOCK SRC=148.222.129.64 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=53358 DF PROTO=TCP SPT=24399 DPT=443 WINDOW=32044 RES=0x00 ACK FIN Nov 3 22:43:55 BLOCK SRC=148.222.129.64 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=53359 DF PROTO=TCP SPT=24399 DPT=443 WINDOW=32044 RES=0x00 ACK FIN show less	Port Scan

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.89

🇺🇦 193.107.171.180

🇧🇷 179.96.175.96

🇯🇵 124.18.182.99

🇰🇪 102.210.149.105

🇮🇷 85.198.19.251

🇱🇹 81.30.98.144

🇳🇱 45.153.34.114

🇩🇪 8.211.33.96

🇯🇵 118.193.61.14

🇨🇳 118.24.135.34

🇨🇳 112.32.138.180

🇫🇷 94.183.187.244

🇺🇸 45.156.129.73

🇺🇸 45.156.129.71

🇳🇱 45.148.10.141

🇺🇸 2600:1f18:3120:f504:c3d7:8c7d:df0a:7ae9

🇲🇽 187.233.113.29

🇦🇫 149.54.62.62

🇰🇷 119.200.229.33