JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 203.147.139.116

203.147.139.116 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 68%: ?

68%

ISP	Angkor Data Communication
Usage Type	Fixed Line ISP
ASN	AS38235
Domain Name	mekongnet.com.kh
Country	🇰🇭 Cambodia
City	Phnom Penh, Phnom Penh

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 203.147.139.116

Whois 203.147.139.116

IP Abuse Reports for 203.147.139.116:

This IP address has been reported a total of 19 times from 16 distinct sources. 203.147.139.116 was first reported on April 2nd 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-25 11:36:49 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 203.147.139.116 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 203.147.139.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 07:36:43.671705 2026] [security2:error] [pid 14099:tid 14099] [client 203.147.139.116:1314] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|brianwhitty.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "brianwhitty.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aj0Sy2Ubws7DHKbnXyXDHgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 wlt-blocker	2026-06-25 03:33:27 (2 days ago)	Unauthorized access to webpage admin	Web App Attack
🇩🇪 stinpriza	2026-06-24 11:49:50 (3 days ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 08:23:11 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 203.147.139.116 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 203.147.139.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 04:23:03.677846 2026] [security2:error] [pid 26693:tid 26693] [client 203.147.139.116:10345] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fundaciondamashcc.org.ec\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fundaciondamashcc.org.ec"] [uri "/wp-json/wp/v2/users"] [unique_id "ajuT57RCbFp2WxlpiuQHsAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 01:14:12 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 203.147.139.116 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 203.147.139.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 21:14:07.942433 2026] [security2:error] [pid 15308:tid 15361] [client 203.147.139.116:5727] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|vinylnotespodcast.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "vinylnotespodcast.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajsvXyuTSQwM9VXsnrsDJAAAAZU"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 polycoda	2026-06-23 10:06:47 (4 days ago)	🔑 Wordpress login brute force attempt	Hacking Web App Attack
🇮🇪 Jim Keir	2026-06-23 08:36:53 (4 days ago)	2026-06-23 08:36:52 203.147.139.116 File scanning, blocking 203.147.139.116 for 5 minutes	Web App Attack
🇩🇪 LRob.fr	2026-06-23 04:30:21 (4 days ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-06-22 22:29:55 (4 days ago)		Brute-Force Web App Attack
🇫🇮 inlink.ltd	2026-06-22 09:54:56 (5 days ago)	Known malicious PHP file or CMS probe	Web App Attack
🇪🇸 librebit	2026-06-22 07:43:03 (5 days ago)	Brute force	Brute-Force
🇨🇭 4server	2026-06-21 23:45:36 (5 days ago)	[MonJun2201:45:33.3689832026][security2:error][pid2793775:tid2793829][client203.147.139.116:0]ModSec ... show more [MonJun2201:45:33.3689832026][security2:error][pid2793775:tid2793829][client203.147.139.116:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"368\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"annunci-ticino.ch\"][uri\"/xmlrpc.php\"][unique_id\"ajh3nZNyje6HxPdOwhqNeQAAABI\"] show less	Hacking Web App Attack
🇫🇷 SpaceHost-Server	2026-06-21 22:28:47 (5 days ago)		Brute-Force Web App Attack
🇩🇪 big-cloud.nl	2026-06-21 09:17:49 (6 days ago)	Try to access /xmlrpc.php	Web App Attack
🇨🇳 ThreatBook.io	2026-04-03 02:14:25 (2 months ago)	ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/203.147.139.116	SSH

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 216.26.232.131

🇧🇷 205.210.31.244

🇨🇭 179.43.172.230

🇨🇳 113.201.90.80

🇨🇳 111.26.167.36

🇨🇦 104.207.49.189

🇨🇳 101.126.26.93

🇸🇪 95.203.1.49

🇲🇦 81.192.46.45

🇺🇸 65.111.15.105

🇳🇱 45.148.10.157

🇮🇱 20.217.187.33

🇺🇸 20.65.194.111

🇰🇷 222.120.63.29

🇩🇪 209.50.180.26

🇧🇷 187.34.208.236

🇬🇧 185.247.137.30

🇬🇧 152.32.157.173

🇨🇦 104.207.59.94

🇭🇰 103.56.114.222