JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.148.161.16

31.148.161.16 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 16%: ?

16%

ISP	Inform-Service TV Ltd.
Usage Type	Fixed Line ISP
ASN	AS57016
Domain Name	istv.uz
Country	🇺🇿 Uzbekistan
City	Tashkent, Tashkent

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.148.161.16

Whois 31.148.161.16

IP Abuse Reports for 31.148.161.16:

This IP address has been reported a total of 14 times from 11 distinct sources. 31.148.161.16 was first reported on November 27th 2020, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 kosada.com	2026-06-29 06:55:08 (16 hours ago)	Web bot: denial-of-service flood	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-29 02:43:16 (20 hours ago)	(mod_security) mod_security (id:210730) triggered by 31.148.161.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 31.148.161.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 22:43:11.754139 2026] [security2:error] [pid 16913:tid 16913] [client 31.148.161.16:52321] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Himolla-ZeroStress-Recliner/Images/Sinatra/Thumbs.db"] [unique_id "akHbv1eznEyx5KEUkl4jlQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 donarev419	2026-01-01 10:04:56 (5 months ago)	Abused ftp on 21 2026-01-01T10:04:56Z server "220 ProFTPD 1.3.5 Server ready" 2026-01-01T10:04:56Z ... show more Abused ftp on 21 2026-01-01T10:04:56Z server "220 ProFTPD 1.3.5 Server ready" 2026-01-01T10:04:56Z client "USER Admin" 2026-01-01T10:04:57Z server "331 Password required for Admin" 2026-01-01T10:04:57Z client "PASS 1234567890" 2026-01-01T10:04:57Z server "230 User logged in, proceed." 2026-01-01T10:04:57Z client "TYPE A" 2026-01-01T10:04:57Z server "200 Type set to A" 2026-01-01T10:04:58Z client "PASV" 2026-01-01T10:04:58Z server "502 Command not implemented." 2026-01-01T10:04:58Z client "TYPE A" 2026-01-01T10:04:58Z server "200 Type set to A" 2026-01-01T10:04:58Z client "PORT 100,64,129,16,244,244" 2026-01-01T10:04:58Z server "502 Command not implemented." show less	FTP Brute-Force Brute-Force
🇩🇪 FeG Deutschland	2025-11-22 12:53:00 (7 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 24	Exploited Host Web App Attack
Anonymous	2025-11-18 11:23:26 (7 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-10-16 13:23:44 (8 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-10-10 12:37:59 (8 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇳🇱 exxos	2025-09-01 16:03:01 (9 months ago)	Attacks with Bad user agents	Hacking
Anonymous	2025-07-21 17:30:49 (11 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇷 security.rdmc.fr	2025-05-10 20:56:04 (1 year ago)	Port Scan Attack proto:TCP src:11104 dst:21	Port Scan
Anonymous	2025-01-15 20:39:52 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇷🇸 Scan	2024-09-05 09:25:01 (1 year ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇷🇸 Smel	2024-07-23 19:15:23 (1 year ago)	MH/MP Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 etu brutus	2020-11-27 15:51:40 (5 years ago)	20/11/27@15:51:39: FAIL: Alarm-Network address from=31.148.161.16 ...	Hacking Brute-Force SSH

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.245.36.214

🇮🇳 182.70.243.207

🇱🇹 91.224.92.17

🇵🇱 83.168.69.200

🇩🇪 69.5.169.148

🇮🇳 165.232.191.33

🇦🇷 138.36.221.184

🇨🇳 116.30.100.37

🇭🇰 103.243.26.174

🇫🇷 91.231.89.129

🇺🇸 50.2.50.10

🇳🇱 45.148.10.157

🇬🇧 35.203.210.132

🇬🇧 5.226.140.14

🇳🇱 195.178.110.228

🇺🇸 157.55.39.204

🇻🇳 116.96.44.56

🇨🇳 111.229.89.108

🇳🇱 91.92.40.4

🇹🇼 114.35.59.237