JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.182.241.203

102.182.241.203 was found in our database!

This IP was reported 100 times. Confidence of Abuse is 100%: ?

100%

ISP	AFRIHOST SP (PTY) LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37611
Hostname(s)	102-182-241-203.ip.afrihost.capetown
Domain Name	afrihost.com
Country	🇿🇦 South Africa
City	Cape Town, Western Cape

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.182.241.203

Whois 102.182.241.203

IP Abuse Reports for 102.182.241.203:

This IP address has been reported a total of 100 times from 57 distinct sources. 102.182.241.203 was first reported on April 19th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 big-cloud.nl	2026-06-08 17:52:42 (1 week ago)	Try to access /xmlrpc.php	Web App Attack
🇫🇷 ELYAZ	2026-06-06 19:34:33 (1 week ago)	(wordpress) Failed wordpress login from 102.182.241.203 (102-182-241-203.ip.afrihost.capetown): (CF ... show more (wordpress) Failed wordpress login from 102.182.241.203 (102-182-241-203.ip.afrihost.capetown): (CF_ENABLE) show less	Brute-Force
🇳🇱 Site.eu	2026-06-06 06:29:04 (2 weeks ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇬🇧 catalink.com	2026-06-05 17:54:41 (2 weeks ago)	Brute forcing Wordpress login	Exploited Host Web App Attack
Anonymous	2026-06-03 06:14:27 (2 weeks ago)	102.182.241.203 - - [03/Jun/2026:08:10:22 +0200] "POST /xmlrpc.php HTTP/1.1" 200 712 "-" "Mozilla/5. ... show more 102.182.241.203 - - [03/Jun/2026:08:10:22 +0200] "POST /xmlrpc.php HTTP/1.1" 200 712 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/69.0.0.0 Safari/537.36" 102.182.241.203 - - [03/Jun/2026:08:10:24 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/69.0.0.0 Safari/537.36" 102.182.241.203 - - [03/Jun/2026:08:13:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 712 "-" "Mozilla/5.0 (Windows NT 10.0; x86) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/83.0.0.0 Safari/537.36" 102.182.241.203 - - [03/Jun/2026:08:13:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (Windows NT 10.0; x86) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/83.0.0.0 Safari/537.36" 102.182.241.203 - - [03/Jun/2026:08:14:27 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/13.0.0.0 Safari/5 ... show less	Brute-Force Web App Attack
🇩🇪 big-cloud.nl	2026-06-03 05:49:46 (2 weeks ago)	Try to access /xmlrpc.php	Web App Attack
Anonymous	2026-06-02 20:48:13 (2 weeks ago)	Attac	Brute-Force
🇳🇱 Site.eu	2026-06-02 19:52:52 (2 weeks ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇳🇱 tmiland	2026-06-02 18:28:03 (2 weeks ago)	(wordpress_xmlrpc) WordPress XMLPRC Attack 102.182.241.203 (102-182-241-203.ip.afrihost.capetown): 3 ... show more (wordpress_xmlrpc) WordPress XMLPRC Attack 102.182.241.203 (102-182-241-203.ip.afrihost.capetown): 3 in the last 3600 secs; IP: 102.182.241.203; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 102.182.241.203 - - [02/Jun/2026:20:21:08 +0200] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (Windows NT 6.2; x64) AppleWebKit/537.36 (KHTML, like Gecko) Opera/78.0.0.0 Safari/537.36" 102.182.241.203 - - [02/Jun/2026:20:27:28 +0200] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (Windows NT 6.3; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.0.0 Safari/537.36" 102.182.241.203 - - [02/Jun/2026:20:27:58 +0200] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/94.0.0.0 Safari/537.36" show less	Brute-Force
🇩🇪 Prodscape	2026-06-02 16:41:17 (2 weeks ago)	(XMLRPC) WP XMLPRC Attack 102.182.241.203 (ZA/South Africa/102-182-241-203.ip.afrihost.capetown): 5 ... show more (XMLRPC) WP XMLPRC Attack 102.182.241.203 (ZA/South Africa/102-182-241-203.ip.afrihost.capetown): 5 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER show less	Port Scan
🇩🇪 4server	2026-06-01 10:09:35 (2 weeks ago)	[MonJun0112:09:33.3037242026][security2:error][pid2564238:tid2564281][client102.182.241.203:0]ModSec ... show more [MonJun0112:09:33.3037242026][security2:error][pid2564238:tid2564281][client102.182.241.203:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"rebirthing-lugano.ch\"][uri\"/xmlrpc.php\"][unique_id\"ah1aXbr-28peAljekKHFrQAAAEY\"] show less	Port Scan Brute-Force Web App Attack
🇫🇮 bittiguru.fi	2026-06-01 07:53:49 (2 weeks ago)	102.182.241.203 - [01/Jun/2026:10:50:22 +0300] "POST /xmlrpc.php HTTP/1.1" 404 111679 "-" "Mozilla/5 ... show more 102.182.241.203 - [01/Jun/2026:10:50:22 +0300] "POST /xmlrpc.php HTTP/1.1" 404 111679 "-" "Mozilla/5.0 (Windows NT 10.0; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/100.0.0.0 Safari/537.36" "-" 102.182.241.203 - [01/Jun/2026:10:53:49 +0300] "POST /xmlrpc.php HTTP/1.1" 404 58463 "-" "Mozilla/5.0 (Linux; Android 10; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36" "-" ... show less	Hacking Brute-Force Web App Attack
🇫🇷 ELYAZ	2026-05-31 10:59:51 (2 weeks ago)	(wordpress) Failed wordpress login from 102.182.241.203 (-): (CF_ENABLE)	Brute-Force
🇺🇸 Mundo Bueno	2026-05-31 00:44:53 (2 weeks ago)	[ISILIA Protection v2.1] Tentative d'accès: /xmlrpc.php \| Pays: ZA \| UA: Mozilla/5.0 (Windows NT 6.3 ... show more [ISILIA Protection v2.1] Tentative d'accès: /xmlrpc.php \| Pays: ZA \| UA: Mozilla/5.0 (Windows NT 6.3; x86) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/84.0.0.0 Safari/537 show less	Hacking Web App Attack
🇳🇱 BlueWire Hosting	2026-05-30 18:36:22 (2 weeks ago)	Probing websites for vulnerabilities	Web App Attack

Showing 1 to 15 of 100 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.12.37.6

🇸🇪 213.65.190.48

🇪🇹 196.190.220.199

🇬🇧 191.96.110.39

🇳🇱 176.65.132.5

🇮🇳 103.163.105.175

🇳🇱 45.148.10.152

🇸🇬 43.156.250.119

🇨🇦 20.220.10.205

🇸🇬 159.65.2.17

🇬🇧 87.236.176.253

🇫🇷 85.217.140.10

🇷🇴 80.94.92.156

🇩🇪 69.5.169.149

🇩🇪 69.5.169.95

🇩🇪 69.5.169.45

🇺🇸 66.132.172.137

🇳🇱 45.148.10.151

🇲🇦 41.143.196.10

🇩🇪 94.249.230.157