JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.119.154.6

103.119.154.6 was found in our database!

This IP was reported 94 times. Confidence of Abuse is 97%: ?

97%

ISP	BigHub Customer Networks
Usage Type	Fixed Line ISP
ASN	AS137989
Domain Name	bighub.com.kh
Country	🇰🇭 Cambodia
City	Sihanoukville, Preah Sihanouk

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.119.154.6

Whois 103.119.154.6

IP Abuse Reports for 103.119.154.6:

This IP address has been reported a total of 94 times from 45 distinct sources. 103.119.154.6 was first reported on June 2nd 2022, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 S.O.B.A. Dev.	2026-03-18 23:42:33 (2 months ago)	Threat Blocked by BeeHive from (ASN:137989) (Network:BIGHUBCOLTD-AS-AP BigHub Co.,Ltd) (Host:soba.de ... show more Threat Blocked by BeeHive from (ASN:137989) (Network:BIGHUBCOLTD-AS-AP BigHub Co.,Ltd) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2026-03-18T23:42:33Z) show less	Brute-Force Web Spam Web App Attack
Anonymous	2026-03-18 20:48:09 (2 months ago)	Automated report (2026-03-18T16:48:09-04:00). Caught probing for exposed FTP credentials.	Hacking
🇫🇷 Baking333	2026-03-18 17:37:35 (2 months ago)	[redacted] 103.119.154.6 - - [18/Mar/2026:18:37:32 +0100] "GET /[redacted] HTTP/1.1" 302 5282 0/4282 ... show more [redacted] 103.119.154.6 - - [18/Mar/2026:18:37:32 +0100] "GET /[redacted] HTTP/1.1" 302 5282 0/42824 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" [redacted] 103.119.154.6 - - [18/Mar/2026:18:37:34 +0100] "GET /.vscode/[redacted] HTTP/1.1" 302 1554 0/42000 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" show less	Bad Web Bot Web App Attack
🇬🇧 poundawebsiteltd	2026-03-18 16:43:55 (2 months ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 103.119.154.6 - - [18/Mar/2026:16 ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 103.119.154.6 - - [18/Mar/2026:16:43:54 +0000] GET /sftp-config.json HTTP/1.1 403 214 - Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0 show less	Web App Attack
🇳🇱 e.fierstra	2026-03-18 16:22:52 (2 months ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇫🇮 oh.mg	2026-03-18 10:22:52 (2 months ago)	[Wed Mar 18 11:22:49.885625 2026] [security2:error] [pid 2897143:tid 2897154] [client 103.119.154.6: ... show more [Wed Mar 18 11:22:49.885625 2026] [security2:error] [pid 2897143:tid 2897154] [client 103.119.154.6:0] [client 103.119.154.6] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "mmn.ca"] [uri "/sftp-config.json"] [unique_id "abp8-SFef3mKOhGl2NpH6AAAAYI"] [Wed Mar 18 11:22:51.611892 2026] [security2:error] [pid 2897098:tid 2897132] [client 103.119.154.6:0] [client 103.119.154.6] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "ano ... show less	Web App Attack Bad Web Bot
🇮🇹 abuseiphack	2026-03-18 06:34:13 (2 months ago)	Automatic report for brute force attack	Web App Attack
Anonymous	2026-03-18 02:31:40 (2 months ago)	Automated report (2026-03-17T22:31:40-04:00). Caught probing for exposed FTP credentials.	Hacking
🇩🇪 Vegascosmetics	2026-03-17 22:50:35 (2 months ago)	Kingcopy(AI-IDS): IP is wandering around the site and acting suspiciously.	Bad Web Bot
🇬🇧 poundawebsiteltd	2026-03-17 15:44:05 (2 months ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 103.119.154.6 - - [17/Mar/2026:15 ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 103.119.154.6 - - [17/Mar/2026:15:44:03 +0000] GET /sftp-config.json HTTP/1.1 403 214 - Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0 show less	Web App Attack
Anonymous	2026-03-17 13:39:03 (2 months ago)	(mod_security) mod_security triggered on hostname [redacted] 103.119.154.6 (KH/Cambodia/-)	SQL Injection
🇺🇸 S.O.B.A. Dev.	2026-03-17 13:32:57 (2 months ago)	Threat Blocked by BeeHive from (ASN:137989) (Network:BIGHUBCOLTD-AS-AP BigHub Co.,Ltd) (Host:soba.de ... show more Threat Blocked by BeeHive from (ASN:137989) (Network:BIGHUBCOLTD-AS-AP BigHub Co.,Ltd) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2026-03-17T13:32:57Z) show less	Brute-Force Web Spam Web App Attack
🇬🇧 Axel	2026-03-17 10:08:02 (2 months ago)	Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /sftp-config. ... show more Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /sftp-config.json Server: UK-01 show less	Web App Attack Hacking SQL Injection
🇧🇪 madeit	2026-03-17 09:41:42 (2 months ago)		Web App Attack
🇬🇧 openstrike.co.uk	2026-03-17 06:14:27 (2 months ago)	9 attacks on password grabbing URLs: GET /.vscode/sftp.json HTTP/1.1	Hacking

Showing 46 to 60 of 94 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 51.75.141.245

🇺🇸 34.23.63.12

🇨🇳 114.67.252.10

🇧🇷 74.244.222.193

🇳🇱 64.89.162.15

🇧🇷 45.165.14.197

🇰🇷 14.55.144.22

🇮🇳 2401:4900:44d1:56a:1906:f1f5:1746:9bd4

🇩🇪 213.209.159.242

🇨🇴 190.60.4.95

🇺🇸 136.49.53.226

🇨🇳 113.140.95.250

🇷🇴 92.118.39.236

🇬🇧 87.236.176.12

🇩🇪 69.5.169.33

🇸🇬 47.84.104.148

🇺🇸 45.79.153.72

🇺🇸 2a09:bac1:7680:7d0::62:64

🇩🇪 194.88.98.111

🇦🇷 186.56.11.2