JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.124.227.152

103.124.227.152 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 31%: ?

31%

ISP	LEVEL3 CARRIER LIMITED
Usage Type	Fixed Line ISP
ASN	AS58682
Hostname(s)	152.227.124.103-level3carrier.net
Domain Name	level3carrier.com
Country	🇧🇩 Bangladesh
City	Dhaka, Dhaka Division

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.124.227.152

Whois 103.124.227.152

IP Abuse Reports for 103.124.227.152:

This IP address has been reported a total of 32 times from 23 distinct sources. 103.124.227.152 was first reported on August 15th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-09 01:45:52 (1 week ago)	Botnet activity. Attribution: Angara Technologies Group / mikhail-smirnov-79830322 \| Attack Signatur ... show more Botnet activity. Attribution: Angara Technologies Group / mikhail-smirnov-79830322 \| Attack Signature Blocked: /wishlist/index/add/product/9737/form_key/izh1c9vDg6hEPGLe/ \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, l... show less	Hacking Bad Web Bot Web App Attack
🇫🇷 security.rdmc.fr	2026-05-21 17:12:32 (4 weeks ago)	Port Scan Attack proto:TCP src:12385 dst:23	Port Scan
🇳🇱 JCB	2026-05-19 16:21:00 (1 month ago)	103.124.227.152 - - [19/May/2026:07:09:08 +0300] "GET /s/en_GB/7111/a9073852b66baaca023118cda3b0e6da ... show more 103.124.227.152 - - [19/May/2026:07:09:08 +0300] "GET /s/en_GB/7111/a9073852b66baaca023118cda3b0e6dagc0f88/23/_/favicon.ico HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" show less	Web App Attack Hacking
🇨🇳 ThreatBook.io	2026-05-13 00:47:38 (1 month ago)	ThreatBook Intelligence: Zombie,vpn_proxy more details on https://threatbook.io/ip/103.124.227.152	SSH
🇺🇸 MPL	2026-05-12 16:05:25 (1 month ago)	tcp/23	Port Scan
🇬🇧 knock	2026-05-12 13:11:30 (1 month ago)	Knock-Knock honeypot brute-force: Telnet (5 total hits)	Brute-Force
🇺🇸 RAP	2026-05-12 13:05:43 (1 month ago)	2026-05-12 13:05:43 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
Anonymous	2026-05-12 05:03:21 (1 month ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇫🇷 Sklurk	2026-04-26 01:38:50 (1 month ago)	Web App Attack	Web App Attack
🇩🇪 Admins@FBN	2026-04-25 11:02:03 (1 month ago)	FW-PortScan: Traffic Blocked srcport=23455 dstport=23	Port Scan
🇸🇬 mypatricks	2026-03-17 12:38:29 (3 months ago)	103.124.227.152 \| Port: 11291 \| DNS: 152.227.124.103-level3carrier.net 2026-03-17T20:38:26+08:00 Asi ... show more 103.124.227.152 \| Port: 11291 \| DNS: 152.227.124.103-level3carrier.net 2026-03-17T20:38:26+08:00 Asia/Dhaka \| Fake HTTP Protocol detected! \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36 HTTP/1.1 443 GET \| URL: /louis-vuitton-simple-birthday-cake/?fad022b591422f95e361b5e6dc=EUR&code=EUR \| Ref: - \| Country: BD/Bangladesh/+06:00 IP City: Tungipara macOS 9ddc0e072a0936c6-DAC/Dhaka, Bangladesh 1 hits/0 secs Browser 3 show less	Brute-Force Web App Attack Blog Spam Web Spam Exploited Host
🇳🇱 EGP Abuse Dept	2026-03-02 16:58:09 (3 months ago)	Scanning for port/service exploits on tpc-043.mach3builders.nl	Port Scan Hacking
🇨🇦 polycoda	2026-02-28 13:11:16 (3 months ago)	🥶 Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27	DDoS Attack
🇬🇧 findlab	2026-02-10 17:30:01 (4 months ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 13:37:03 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 103.124.227.152 (152.227.124.103-level3carrier. ... show more (mod_security) mod_security (id:210730) triggered by 103.124.227.152 (152.227.124.103-level3carrier.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 08:36:57.745898 2026] [security2:error] [pid 7018:tid 7018] [client 103.124.227.152:57124] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.radiointernational.net\|F\|2"] [data ".nyalahotel.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.radiointernational.net"] [uri "/http>/www.nyalahotel.com"] [unique_id "aYni-Q1YowiUZ0mFGQRNbAAAACU"], referer: http://www.radiointernational.net/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇪 200.107.163.195

🇺🇸 147.185.132.62

🇺🇸 68.235.46.49

🇺🇸 44.215.219.236

🇹🇼 198.235.24.122

🇹🇼 198.235.24.121

🇹🇼 198.235.24.120

🇸🇬 176.97.118.111

🇺🇸 157.131.169.86

🇳🇱 91.92.40.31

🇺🇸 74.125.181.154

🇺🇸 68.235.46.46

🇺🇸 68.235.46.37

🇺🇸 64.62.156.158

🇬🇧 20.39.225.26

🇺🇸 207.29.202.31

🇧🇪 198.235.24.255

🇹🇼 198.235.24.113

🇨🇦 198.50.202.93

🇬🇧 193.163.125.141