JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.125.146.64

103.125.146.64 was found in our database!

This IP was reported 133 times. Confidence of Abuse is 100%: ?

100%

ISP	IPXO-103-125-146-0-24
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	ipxo.com
Country	🇯🇵 Japan
City	Yokohama, Kanagawa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.125.146.64

Whois 103.125.146.64

IP Abuse Reports for 103.125.146.64:

This IP address has been reported a total of 133 times from 67 distinct sources. 103.125.146.64 was first reported on April 1st 2023, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-04 05:05:17 (9 hours ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-06-03 20:49:44 (17 hours ago)	Excessive multi-domain requests	Brute-Force
🇺🇦 URAN Publishing Service	2026-06-02 18:28:02 (1 day ago)	103.125.146.64 - - [02/Jun/2026:21:28:01 +0300] "GET /wp-includes/themes.php HTTP/1.1" 404 707 "-" " ... show more 103.125.146.64 - - [02/Jun/2026:21:28:01 +0300] "GET /wp-includes/themes.php HTTP/1.1" 404 707 "-" "Go-http-client/1.1" ... show less	Web App Attack
Anonymous	2026-06-02 18:04:58 (1 day ago)	103.125.146.64 - - [02/Jun/2026:20:04:37 +0200] "GET /wp-content/plugins/aatdgetgdg/main.php HTTP/1. ... show more 103.125.146.64 - - [02/Jun/2026:20:04:37 +0200] "GET /wp-content/plugins/aatdgetgdg/main.php HTTP/1.1" 404 84316 "https://natc.gov.zm/wp-content/plugins/aatdgetgdg/main.php" "Go-http-client/1.1" 103.125.146.64 - - [02/Jun/2026:20:04:38 +0200] "GET /wp-content/plugins/aatdgetgdg/main.php HTTP/1.1" 404 16947 "https://natc.gov.zm/wp-content/plugins/aatdgetgdg/main.php" "Go-http-client/1.1" 103.125.146.64 - - [02/Jun/2026:20:04:40 +0200] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 404 84316 "https://natc.gov.zm/wp-content/plugins/pwnd/pwnd.php" "Go-http-client/1.1" 103.125.146.64 - - [02/Jun/2026:20:04:40 +0200] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 404 16947 "https://natc.gov.zm/wp-content/plugins/pwnd/pwnd.php" "Go-http-client/1.1" 103.125.146.64 - - [02/Jun/2026:20:04:57 +0200] "GET /wp-content/admin.php HTTP/1.1" 404 84223 "https://natc.gov.zm/wp-content/admin.php" "Go-http-client/1.1" ... show less	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-02 16:15:05 (1 day ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇪🇸 alferez	2026-06-02 15:15:28 (1 day ago)	Searching hacked php files	Hacking Exploited Host Web App Attack
Anonymous	2026-05-31 23:33:52 (3 days ago)	Banned by Fail2Ban on server	Web App Attack
🇫🇷 Kimax	2026-05-31 20:23:56 (3 days ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇲🇾 Rizzy	2026-05-31 18:23:04 (3 days ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇩🇪 Ba-Yu	2026-05-31 12:18:33 (4 days ago)	WordPress hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇺🇦 URAN Publishing Service	2026-05-30 22:22:22 (4 days ago)	103.125.146.64 - - [31/May/2026:01:22:21 +0300] "GET /wp-includes/blocks/code/ HTTP/1.1" 404 708 "-" ... show more 103.125.146.64 - - [31/May/2026:01:22:21 +0300] "GET /wp-includes/blocks/code/ HTTP/1.1" 404 708 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇸 mind5t0rm	2026-05-30 21:53:00 (4 days ago)	(WPLOGIN,XMLRPC) Login failure/trigger from 103.125.146.64 (JP/Japan/-): 3 in the last 3600 secs; Po ... show more (WPLOGIN,XMLRPC) Login failure/trigger from 103.125.146.64 (JP/Japan/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 103.125.146.64 - - [31/May/2026:04:51:00 +0700] "GET /wp-login.php?redirect_to=https%3A%2F%2Fhealthy-skin.me%2Fwp-admin%2F&reauth=1 HTTP/2.0" 200 2548 "https://healthy-skin.me/wp-admin/" "Go-http-client/2.0" 103.125.146.64 - - [31/May/2026:04:52:22 +0700] "GET /wp-login.php?redirect_to=https%3A%2F%2Fhealthy-skin.me%2Fwp-admin%2Fnetwork%2F&reauth=1 HTTP/2.0" 200 2552 "https://healthy-skin.me/wp-admin/network/" "Go-http-client/2.0" 103.125.146.64 - - [31/May/2026:04:52:59 +0700] "GET /xmlrpc.php HTTP/2.0" 403 154 "http://healthy-skin.me/xmlrpc.php" "Go-http-client/2.0" show less	Port Scan
🇮🇩 soc-yk	2026-05-30 06:54:14 (5 days ago)	Type: suspicious_network_activity Threat: unknown Risk: 100 Events: 162 Evidence: - Persistent susp ... show more Type: suspicious_network_activity Threat: unknown Risk: 100 Events: 162 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Port Scan Hacking
🇮🇩 soc-yk	2026-05-29 18:06:11 (5 days ago)	Type: web_scanning Threat: unknown Risk: 100 Events: 81 Evidence: - Automated hostile web probing d ... show more Type: web_scanning Threat: unknown Risk: 100 Events: 81 Evidence: - Automated hostile web probing detected - Repeated web scanning activity observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Web App Attack
Anonymous	2026-05-29 15:12:36 (5 days ago)	Banned by Fail2Ban on server	Web App Attack

Showing 1 to 15 of 133 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇰 220.247.224.226

🇧🇷 200.187.172.237

🇺🇸 172.98.33.5

🇺🇸 107.173.17.193

🇨🇳 106.63.26.22

🇺🇸 104.243.35.104

🇮🇩 103.153.63.201

🇭🇰 103.11.102.106

🇹🇷 95.0.100.40

🇨🇳 27.215.80.168

🇨🇦 216.73.162.175

🇺🇸 192.3.206.66

🇷🇺 185.60.212.89

🇺🇸 172.234.192.12

🇺🇸 159.203.69.92

🇨🇳 122.224.205.42

🇻🇳 113.170.51.84

🇺🇸 104.168.54.192

🇮🇹 93.92.76.231

🇭🇰 47.82.102.235