JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.126.119.252

103.126.119.252 was found in our database!

This IP was reported 72 times. Confidence of Abuse is 2%: ?

ISP	PT. Media Tekno Nusantara
Usage Type	Fixed Line ISP
ASN	AS139972
Domain Name	emtn.co.id
Country	🇮🇩 Indonesia
City	Pasarkemis, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.126.119.252

Whois 103.126.119.252

IP Abuse Reports for 103.126.119.252:

This IP address has been reported a total of 72 times from 48 distinct sources. 103.126.119.252 was first reported on March 10th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 polycoda	2026-06-02 12:08:56 (2 weeks ago)	🥶 Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27	DDoS Attack
🇺🇸 kosada.com	2026-03-30 20:21:34 (2 months ago)	Web vulnerability probing: /xmlrpc.php	Web App Attack
🇹🇷 rtbh.com.tr	2026-03-29 20:12:19 (2 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇬🇧 consul.to	2026-03-29 19:26:59 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 mnsf	2026-03-29 16:05:51 (2 months ago)	Xmlrpc Caught (6)	Brute-Force Web App Attack
🇳🇱 wlt-blocker	2026-03-29 13:29:33 (2 months ago)	Unauthorized access to webpage admin	Web App Attack
🇫🇷 ELYAZ	2026-03-29 04:02:16 (2 months ago)	(wordpress) Failed wordpress login from 103.126.119.252 (ID/Indonesia/-): (CF_ENABLE)	Brute-Force
🇬🇧 thetomtaylor.co.uk	2026-03-29 02:45:13 (2 months ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [wa02]	Bad Web Bot Web App Attack
🇺🇸 2k11.co.za	2026-03-28 10:12:00 (2 months ago)	103.126.119.252 - - [28/Mar/2026:05:57:30 -0400] "POST /xmlrpc.php HTTP/2.0" 200 207 "-" "Mozilla/5. ... show more 103.126.119.252 - - [28/Mar/2026:05:57:30 -0400] "POST /xmlrpc.php HTTP/2.0" 200 207 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; x86) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/88.0.0.0 Safari/537.36" 103.126.119.252 - - [28/Mar/2026:06:10:42 -0400] "POST /xmlrpc.php HTTP/2.0" 200 207 "-" "Mozilla/5.0 (Windows NT 6.2; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/15.0.0.0 Safari/537.36" 103.126.119.252 - - [28/Mar/2026:06:12:00 -0400] "POST /xmlrpc.php HTTP/2.0" 200 207 "-" "Mozilla/5.0 (Windows NT 6.3; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/99.0.0.0 Safari/537.36" ... show less	Brute-Force
🇩🇪 LRob.fr	2026-03-28 09:45:10 (2 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇳🇱 i-turnradio.nl	2026-03-28 07:53:42 (2 months ago)	2026-03-28 @ 08:53:42 (CET) ~ Blocked for trying to access: /xmlrpc.php	Web App Attack
Anonymous	2026-03-28 06:26:55 (2 months ago)	(wordpress) Failed wordpress login from 103.126.119.252 (ID/Indonesia/-)	Brute-Force
🇳🇱 wlt-blocker	2026-03-28 02:35:44 (2 months ago)	Unauthorized access to webpage admin	Web App Attack
🇹🇷 rtbh.com.tr	2026-03-27 20:12:18 (2 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇬🇧 consul.to	2026-03-27 10:52:36 (2 months ago)	Web attack/malicious scanning detected	Web App Attack

Showing 1 to 15 of 72 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 164.92.132.136

🇺🇸 162.216.150.130

🇫🇮 147.185.133.225

🇺🇸 147.185.132.99

🇺🇸 134.209.67.19

🇨🇳 124.66.77.121

🇰🇷 59.29.226.135

🇳🇱 45.148.10.152

🇳🇱 45.148.10.147

🇮🇪 34.255.10.179

🇲🇽 195.40.31.168

🇷🇺 176.104.136.171

🇺🇸 173.247.226.62

🇺🇸 172.190.89.127

🇺🇸 152.32.233.95

🇮🇳 139.59.18.80

🇨🇳 123.160.233.59

🇨🇳 106.13.114.235

🇳🇱 91.92.242.13

🇬🇧 82.68.73.84