JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.130.64.165

103.130.64.165 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 54%: ?

54%

ISP	Netlink Websolution Pvt. Ltd
Usage Type	Fixed Line ISP
ASN	AS138297
Domain Name	Unknown
Country	🇮🇳 India
City	Ankleshwar, Gujarat

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.130.64.165

Whois 103.130.64.165

IP Abuse Reports for 103.130.64.165:

This IP address has been reported a total of 12 times from 9 distinct sources. 103.130.64.165 was first reported on June 11th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-17 15:24:00 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 103.130.64.165 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 103.130.64.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 11:23:55.539971 2026] [security2:error] [pid 27561:tid 27585] [client 103.130.64.165:57216] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.130.64.165 (+1 hits since last alert)\|supercyprus.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "supercyprus.com"] [uri "/xmlrpc.php"] [unique_id "ajK8C4WRi5YnmUdINLYJxwAAARU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-17 14:52:57 (3 days ago)		Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 12:43:24 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 103.130.64.165 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 103.130.64.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 08:43:18.436869 2026] [security2:error] [pid 5591:tid 5717] [client 103.130.64.165:57931] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.130.64.165 (+1 hits since last alert)\|arizonasolutionsgroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "arizonasolutionsgroup.com"] [uri "/xmlrpc.php"] [unique_id "ajFE5vAXJqr8qQOVzOXg5AAAAUw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-14 16:41:59 (6 days ago)	[redacted] 103.130.64.165 - - [14/Jun/2026:18:41:16 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" " ... show more [redacted] 103.130.64.165 - - [14/Jun/2026:18:41:16 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.2)" [redacted] 103.130.64.165 - - [14/Jun/2026:18:41:26 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 103.130.64.165 - - [14/Jun/2026:18:41:36 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 103.130.64.165 - - [14/Jun/2026:18:41:47 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 103.130.64.165 - - [14/Jun/2026:18:41:57 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" ... show less	Hacking Web App Attack
🇫🇷 applemooz	2026-06-14 15:40:36 (6 days ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 15:02:06 (6 days ago)	(mod_security) mod_security (id:240335) triggered by 103.130.64.165 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 103.130.64.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 11:02:00.807689 2026] [security2:error] [pid 2526:tid 2526] [client 103.130.64.165:58177] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.130.64.165 (+1 hits since last alert)\|mikedeutsch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "mikedeutsch.com"] [uri "/xmlrpc.php"] [unique_id "ai7CaBXvvZRt2i8jfS-uRgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-14 15:00:15 (6 days ago)	Fail2Ban WordPress login brute-force detected	Brute-Force Web App Attack
Anonymous	2026-06-12 05:47:06 (1 week ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇫🇷 dynamix	2026-06-11 17:23:36 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇺🇸 WeekendWeb	2026-06-11 16:51:00 (1 week ago)	Wordpress Vunerability attack	Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 14:37:14 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 103.130.64.165 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 103.130.64.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 10:37:07.652935 2026] [security2:error] [pid 19786:tid 19805] [client 103.130.64.165:60723] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.130.64.165 (+1 hits since last alert)\|gabegabel.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "gabegabel.com"] [uri "/xmlrpc.php"] [unique_id "airIE3wX_WZK-5fwtoj1FgAAAE4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-11 14:35:22 (1 week ago)	(wordpress) Failed wordpress login from 103.130.64.165 (IN/India/-)	Brute-Force

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.228.203.3

🇳🇱 204.76.203.219

🇬🇧 152.32.157.7

🇷🇺 89.23.113.208

🇺🇸 66.132.186.248

🇸🇬 43.133.61.254

🇺🇸 20.115.90.159

🇦🇲 176.32.193.16

🇺🇸 162.243.0.195

🇺🇸 162.216.150.110

🇺🇸 104.42.151.157

🇭🇰 104.28.158.176

🇮🇩 103.172.205.103

🇭🇰 199.45.154.140

🇫🇮 147.185.133.119

🇦🇷 131.161.184.46

🇷🇴 2.57.121.112

🇺🇸 20.106.49.209

🇫🇮 147.185.133.15

🇮🇩 110.35.80.116