JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.132.52.60

103.132.52.60 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 34%: ?

34%

ISP	PT. ADEAKSA INDO JAYATAMA
Usage Type	Fixed Line ISP
ASN	AS138123
Hostname(s)	60.sub-52-132-103.dexanet.co.id
Domain Name	dexanet.co.id
Country	🇮🇩 Indonesia
City	Pekalongan, Central Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.132.52.60

Whois 103.132.52.60

IP Abuse Reports for 103.132.52.60:

This IP address has been reported a total of 21 times from 17 distinct sources. 103.132.52.60 was first reported on November 19th 2024, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 sockominfo	2026-06-24 08:00:58 (23 hours ago)	Zimbra: Login failures from malicious IP: 103.132.52.60. Threat Score: 6.3/10 (MEDIUM). Confidence: ... show more Zimbra: Login failures from malicious IP: 103.132.52.60. Threat Score: 6.3/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 4.6/10 (Medium). CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L. Bayesian Probability: 77%. MITRE ATT&CK: T1083 (File and Directory Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-24 07:00:09 (1 day ago)	Zimbra: Login failures from malicious IP: 103.132.52.60. Threat Score: 5.4/10 (MEDIUM). Reported by ... show more Zimbra: Login failures from malicious IP: 103.132.52.60. Threat Score: 5.4/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇩🇪 Vegascosmetics	2026-06-15 08:24:04 (1 week ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
🇮🇩 hermawan	2026-06-01 16:10:23 (3 weeks ago)	[Mon Jun 01 23:10:22.799749 2026] [authz_core:error] [pid 20953:tid 139928322152128] [client 103.132 ... show more [Mon Jun 01 23:10:22.799749 2026] [authz_core:error] [pid 20953:tid 139928322152128] [client 103.132.52.60:43299] AH01630: client denied by server configuration: /var/www/plant-t.webp [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[20962] [G1R/bnOfQrY] [ah2u7mmu7HUVsgC2Z5fwFQAAUAg] keep_alive=[1] [2026-06-01 23:10:22.799753] [R:ah2u7mmu7HUVsgC2Z5fwFQAAUAg] UA:'Mozilla/5.0 (Linux; Android 12; SM-S901B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Mobile Safari/537.36' Host:'staklim-jatim.bmkg.go.id:443' ACCEPT:'text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7' Accept-Encoding:'gzip, deflate, br Accept-Language:'en-US,en;q=0.8 Upgrade-Insecure-Requests:'1 ... show less	Email Spam Hacking
🇦🇺 MAGIC	2026-05-29 01:31:56 (3 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 SMARTNET	2026-05-27 06:03:53 (4 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: e316b406-db2c-400a-bc37-dfbfcc0acc61	DDoS Attack
🇳🇱 wlt-blocker	2026-05-21 04:48:44 (1 month ago)	Attempts to login to mail server with wrong username and/or password	Brute-Force
🇫🇷 security.rdmc.fr	2026-05-10 08:27:04 (1 month ago)	Port Scan Attack proto:TCP src:44846 dst:23	Port Scan
🇺🇸 RAP	2026-05-06 07:46:00 (1 month ago)	2026-05-06 07:46:00 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
Anonymous	2026-04-29 12:39:01 (1 month ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
Anonymous	2026-04-14 22:20:10 (2 months ago)	\| [Dangerous/Indonesia] Aggressive IP 103.132.52.60 (~30 hits). Type: DoS Defender- Web server 400 e ... show more \| [Dangerous/Indonesia] Aggressive IP 103.132.52.60 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇩🇪 NoaQT	2026-04-05 22:06:24 (2 months ago)	103.132.52.60 - - [05/Apr/2026:16:30:43 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinteres ... show more 103.132.52.60 - - [05/Apr/2026:16:30:43 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinterest.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.132.52.60 - - [05/Apr/2026:16:53:05 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.linkedin.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.132.52.60 - - [05/Apr/2026:16:56:23 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.instagram.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.132.52.60 - - [05/Apr/2026:16:59:27 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.yahoo.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.132.52.60 - - [05/Apr/2026:16:53:05 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.linkedin.com/" "Mozilla/5.0 (X11; Linux x86_6 ... show less	DDoS Attack
🇩🇪 NoaQT	2026-04-05 16:03:27 (2 months ago)	103.132.52.60 - - [05/Apr/2026:17:53:56 +0200] "GET /web/login HTTP/1.1" 499 0 "https://app.biz/home ... show more 103.132.52.60 - - [05/Apr/2026:17:53:56 +0200] "GET /web/login HTTP/1.1" 499 0 "https://app.biz/home" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.132.52.60 - - [05/Apr/2026:17:56:48 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.whatsapp.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.132.52.60 - - [05/Apr/2026:17:56:48 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.whatsapp.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.132.52.60 - - [05/Apr/2026:17:57:43 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.bing.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.132.52.60 - - [05/Apr/2026:17:57:43 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.bing.com/" "Mozilla/5.0 (Macintosh; Intel ... show less	DDoS Attack
🇺🇸 RAP	2026-03-31 06:27:39 (2 months ago)	2026-03-31 06:27:39 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇺🇸 matt	2026-03-04 02:35:25 (3 months ago)	DDOS attack with query parameters attempting to overload WordPress site.	DDoS Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.234.192.95

🇨🇳 113.123.251.161

🇨🇳 113.25.249.100

🇺🇸 104.237.243.134

🇺🇸 45.60.122.188

🇪🇬 41.38.50.160

🇳🇴 20.100.172.253

🇨🇳 218.92.236.102

🇸🇬 192.161.168.217

🇺🇸 147.185.132.191

🇨🇳 112.94.5.43

🇻🇳 103.92.24.141

🇨🇦 52.138.3.29

🇪🇬 45.245.216.49

🇳🇱 45.148.10.152

🇧🇪 35.205.89.153

🇺🇸 18.191.255.164

🇹🇼 198.235.24.48

🇺🇸 192.3.199.159

🇳🇱 185.242.226.91