JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.161.35.64

103.161.35.64 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 0%: ?

ISP	GSJZ(CHINA)TECHNOLOGY CO.,LIMITED t/a Guosheng IDC lease
Usage Type	Data Center/Web Hosting/Transit
ASN	AS198584
Domain Name	gsjztech.top
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.161.35.64

Whois 103.161.35.64

IP Abuse Reports for 103.161.35.64:

This IP address has been reported a total of 8 times from 6 distinct sources. 103.161.35.64 was first reported on August 30th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Željko Ražnatović (Arkan)	2024-10-14 08:21:00 (1 year ago)	Port Scanning	Port Scan
🇫🇷 ingrowrook	2024-10-14 06:33:00 (1 year ago)	Bruteforce on ports 443 & 80 detected	Hacking Brute-Force Exploited Host Web App Attack
🇵🇭 galvezrayo	2024-10-09 06:11:00 (1 year ago)	103.161.35.64 37422 210.213.146.169 80 9c:8e:99:5b:27:5a Blocked Snort Message: SQL generic sql ... show more 103.161.35.64 37422 210.213.146.169 80 9c:8e:99:5b:27:5a Blocked Snort Message: SQL generic sql with comments injection attempt - GET parameter; Snort Rule ID: 1:16431:6 103.161.35.64 37420 210.213.146.169 80 9c:8e:99:5b:27:5a Blocked Snort Message: SQL generic sql with comments injection attempt - GET parameter; Snort Rule ID: 1:16431:6 103.161.35.64 37418 210.213.146.169 80 9c:8e:99:5b:27:5a Blocked Snort Message: SQL generic sql with comments injection attempt - GET parameter; Snort Rule ID: 1:16431:6 show less	Port Scan Hacking SQL Injection Spoofing Brute-Force Exploited Host
🇧🇷 appuni	2024-09-02 09:36:02 (1 year ago)	(PERMBLOCK) 103.161.35.64 (HK/Hong Kong/-) has had more than 4 temp blocks	Hacking
🇧🇷 leolemos	2024-09-02 07:11:48 (1 year ago)	103.161.35.64 - - [02/Sep/2024:04:11:39 -0300] "POST /xmlrpc.php HTTP/2.0" 200 484 "-" "Mozilla/5.0 ... show more 103.161.35.64 - - [02/Sep/2024:04:11:39 -0300] "POST /xmlrpc.php HTTP/2.0" 200 484 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36" 103.161.35.64 - - [02/Sep/2024:04:11:41 -0300] "POST /xmlrpc.php HTTP/2.0" 200 484 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36" 103.161.35.64 - - [02/Sep/2024:04:11:44 -0300] "POST /xmlrpc.php HTTP/2.0" 200 484 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36" 103.161.35.64 - - [02/Sep/2024:04:11:47 -0300] "POST /xmlrpc.php HTTP/2.0" 200 484 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36" show less	Brute-Force Web App Attack
🇧🇷 appuni	2024-09-02 05:07:24 (1 year ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 103.161.35.64 (HK/Hong K ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 103.161.35.64 (HK/Hong Kong/-): (CF_ENABLE) show less	Port Scan
🇧🇷 leolemos	2024-08-30 06:02:23 (1 year ago)	103.161.35.64 - - [30/Aug/2024:03:02:16 -0300] "POST /xmlrpc.php HTTP/1.1" 200 4524 "-" "Mozilla/5.0 ... show more 103.161.35.64 - - [30/Aug/2024:03:02:16 -0300] "POST /xmlrpc.php HTTP/1.1" 200 4524 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36" 103.161.35.64 - - [30/Aug/2024:03:02:19 -0300] "POST /xmlrpc.php HTTP/1.1" 200 4524 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36" 103.161.35.64 - - [30/Aug/2024:03:02:21 -0300] "POST /xmlrpc.php HTTP/1.1" 200 4524 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36" 103.161.35.64 - - [30/Aug/2024:03:02:22 -0300] "POST /xmlrpc.php HTTP/1.1" 200 4524 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36" show less	Brute-Force Web App Attack
🇺🇸 hostseries	2024-08-30 03:43:09 (1 year ago)	Trigger: LF_MODSEC	Brute-Force

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 203.200.74.18

🇳🇱 185.242.226.8

🇳🇱 185.31.200.132

🇺🇸 104.248.225.185

🇺🇸 66.132.195.30

🇺🇸 34.182.247.20

🇧🇷 2804:d47:740d:9600:9191:7ca4:5650:e164

🇸🇬 194.61.41.48

🇺🇸 172.93.106.153

🇩🇪 167.94.146.67

🇨🇳 118.31.75.226

🇬🇧 87.106.44.172

🇨🇦 85.217.149.62

🇫🇮 45.87.249.146

🇫🇷 31.36.163.95

🇺🇸 20.84.145.62

🇨🇳 182.244.0.150

🇨🇳 124.160.173.22

🇨🇳 120.230.22.77

🇵🇰 103.26.82.11