AbuseIPDB » 103.163.220.209

103.163.220.209 was found in our database!

This IP was reported 97 times. Confidence of Abuse is 13%: ?

13%

ISP	XS Usenet
Usage Type	Fixed Line ISP
ASN	AS206092
Domain Name	xsusenet.com
Country	Japan
City	Asagaya-minami, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 103.163.220.209

Whois 103.163.220.209

IP Abuse Reports for 103.163.220.209:

This IP address has been reported a total of 97 times from 49 distinct sources. 103.163.220.209 was first reported on March 17th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Anonymous	2025-07-04 17:31:16 (1 week ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-07-02 00:01:02 (1 week ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
ThreatBook.io	2025-06-28 22:09:45 (1 week ago)	ThreatBook Intelligence: Scanner,Zombie more details on https://threatbook.io/ip/103.163.220.209<br ... show moreThreatBook Intelligence: Scanner,Zombie more details on https://threatbook.io/ip/103.163.220.209 2025-06-28 10:11:23 /login/..;/manager/html show less	Web App Attack
ThreatBook.io	2025-06-23 22:10:55 (2 weeks ago)	ThreatBook Intelligence: Scanner,Zombie more details on https://threatbook.io/ip/103.163.220.209<br ... show moreThreatBook Intelligence: Scanner,Zombie more details on https://threatbook.io/ip/103.163.220.209 2025-06-23 14:57:02 /render/public/..%252f%255Cd1cfk78juslds271dgjgpxrk7eqbjp137.oast.fun%252f%253F%252f..%252f.. show less	Web App Attack
ThreatBook.io	2025-06-17 22:10:51 (3 weeks ago)	ThreatBook Intelligence: Scanner,Zombie more details on https://threatbook.io/ip/103.163.220.209<br ... show moreThreatBook Intelligence: Scanner,Zombie more details on https://threatbook.io/ip/103.163.220.209 2025-06-17 21:54:35 /plugins/..;/..;/..;/..;/heapdump 2025-06-17 05:08:36 /nagiosna/auth/forgot_password/api/heapdump 2025-06-17 05:08:36 /nagiosna/..;/..;/..;/..;/..;/heapdump 2025-06-17 10:21:55 /j/ 2025-06-17 05:08:37 /login/prod-api/heapdump 2025-06-17 21:54:35 /secure/AboutPage.jspa/api/v1/actuator/heapdump 2025-06-17 05:08:36 /nagiosna/actuator/heapdump; 2025-06-17 21:54:35 /secure/ForgotLoginDetails.jspa/;/actuator/heapdump 2025-06-17 10:22:12 /admin/ 2025-06-17 10:21:53 /neverxxx/ show less	Web App Attack
ThreatBook.io	2025-05-29 22:16:17 (1 month ago)	ThreatBook Intelligence: Scanner,Zombie more details on https://threatbook.io/ip/103.163.220.209<br ... show moreThreatBook Intelligence: Scanner,Zombie more details on https://threatbook.io/ip/103.163.220.209 2025-05-29 08:15:27 /modules/pwd.html show less	Web App Attack
Anonymous	2025-05-08 06:41:33 (2 months ago)	[Drupal AbuseIPDB module] Request path is blacklisted. /wp-admin/images/Mhbgf.php	Web App Attack
mnsf	2025-05-08 02:05:07 (2 months ago)	Scanning/Probing (14) Request Overload (374)	Brute-Force Web App Attack
Anonymous	2025-05-05 08:52:09 (2 months ago)	General scanning observed in manual log review.	Web App Attack
Roderic	2025-04-30 20:20:09 (2 months ago)	(apache_scanners-2) Failed apache-scanners trigger with match [redacted])	Port Scan
mnsf	2025-04-30 20:05:50 (2 months ago)	Too many Status 40X (13)	Brute-Force Web App Attack
tentwentyfour	2025-04-30 14:44:32 (2 months ago)	Blocked for probing for web application vulnerabilities	Brute-Force Web App Attack
ThreatBook.io	2025-04-01 22:12:28 (3 months ago)	ThreatBook Intelligence: Zombie,Exploit more details on https://threatbook.io/ip/103.163.220.209<br ... show moreThreatBook Intelligence: Zombie,Exploit more details on https://threatbook.io/ip/103.163.220.209 2025-04-01 14:25:25 /webmail/api/fetch/http://example.com show less	Web App Attack
ThreatBook.io	2025-03-29 22:09:07 (3 months ago)	ThreatBook Intelligence: Zombie,Exploit more details on https://threatbook.io/ip/103.163.220.209<br ... show moreThreatBook Intelligence: Zombie,Exploit more details on https://threatbook.io/ip/103.163.220.209 2025-03-29 07:45:59 /gys/api/download?file=http://browserkernel.baidu.com/newpac31/videoproxy.conf.txt 2025-03-29 08:36:15 /s/download/file?file=http://browserkernel.baidu.com/newpac31/videoproxy.conf.txt 2025-03-29 07:46:00 /api/proxy-file?file=http://browserkernel.baidu.com/newpac31/videoproxy.conf.txt 2025-03-29 11:55:02 /jira/gateway?endpoint=http://browserkernel.baidu.com/newpac31/videoproxy.conf.txt 2025-03-29 12:13:39 /ry/proxy/http://example.com 2025-03-29 07:45:52 /gy/upload/file?file=http://browserkernel.baidu.com/newpac31/videoproxy.conf.txt 2025-03-29 12:13:14 /b/fetch/http://example.com 2025-03-29 12:13:28 /itriniry/api/http://example.com 2025-03-29 07:45:53 /gys/download/file?file=http://browserkernel.baidu.com/newpac31/videoproxy.conf.txt 2025-03-29 08:36:13 /get-file?file=http://browserkernel.baidu.com/newpac31/videoproxy.conf.txt show less	Web App Attack
ThreatBook.io	2025-03-27 22:11:54 (3 months ago)	ThreatBook Intelligence: Zombie,Exploit more details on https://threatbook.io/ip/103.163.220.209<br ... show moreThreatBook Intelligence: Zombie,Exploit more details on https://threatbook.io/ip/103.163.220.209 2025-03-27 03:49:08 /weblogic/document/parse?path=http://browserkernel.baidu.com/newpac31/videoproxy.conf.txt show less	Web App Attack

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩