JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.213.112.120

103.213.112.120 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 95%: ?

95%

ISP	Cyber Internet Services Pakistan
Usage Type	Fixed Line ISP
ASN	AS9541
Domain Name	cyber.net.pk
Country	🇵🇰 Pakistan
City	Daska Kalan, Punjab

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.213.112.120

Whois 103.213.112.120

IP Abuse Reports for 103.213.112.120:

This IP address has been reported a total of 35 times from 21 distinct sources. 103.213.112.120 was first reported on July 27th 2025, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 RAP	2026-06-21 23:25:57 (2 hours ago)	2026-06-21 23:25:57 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇮🇪 RoboSOC	2026-06-21 16:32:37 (9 hours ago)	GPON Home Routers Remote Code Execution Vulnerability CVE 2018-10562, PTR: PTR record not found	Hacking
🇩🇪 anycast_ac	2026-06-21 16:15:15 (10 hours ago)	[mirai-detector honeypot] Inbound attack against our honeypot on tcp/23 (telnet). Tried credentials: ... show more [mirai-detector honeypot] Inbound attack against our honeypot on tcp/23 (telnet). Tried credentials: b'default':b'default' Commands captured: $ start $ enable $ config terminal $ system $ linuxshell show less	DDoS Attack IoT Targeted Brute-Force
🇺🇸 xmission.com	2026-06-21 15:00:13 (11 hours ago)	Blocked by UFW (TCP on 23) Source port: 33535 TTL: 45 Packet length: 40 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 33535 TTL: 45 Packet length: 40 TOS: 0x08 This report (for 103.213.112.120) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇺🇸 MPL	2026-06-21 02:20:39 (1 day ago)	tcp/23	Port Scan
🇦🇹 urnilxfgbez	2026-06-20 22:45:00 (1 day ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇳🇱 StopAbuse	2026-06-20 12:47:17 (1 day ago)	tcp/23	Port Scan Exploited Host
🇦🇹 urnilxfgbez	2026-06-19 22:45:00 (2 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 RAP	2026-06-19 06:04:46 (2 days ago)	2026-06-19 06:04:46 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇺🇸 MPL	2026-06-19 02:14:12 (3 days ago)	tcp/23 (3 or more attempts)	Port Scan
🇺🇸 Cyber Crusader	2026-06-19 01:16:24 (3 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇩🇪 EnthecSolutions	2026-06-18 22:01:13 (3 days ago)	Detected by Enthec Solutions. \| Attempts: 136 in 24h \| Target port: 23	Brute-Force SSH
🇺🇸 MPL	2026-06-18 14:13:58 (3 days ago)	tcp/8080 (8 or more attempts)	Port Scan
🇺🇸 rjdefrancisco	2026-06-18 07:07:30 (3 days ago)	Unwanted traffic detected by honeypot on June 17, 2026: port scans (9 port 23 scans).	Port Scan Brute-Force SSH
🇧🇷 SOC PR	2026-06-18 03:56:21 (3 days ago)	IPS: Command Injection Over HTTP.	Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.238

🇺🇸 103.250.80.204

🇮🇳 98.70.50.166

🇮🇪 86.40.161.199

🇰🇷 222.99.52.202

🇳🇱 195.178.110.30

🇬🇧 185.238.223.1

🇷🇺 176.59.129.147

🇺🇸 138.199.52.21

🇨🇳 101.34.204.115

🇺🇸 98.185.158.245

🇫🇷 51.254.113.225

🇺🇸 40.65.56.225

🇧🇪 34.156.202.93

🇮🇳 2401:4900:8f66:1de1:acd0:edda:ed29:682c

🇰🇷 218.50.165.92

🇹🇼 211.72.129.212

🇹🇼 198.235.24.85

🇿🇼 197.221.232.44

🇩🇪 194.88.98.120