JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.214.112.253

103.214.112.253 was found in our database!

This IP was reported 1,077 times. Confidence of Abuse is 100%: ?

100%

ISP	PT Denbe Anugerah Solusindo
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136052
Hostname(s)	panel.lpkpembangunan.sch.id
Domain Name	denbe.co.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.214.112.253

Whois 103.214.112.253

IP Abuse Reports for 103.214.112.253:

This IP address has been reported a total of 1,077 times from 497 distinct sources. 103.214.112.253 was first reported on May 29th 2026, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 iamimmanuelraj	2026-06-11 02:02:13 (18 hours ago)	Fail2ban SSH Bruteforce - Port = 22 - Failures = 5 - Time = 1780355024	Brute-Force SSH
🇩🇪 sh97	2026-06-11 00:49:28 (19 hours ago)	Auto-Install-Ubuntu-Server-24: SSH Brute Force from 103.214.112.253 at 2026-06-11 06:19:26 IST	Brute-Force SSH
🇩🇪 ghostwarriors	2026-06-10 06:21:37 (1 day ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇩🇪 Andreas Kempe	2026-06-10 06:06:04 (1 day ago)	sshd - Fail2ban banned at 2026-06-10T06:04:16.456Z	Brute-Force SSH
🇿🇦 agentics	2026-06-10 02:41:35 (1 day ago)	103.214.112.253 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scal ... show more 103.214.112.253 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scale industrial operation attempting unrelenting brute-force login attempts for months on end - between all CIDR ranges in the botnet, our servers receive over 800 authentication attempts per minute on smtp, imap and relative mail ports, as well as ssh, and other protocols. IP INFO: - IP 103.214.112.253 - Anycast false - City Andongsari - Region East Java - Region Code JI - Country Indonesia (ID) - Continent Asia (AS) - Range 103.214.112.0/24 - Provider PT Cloud Hosting Indonesia - Organisation PT Denbe Anugerah Solusindo - Proxy yes - Type VPN show less	Brute-Force SSH
🇩🇪 sh97	2026-06-10 01:28:26 (1 day ago)	Auto-Install-Ubuntu-Server-24: SSH Brute Force from 103.214.112.253 at 2026-06-10 06:58:24 IST	Brute-Force SSH
Anonymous	2026-06-09 20:27:29 (1 day ago)	Repeated SSH brute force and user enumeration attempts against a secured web server. Multiple failed ... show more Repeated SSH brute force and user enumeration attempts against a secured web server. Multiple failed authentication attempts from this IP across an extended period. show less	Brute-Force SSH
🇩🇪 iamimmanuelraj	2026-06-09 02:02:27 (2 days ago)	Fail2ban SSH Bruteforce - Port = 22 - Failures = 5 - Time = 1780355024	Brute-Force SSH
🇺🇸 Tect.host	2026-06-08 07:43:50 (3 days ago)	Brute-force SSH server detected by Fail2ban	Brute-Force SSH
🇦🇪 sh97	2026-06-08 07:41:11 (3 days ago)	CA01-IFOG-BGP: SSH Brute Force from 103.214.112.253 at 2026-06-08 13:11:11 IST	Brute-Force SSH
🇩🇪 KeksGauner	2026-06-08 07:36:25 (3 days ago)	2026-06-08T07:30:31.710690+00:00 NBG-VS01-WebServer sshd-session[1938658]: Failed password for inval ... show more 2026-06-08T07:30:31.710690+00:00 NBG-VS01-WebServer sshd-session[1938658]: Failed password for invalid user red from 103.214.112.253 port 35512 ssh2 2026-06-08T07:36:23.553452+00:00 NBG-VS01-WebServer sshd-session[1940454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.214.112.253 user=root 2026-06-08T07:36:25.302812+00:00 NBG-VS01-WebServer sshd-session[1940454]: Failed password for root from 103.214.112.253 port 60300 ssh2 ... show less	Brute-Force SSH
Anonymous	2026-06-08 07:30:46 (3 days ago)	Jun 8 15:30:41 mail sshd[22920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ... show more Jun 8 15:30:41 mail sshd[22920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.214.112.253 Jun 8 15:30:44 mail sshd[22920]: Failed password for invalid user red from 103.214.112.253 port 57662 ssh2 show less	Brute-Force SSH
🇨🇦 KIsmay	2026-06-08 06:31:34 (3 days ago)	Jun 8 02:29:35 www3 sshd[2378464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid ... show more Jun 8 02:29:35 www3 sshd[2378464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.214.112.253 user=root Jun 8 02:29:37 www3 sshd[2378464]: Failed password for root from 103.214.112.253 port 58466 ssh2 Jun 8 02:31:32 www3 sshd[2379102]: Invalid user kontakt from 103.214.112.253 port 39534 Jun 8 02:31:32 www3 sshd[2379102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.214.112.253 Jun 8 02:31:34 www3 sshd[2379102]: Failed password for invalid user kontakt from 103.214.112.253 port 39534 ssh2 ... show less	Brute-Force SSH
🇩🇪 hotbbqsauce	2026-06-08 05:30:17 (3 days ago)	2026-06-08T05:24:36.621944+00:00 blocklabs-server sshd[2486526]: User root from 103.214.112.253 not ... show more 2026-06-08T05:24:36.621944+00:00 blocklabs-server sshd[2486526]: User root from 103.214.112.253 not allowed because not listed in AllowUsers 2026-06-08T05:28:18.797018+00:00 blocklabs-server sshd[2486654]: Invalid user ftpuser from 103.214.112.253 port 32948 2026-06-08T05:30:16.725841+00:00 blocklabs-server sshd[2486730]: Invalid user edge from 103.214.112.253 port 36790 ... show less	Brute-Force SSH
🇪🇸 whatda	2026-06-08 05:20:58 (3 days ago)	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2026-06-08T05:20:54Z and 2026-06-0 ... show more Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2026-06-08T05:20:54Z and 2026-06-08T05:20:58Z show less	Brute-Force SSH

Showing 1 to 15 of 1077 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 170.106.84.136

🇺🇸 170.106.8.38

🇺🇸 162.217.165.13

🇺🇸 162.216.150.100

🇹🇼 128.14.236.41

🇭🇰 103.226.124.223

🇺🇸 91.230.168.213

🇰🇷 59.15.58.148

🇨🇳 47.97.38.226

🇭🇰 47.75.99.54

🇫🇷 46.105.28.235

🇺🇸 194.195.208.25

🇺🇸 194.195.208.6

🇨🇳 180.184.38.93

🇺🇸 170.106.82.209

🇺🇸 170.106.74.215

🇪🇬 156.213.46.6

🇺🇸 134.199.238.115

🇧🇩 103.183.62.0

🇳🇱 213.176.16.100