JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.49.223.111

103.49.223.111 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 100%: ?

100%

ISP	PT. Detik Ini Juga
Usage Type	Fixed Line ISP
ASN	AS24211
Domain Name	detik.net.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.49.223.111

Whois 103.49.223.111

IP Abuse Reports for 103.49.223.111:

This IP address has been reported a total of 134 times from 98 distinct sources. 103.49.223.111 was first reported on June 22nd 2026, and the most recent report was 7 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Holger	2026-06-29 08:54:40 (7 minutes ago)	WordPress WebAttack	Brute-Force Web App Attack
Anonymous	2026-06-27 14:46:07 (1 day ago)	Failed Wordpress Logins	Web App Attack
🇪🇸 Gem	2026-06-26 22:14:47 (2 days ago)	Unauthorized web scan.	Web App Attack
Anonymous	2026-06-26 02:34:14 (3 days ago)	Failed Wordpress Logins	Web App Attack
🇫🇷 tecnicorioja	2026-06-25 22:02:01 (3 days ago)	wp-login attack [25/Jun/2026:14:02:27	Brute-Force Web App Attack
🇩🇪 nyt	2026-06-25 13:06:26 (3 days ago)	Repeated WordPress login POSTs blocked by WAF (3 in 6h)	Brute-Force Web App Attack
🇫🇮 KnightIndustries	2026-06-25 12:59:52 (3 days ago)	2026-06-25T13:55:12.731470+02:00 milkyway wordpress(learncryptography.pw)[938666]: Authentication at ... show more 2026-06-25T13:55:12.731470+02:00 milkyway wordpress(learncryptography.pw)[938666]: Authentication attempt for unknown user user from 103.49.223.111 2026-06-25T14:21:33.434861+02:00 milkyway wordpress(learncryptography.pw)[941515]: Authentication attempt for unknown user richkiller from 103.49.223.111 2026-06-25T14:59:51.471606+02:00 milkyway wordpress(fawcettcomputerservices.com)[945464]: Authentication failure for joshua from 103.49.223.111 ... show less	Brute-Force Web App Attack
Anonymous	2026-06-25 12:58:29 (3 days ago)	Web attack blocked by Wordfence on mergel.nu (1 hit). Reported by CRMON.	Web App Attack
🇬🇧 spamverify.com	2026-06-25 12:27:15 (3 days ago)	Honeypot Hit: WordPress Login	Web Spam Blog Spam Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-06-25 12:26:45 (3 days ago)	(wplogin) Failed WordPress login from 103.49.223.111 (ID/Indonesia/-): 5 in the last 3600 secs (0-12 ... show more (wplogin) Failed WordPress login from 103.49.223.111 (ID/Indonesia/-): 5 in the last 3600 secs (0-122) show less	Hacking
🇦🇺 paulshipley.com.au	2026-06-25 12:25:44 (3 days ago)	support.paulshipley.com.au:443 103.49.223.111 - - [25/Jun/2026:22:25:41 +1000] "GET /wp/wp-login.php ... show more support.paulshipley.com.au:443 103.49.223.111 - - [25/Jun/2026:22:25:41 +1000] "GET /wp/wp-login.php HTTP/1.1" 404 26806 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack
🇩🇪 Hazzard	2026-06-25 12:17:46 (3 days ago)	(wordpress) Failed wordpress login from 103.49.223.111 (ID/Indonesia/-/-/-/[redacted]): (CF_ENABLE)	Brute-Force
🇩🇪 BlueWire Hosting	2026-06-25 12:15:44 (3 days ago)	Probing websites for vulnerabilities	Web App Attack SQL Injection
🇩🇪 AlexEventfahrtenIPDB	2026-06-25 12:15:40 (3 days ago)	[Thu Jun 25 14:15:32.307312 2026] [authz_core:error] [pid 933599:tid 933599] [client 103.49.223.111: ... show more [Thu Jun 25 14:15:32.307312 2026] [authz_core:error] [pid 933599:tid 933599] [client 103.49.223.111:37136] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php [Thu Jun 25 14:15:39.806393 2026] [authz_core:error] [pid 776345:tid 776345] [client 103.49.223.111:56810] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php, referer: https://powerstar.spdns.de/wp-login.php ... show less	Brute-Force Web App Attack
🇨🇦 KIsmay	2026-06-25 12:07:29 (3 days ago)	Jun 25 07:28:48 www4 WPAudit[3117991]: 103.49.223.111 siscobc.com "Mozilla/5.0 (Windows NT 10.0; Win ... show more Jun 25 07:28:48 www4 WPAudit[3117991]: 103.49.223.111 siscobc.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" sbd-admin:sbd-adminadmin FAIL Jun 25 07:31:29 www4 WPAudit[3131641]: 103.49.223.111 hvrhaulers.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" sbd-admin:hvrhaulers.com123 FAIL Jun 25 07:48:54 www4 WPAudit[3132910]: 103.49.223.111 lemoncreekcampground.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" sbd-admin:sbd-admin!@#123 FAIL Jun 25 08:00:55 www4 WPAudit[3133589]: 103.49.223.111 www.cottonwoodc.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" cottonwoodcreek-admin:cottonwoodcreek-admin.123 FAIL Jun 25 08:07:29 www4 WPAudit[3133941]: 103.49.223.111 www.amandasrestaurant.ca "Mozilla/5.0 (Windows NT 10.0; W ... show less	Brute-Force Web App Attack

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 142.93.147.102

🇨🇳 125.77.175.2

🇨🇳 124.90.48.229

🇳🇱 91.92.40.11

🇫🇷 51.77.158.34

🇸🇪 31.134.2.194

🇻🇳 27.71.230.31

🇺🇸 20.64.104.114

🇨🇳 182.96.95.66

🇨🇳 182.88.161.215

🇳🇱 164.92.218.246

🇺🇸 134.122.122.202

🇨🇳 120.86.36.216

🇨🇦 104.239.35.205

🇳🇱 91.92.241.215

🇰🇿 45.143.88.46

🇺🇸 44.126.109.48

🇳🇱 2a0d:7c40:3000:2f1::2

🇮🇳 2401:4900:8820:ed29:5887:bc44:c334:b813

🇷🇺 195.239.47.189