JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.70.123.205

103.70.123.205 was found in our database!

This IP was reported 71 times. Confidence of Abuse is 100%: ?

100%

ISP	PT Menara Digital Salama
Usage Type	Fixed Line ISP
ASN	AS150980
Hostname(s)	host-122-205.menaranet.id
Domain Name	menaranet.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.70.123.205

Whois 103.70.123.205

IP Abuse Reports for 103.70.123.205:

This IP address has been reported a total of 71 times from 35 distinct sources. 103.70.123.205 was first reported on May 1st 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-13 23:53:52 (3 hours ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
Anonymous	2026-06-13 21:08:30 (6 hours ago)	103.70.123.205 - - [13/Jun/2026:23:08:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack/13. ... show more 103.70.123.205 - - [13/Jun/2026:23:08:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack/13.0; WordPress/6.2; http://site73007777.com" 103.70.123.205 - - [13/Jun/2026:23:08:10 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/13.0; WordPress/6.2; http://site73007777.com" 103.70.123.205 - - [13/Jun/2026:23:08:18 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack/12.0; WordPress/6.2; http://site26959731.com" 103.70.123.205 - - [13/Jun/2026:23:08:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/12.0; WordPress/6.2; http://site26959731.com" 103.70.123.205 - - [13/Jun/2026:23:08:29 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.3)" ... show less	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-13 20:07:24 (7 hours ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇮🇩 soc-yk	2026-06-13 14:18:11 (13 hours ago)	Type: suspicious_network_activity Risk: 85 Events: 439 Evidence: - Persistent suspicious network ac ... show more Type: suspicious_network_activity Risk: 85 Events: 439 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified show less	Port Scan Hacking
🇮🇩 hermawan	2026-06-13 12:04:28 (15 hours ago)	[Sat Jun 13 19:04:25.228707 2026] [security2:error] [pid 939474:tid 139664601097920] [client 103.70. ... show more [Sat Jun 13 19:04:25.228707 2026] [security2:error] [pid 939474:tid 139664601097920] [client 103.70.123.205:62274] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bing.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bing.go.id found within REQUEST_HEADERS:Referer: https://www.bing.go.id/ request_line = GET /index.php/e-buletin-untuk-kota-dan-kabupaten-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/e-buletin-untuk-kota-dan-kabupaten-di-provinsi-jawa-timur"] [unique_id "ai1HScjB310N1NI09S75fwAARAU"], referer https://www.bing.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[939480] [BDD5ZKF0q0s] [ai1HScjB310N1NI09S75fwAARAU] keep_alive=[1] [2026-06-13 19:04:25.228712] [R:ai1HScjB310N1NI09S75fwAARAU] UA:'Mozilla/5.0 (Linux; Android 13; SM-S901 ... show less	Email Spam Hacking
🇦🇺 prologic	2026-06-13 03:25:29 (1 day ago)	Distributed application-layer DoS against git.mills.io (self-hosted Gitea). High-volume automated re ... show more Distributed application-layer DoS against git.mills.io (self-hosted Gitea). High-volume automated requests to expensive Git repository endpoints (commit/diff/blame/archive views), ~1 request per IP, spoofed browser UA, rejected with HTTP 429. Residential-proxy botnet campaign, 2026-06-13/14 UTC. show less	DDoS Attack Web App Attack
🇮🇩 soc-yk	2026-06-12 13:55:12 (1 day ago)	Type: suspicious_network_activity Risk: 90 Events: 254 Evidence: - Persistent suspicious network ac ... show more Type: suspicious_network_activity Risk: 90 Events: 254 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified show less	Port Scan Hacking
🇮🇩 soc-yk	2026-06-10 15:54:12 (3 days ago)	Type: suspicious_network_activity Risk: 87 Events: 107 Evidence: - Persistent suspicious network ac ... show more Type: suspicious_network_activity Risk: 87 Events: 107 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Port Scan Hacking
🇩🇪 rh24	2026-06-09 05:46:21 (4 days ago)	(wordpress) Failed wordpress login from 103.70.123.205 (ID/Indonesia/host-122-205.menaranet.id): (C ... show more (wordpress) Failed wordpress login from 103.70.123.205 (ID/Indonesia/host-122-205.menaranet.id): (CF_ENABLE) show less	Brute-Force
🇫🇷 Lunix	2026-06-09 04:45:14 (4 days ago)		Brute-Force Web App Attack
🇩🇪 stinpriza	2026-06-08 22:55:10 (5 days ago)	Web App Attack	Web App Attack
Anonymous	2026-06-08 21:24:42 (5 days ago)	Attac	Brute-Force
🇫🇷 dynamix	2026-06-08 17:37:14 (5 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇫🇮 YF	2026-06-06 01:00:49 (1 week ago)	xmlrpc.php Potential DDoS or brute force	DDoS Attack Brute-Force
🇩🇪 konseptit	2026-06-05 21:30:04 (1 week ago)	(wordpress) Failed wordpress login from 103.70.123.205 (ID/Indonesia/host-122-205.menaranet.id)	Brute-Force

Showing 1 to 15 of 71 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 180.247.61.189

🇺🇸 161.35.103.113

🇺🇸 154.92.23.249

🇺🇸 45.156.129.158

🇺🇸 45.156.129.156

🇹🇼 198.235.24.122

🇪🇹 196.189.24.12

🇳🇱 195.178.110.30

🇨🇴 181.56.210.115

🇬🇧 178.62.87.212

🇦🇺 170.64.219.241

🇩🇪 167.94.145.24

🇺🇸 138.113.22.151

🇮🇳 136.232.11.10

🇨🇳 123.249.126.59

🇨🇳 113.248.180.154

🇬🇧 80.82.115.208

🇱🇹 45.227.254.170

🇬🇧 35.203.211.253

🇺🇸 205.210.31.69