JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.99.181.113

103.99.181.113 was found in our database!

This IP was reported 157 times. Confidence of Abuse is 100%: ?

100%

ISP	Unicom Multi System
Usage Type	Fixed Line ISP
ASN	AS136941
Domain Name	unicommultisystem.net
Country	🇧🇩 Bangladesh
City	Ishwardi, Rajshahi Division

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.99.181.113

Whois 103.99.181.113

IP Abuse Reports for 103.99.181.113:

This IP address has been reported a total of 157 times from 73 distinct sources. 103.99.181.113 was first reported on June 30th 2022, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-07 08:31:18 (7 hours ago)	(mod_security) mod_security (id:240335) triggered by 103.99.181.113 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 103.99.181.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 04:31:11.980272 2026] [security2:error] [pid 7040:tid 7040] [client 103.99.181.113:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.99.181.113 (+1 hits since last alert)\|cloudex.click\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "cloudex.click"] [uri "/xmlrpc.php"] [unique_id "aiUsT7WPguTNbiWfjhbLvgAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-06 11:52:40 (1 day ago)	Attac	Brute-Force
🇮🇩 hermawan	2026-06-06 09:42:04 (1 day ago)	[Sat Jun 06 16:42:01.111904 2026] [security2:error] [pid 1670403:tid 140021438850752] [client 103.99 ... show more [Sat Jun 06 16:42:01.111904 2026] [security2:error] [pid 1670403:tid 140021438850752] [client 103.99.181.113:49486] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php/informasi-iklim/buletin-1/buletin-informasi-iklim-dan-lingkungan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/buletin-1/buletin-informasi-iklim-dan-lingkungan"] [unique_id "aiPraUufhEslHQLSUJ3iWwAByQI"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1670407] [ynPMlhIjh3Q] [aiPraUufhEslHQLSUJ3iWwAByQI] keep_alive=[1] [2026-06-06 16:42:01.111909] [R:aiPraUufhEslHQLSUJ3iWwAByQI] UA:'Mozilla/5.0 (Linux; And ... show less	Email Spam Hacking
🇺🇸 lostswordfish.com	2026-06-06 09:04:04 (1 day ago)	Wordfence waf block on lostswordfish	Web App Attack
Anonymous	2026-06-06 03:25:59 (1 day ago)	Fail2Ban WordPress login brute-force detected	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-06 02:19:14 (1 day ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-05 08:51:17 (2 days ago)	Attac	Brute-Force
🇬🇧 noise.agency	2026-06-05 04:56:44 (2 days ago)	(wordpress) Failed wordpress login from 103.99.181.113 (BD/Bangladesh/-)	Brute-Force
Anonymous	2026-06-04 20:17:47 (2 days ago)	Failed Wordpress Logins	Web App Attack
🇲🇾 Rizzy	2026-06-04 05:37:26 (3 days ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-06-04 02:54:11 (3 days ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇫🇷 SpaceHost-Server	2026-06-03 12:01:58 (4 days ago)	103.99.181.113 - - [03/Jun/2026:14:01:37 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4985 "-" "WordPress. ... show more 103.99.181.113 - - [03/Jun/2026:14:01:37 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4985 "-" "WordPress.com; https://wordpress.com" 103.99.181.113 - - [03/Jun/2026:14:01:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4985 "-" "Jetpack by WordPress.com" 103.99.181.113 - - [03/Jun/2026:14:01:57 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4985 "-" "Jetpack/12.0; WordPress/6.1; http://site36353872.com" show less	Hacking Web App Attack
🇫🇷 Lunix	2026-06-03 05:25:39 (4 days ago)		Brute-Force Web App Attack
🇳🇱 Site.eu	2026-06-03 02:24:07 (4 days ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇺🇸 Jason Howell	2026-06-02 07:10:21 (5 days ago)	103.99.181.113 - - [02/Jun/2026:02:01:30 -0500] "POST /xmlrpc.php HTTP/1.1" 200 3378 "-" "Jetpack by ... show more 103.99.181.113 - - [02/Jun/2026:02:01:30 -0500] "POST /xmlrpc.php HTTP/1.1" 200 3378 "-" "Jetpack by WordPress.com" 103.99.181.113 - - [02/Jun/2026:02:03:45 -0500] "POST /xmlrpc.php HTTP/1.1" 200 3379 "-" "Jetpack/13.0; WordPress/6.3; http://site38809481.com" 103.99.181.113 - - [02/Jun/2026:02:05:55 -0500] "POST /xmlrpc.php HTTP/1.1" 200 3379 "-" "WordPress.com; https://wordpress.com" 103.99.181.113 - - [02/Jun/2026:02:08:13 -0500] "POST /xmlrpc.php HTTP/1.1" 200 3377 "-" "Jetpack/12.5; WordPress/6.1; http://site60263009.com" 103.99.181.113 - - [02/Jun/2026:02:10:21 -0500] "POST /xmlrpc.php HTTP/1.1" 200 3377 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.2)" ... show less	Web App Attack

Showing 1 to 15 of 157 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 185.194.178.50

🇺🇸 24.105.248.218

🇵🇰 182.188.24.243

🇫🇷 173.212.228.191

🇺🇸 165.154.182.124

🇻🇳 123.17.221.230

🇻🇳 103.82.21.8

🇦🇲 37.186.119.169

🇹🇷 176.236.29.168

🇭🇰 152.32.169.7

🇬🇧 145.14.152.103

🇮🇳 120.62.8.17

🇭🇰 118.193.33.217

🇨🇳 110.249.202.144

🇨🇳 110.249.201.91

🇺🇸 52.22.87.224

🇭🇰 43.242.203.160

🇵🇰 36.255.40.154

🇺🇸 20.14.75.2

🇮🇷 5.75.25.75