JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 119.195.102.159

119.195.102.159 was found in our database!

This IP was reported 1,546 times. Confidence of Abuse is 100%: ?

100%

ISP	Korea Telecom
Usage Type	Mobile ISP
ASN	AS4766
Domain Name	kt.com
Country	🇰🇷 Korea (the Republic of)
City	Busan, Busan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 119.195.102.159

Whois 119.195.102.159

IP Abuse Reports for 119.195.102.159:

This IP address has been reported a total of 1,546 times from 331 distinct sources. 119.195.102.159 was first reported on March 7th 2021, and the most recent report was 14 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇰 ScamAware	2026-06-28 10:08:33 (14 minutes ago)	Detected by Cloudflare Security Events via WordPress automation. Detection: user_enumeration (WordPr ... show more Detected by Cloudflare Security Events via WordPress automation. Detection: user_enumeration (WordPress user enumeration). Hits from same IP in last 60 minutes: 1. Unique request paths counted internally: 1. Cloudflare action: block. Cloudflare source: firewallCustom. show less	Brute-Force Web App Attack
🇺🇸 TAY	2026-06-28 08:44:02 (1 hour ago)	119.195.102.159 - - [28/Jun/2026:16:35:24 +0800] "POST /wp-login.php HTTP/1.1" 200 2981 "https://aut ... show more 119.195.102.159 - - [28/Jun/2026:16:35:24 +0800] "POST /wp-login.php HTTP/1.1" 200 2981 "https://autism-cvc.org/wp-login.php" "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 119.195.102.159 - - [28/Jun/2026:16:39:49 +0800] "POST /wp-login.php HTTP/1.1" 200 3311 "https://envicleansg.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 119.195.102.159 - - [28/Jun/2026:16:44:01 +0800] "POST /wp-login.php HTTP/1.1" 200 2983 "https://www.autism-cvc.org/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" ... show less	Brute-Force
🇵🇱 bmino.pl	2026-06-28 08:35:00 (1 hour ago)	Autoban IP(2): 119.195.102.159 - Hostname: Korea Telecom - City: Busan - Region: Busan - Country: So ... show more Autoban IP(2): 119.195.102.159 - Hostname: Korea Telecom - City: Busan - Region: Busan - Country: South Korea - Location: 35.1025,129.0394 - Organization: Kornet - failed attempts. show less	Web App Attack
🇩🇪 gadix	2026-06-28 07:03:27 (3 hours ago)	119.195.102.159 - - [28/Jun/2026:06:53:19 +0200] "POST /wp-login.php HTTP/2.0" 200 15629 "https://cf ... show more 119.195.102.159 - - [28/Jun/2026:06:53:19 +0200] "POST /wp-login.php HTTP/2.0" 200 15629 "https://cf-fahrkompetenz.de/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 119.195.102.159 - - [28/Jun/2026:07:01:44 +0200] "POST /wp-login.php HTTP/2.0" 200 15628 "https://cf-fahrkompetenz.de/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 119.19 ... show less	Web App Attack
🇩🇪 todix	2026-06-28 06:50:03 (3 hours ago)	Wordpress brute force or spam attempt from 119.195.102.159	Brute-Force
🇩🇪 Click-Networks	2026-06-28 06:08:44 (4 hours ago)		Web Spam Brute-Force Exploited Host
🇬🇧 sc user	2026-06-28 05:54:49 (4 hours ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇺🇸 TAY	2026-06-28 05:45:39 (4 hours ago)	119.195.102.159 - - [28/Jun/2026:13:35:42 +0800] "POST /wp-login.php HTTP/1.1" 200 2983 "https://www ... show more 119.195.102.159 - - [28/Jun/2026:13:35:42 +0800] "POST /wp-login.php HTTP/1.1" 200 2983 "https://www.autism-cvc.org/wp-login.php" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 119.195.102.159 - - [28/Jun/2026:13:44:22 +0800] "POST /wp-login.php HTTP/1.1" 200 2983 "https://mail.autism-cvc.org/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 119.195.102.159 - - [28/Jun/2026:13:45:39 +0800] "POST /wp-login.php HTTP/1.1" 200 2682 "https://www.littleprairie.com.my/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Brute-Force
🇫🇮 6kilowatti	2026-06-28 05:45:17 (4 hours ago)	[28/Jun/2026:04:14:19 +0000] - 404 404 - GET https rupikonnaliisa.6kw.fi "/wp-login.php" [Client 119 ... show more [28/Jun/2026:04:14:19 +0000] - 404 404 - GET https rupikonnaliisa.6kw.fi "/wp-login.php" [Client 119.195.102.159] [Length 4593] [Gzip 3.94] [Sent-to 10.144.0.13] "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" "-" [28/Jun/2026:05:03:48 +0000] - 404 404 - GET https rupikonnaliisa.6kw.fi "/wp-login.php" [Client 119.195.102.159] [Length 4593] [Gzip 3.94] [Sent-to 10.144.0.13] "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" "-" [28/Jun/2026:05:07:59 +0000] - 404 404 - GET https rupikonnaliisa.6kw.fi "/wp-login.php" [Client 119.195.102.159] [Length 4593] [Gzip 3.94] [Sent-to 10.144.0.13] "Mozilla/5.0 (X11; Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" "-" [28/Jun/2026:05:45:15 +0000] - 404 404 - GET https rupikonnaliisa.6kw.fi "/wp-login.php" [Client 119.195.102.159] [Length 4593] [Gzip 3.94] [Sent-to 10.144.0.1 ... show less	Web App Attack
🇲🇹 Malta	2026-06-28 04:58:34 (5 hours ago)	119.195.102.159 - - [28/Jun/2026:06:58:34 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Li ... show more 119.195.102.159 - - [28/Jun/2026:06:58:34 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" show less	Hacking Web App Attack
🇨🇦 KIsmay	2026-06-28 04:47:02 (5 hours ago)	Jun 28 00:12:45 www4 WPAudit[3470089]: 119.195.102.159 bestnelson.org "Mozilla/5.0 (Windows NT 10.0; ... show more Jun 28 00:12:45 www4 WPAudit[3470089]: 119.195.102.159 bestnelson.org "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" bestnelson-admin:1234567890 FAIL Jun 28 00:15:16 www4 WPAudit[3470437]: 119.195.102.159 trilloperelloyates.com "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" sbd-admin:sbdadmin123456 FAIL Jun 28 00:20:22 www4 WPAudit[3471098]: 119.195.102.159 www.trilloperelloyates.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" sbd-admin:sbdadmin12345 FAIL Jun 28 00:44:23 www4 WPAudit[3474035]: 119.195.102.159 lemoncreekcampground.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" lemoncreek:lemoncreek2025@ FAIL Jun 28 00:47:02 www4 WPAudit[3474374]: 119.195.102.159 katharinedickerson.com "Mozilla/5.0 (X11; Linux x86_64; r ... show less	Brute-Force Web App Attack
🇺🇸 cwytech	2026-06-28 04:16:45 (6 hours ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/wordpress-login-lockdown-high.	Bad Web Bot Web App Attack
🇺🇸 TAY	2026-06-28 03:08:31 (7 hours ago)	119.195.102.159 - - [28/Jun/2026:11:00:28 +0800] "POST /wp-login.php HTTP/1.1" 200 2575 "https://pet ... show more 119.195.102.159 - - [28/Jun/2026:11:00:28 +0800] "POST /wp-login.php HTTP/1.1" 200 2575 "https://petfos.my/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 119.195.102.159 - - [28/Jun/2026:11:05:32 +0800] "POST /wp-login.php HTTP/1.1" 200 2438 "https://mail.aceflora.com/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 119.195.102.159 - - [28/Jun/2026:11:08:30 +0800] "POST /wp-login.php HTTP/1.1" 200 2563 "https://batukeras.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Brute-Force
🇺🇸 nyt	2026-06-28 02:28:23 (7 hours ago)	Repeated WordPress login POSTs blocked by WAF (3 in 6h)	Brute-Force Web App Attack
🇨🇿 plzenskypruvodce.cz	2026-06-28 02:25:32 (7 hours ago)	2026-06-28T04:25:30.653590+02:00 web wordpress(varhanykolin.cz)[2001702]: Immediately block connecti ... show more 2026-06-28T04:25:30.653590+02:00 web wordpress(varhanykolin.cz)[2001702]: Immediately block connections from 119.195.102.159 ... show less	Brute-Force

Showing 1 to 15 of 1546 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇹 188.82.59.67

🇸🇾 185.204.80.76

🇸🇬 139.59.97.212

🇮🇳 106.78.2.59

🇧🇩 103.154.158.70

🇩🇪 95.90.13.168

🇺🇿 94.158.60.16

🇲🇾 47.250.215.249

🇳🇱 34.13.226.49

🇸🇬 20.205.233.102

🇺🇸 135.232.193.42

🇳🇱 88.210.63.69

🇫🇷 85.217.140.7

🇺🇸 216.25.89.142

🇯🇵 207.56.231.29

🇩🇪 172.217.33.152

🇷🇺 95.165.84.70

🇱🇹 62.60.130.219

🇨🇳 27.222.52.27

🇺🇸 198.1.75.59