JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 203.148.84.6

203.148.84.6 was found in our database!

This IP was reported 127 times. Confidence of Abuse is 100%: ?

100%

ISP	PT. Indotrans Data
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45289
Hostname(s)	dist-puri.indotrans.net.id mediapenaku.com
Domain Name	indotrans.net.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 203.148.84.6

Whois 203.148.84.6

IP Abuse Reports for 203.148.84.6:

This IP address has been reported a total of 127 times from 87 distinct sources. 203.148.84.6 was first reported on December 26th 2020, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-12 23:40:48 (6 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 wlt-blocker	2026-06-12 11:33:44 (18 hours ago)	Unauthorized access to webpage admin	Web App Attack
🇩🇪 LRob.fr	2026-06-12 09:30:10 (20 hours ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-12 04:36:43 (1 day ago)	[FriJun1206:36:39.1460792026][security2:error][pid2543271:tid2543586][client203.148.84.6:0]ModSecuri ... show more [FriJun1206:36:39.1460792026][security2:error][pid2543271:tid2543586][client203.148.84.6:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"367\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"flyingberber.com\"][uri\"/xmlrpc.php\"][unique_id\"aiuM1w6IExH4gawcGtDRUwAAANA\"] show less	Hacking Web App Attack
🇳🇿 Tripwire	2026-06-11 21:38:42 (1 day ago)	Probing for Wordpress - /xmlrpc.php	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-06-11 17:34:45 (1 day ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇺🇸 Penny Packer	2026-06-11 17:04:22 (1 day ago)	Fail2Ban apache-tripwires	Web App Attack
🇩🇪 Bedios GmbH	2026-06-11 09:33:28 (1 day ago)	Wordpress hacking attempt	Web App Attack
🇩🇪 big-cloud.nl	2026-06-11 09:02:44 (1 day ago)	Try to access /xmlrpc.php	Web App Attack
🇫🇮 bittiguru.fi	2026-06-11 05:06:28 (2 days ago)	203.148.84.6 - [11/Jun/2026:08:01:57 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Mozilla/5.0 (Wi ... show more 203.148.84.6 - [11/Jun/2026:08:01:57 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.0.0 Safari/537.36" "-" 203.148.84.6 - [11/Jun/2026:08:06:28 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/14.0.0.0 Safari/537.36" "-" ... show less	Hacking Brute-Force Web App Attack
🇳🇱 BlueWire Hosting	2026-06-10 21:24:21 (2 days ago)	Probing websites for vulnerabilities	Web App Attack
🇨🇭 4server	2026-06-10 17:57:27 (2 days ago)	[WedJun1019:57:22.6201232026][security2:error][pid3269435:tid3269629][client203.148.84.6:0]ModSecuri ... show more [WedJun1019:57:22.6201232026][security2:error][pid3269435:tid3269629][client203.148.84.6:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"367\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"probuild.ch\"][uri\"/xmlrpc.php\"][unique_id\"aimlgqKDF_nR0oooXgI4jQAAAJE\"] show less	Hacking Web App Attack
🇳🇱 wlt-blocker	2026-06-10 15:18:39 (2 days ago)	Unauthorized access to webpage admin	Web App Attack
🇩🇪 LRob.fr	2026-06-10 11:30:11 (2 days ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-10 08:57:36 (2 days ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH

Showing 1 to 15 of 127 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 205.188.217.8

🇮🇳 203.145.49.159

🇫🇮 65.109.78.187

🇺🇸 64.62.197.21

🇱🇹 62.60.130.169

🇮🇳 14.194.55.146

🇺🇸 206.189.205.85

🇿🇦 197.90.205.166

🇫🇷 89.117.63.237

🇷🇴 80.94.92.186

🇧🇬 79.124.59.10

🇸🇬 43.134.167.218

🇬🇧 35.203.210.166

🇰🇷 34.158.204.160

🇺🇸 34.11.110.32

🇩🇪 31.76.16.115

🇮🇩 8.215.88.36

🇺🇸 162.216.149.254

🇩🇪 135.125.200.99

🇧🇩 103.4.145.50