JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.1.50.242

103.1.50.242 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 18%: ?

18%

ISP	PT Prima Data Transnusantara
Usage Type	Fixed Line ISP
ASN	AS142352
Domain Name	primadatanet.id
Country	🇮🇩 Indonesia
City	Lawang, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.1.50.242

Whois 103.1.50.242

IP Abuse Reports for 103.1.50.242:

This IP address has been reported a total of 14 times from 9 distinct sources. 103.1.50.242 was first reported on May 26th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-02 07:50:09 (1 week ago)	\| [Dangerous/Indonesia] Aggressive IP 103.1.50.242 (~30 hits). Type: DoS Defender- Web server 400 er ... show more \| [Dangerous/Indonesia] Aggressive IP 103.1.50.242 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇷🇴 Fn4ticHz	2026-05-30 15:42:03 (1 week ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇩🇪 SMARTNET	2026-05-27 06:03:53 (2 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 157cd6d7-1140-4c75-95c6-4a267aae4754	DDoS Attack
🇩🇪 Packets-Decreaser.NET	2026-01-01 10:44:38 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇵🇹 PTnet	2025-12-07 06:19:38 (6 months ago)	DDoS Attack (jail:haproxy-https-flood)	DDoS Attack Exploited Host
🇵🇹 PTnet	2025-12-06 11:56:48 (6 months ago)	DDoS Attack (jail:haproxy-https-flood)	DDoS Attack Exploited Host
🇵🇹 PTnet	2025-12-04 19:59:51 (6 months ago)	DDoS Attack (jail:haproxy-https-flood)	DDoS Attack Exploited Host
🇺🇸 TPI-Abuse	2024-09-06 08:06:56 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 103.1.50.242 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 103.1.50.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 06 04:06:50.774967 2024] [security2:error] [pid 17059:tid 17059] [client 103.1.50.242:48821] [client 103.1.50.242] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.1.50.242 (+1 hits since last alert)\|rotentendales.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "rotentendales.com"] [uri "/xmlrpc.php"] [unique_id "Ztq4Gu_tVlKpek6O06NpmgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-09-05 11:50:20 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 103.1.50.242 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 103.1.50.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 05 07:50:13.126805 2024] [security2:error] [pid 4016:tid 4016] [client 103.1.50.242:56029] [client 103.1.50.242] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.1.50.242 (+1 hits since last alert)\|jaragoodrich.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "jaragoodrich.com"] [uri "/xmlrpc.php"] [unique_id "Ztma9QE5mBxNXUJT1QQNcgAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2024-07-12 11:00:02 (1 year ago)	Unauthorized login attempts [ wordpress-xmlrpc, wordpress]	Brute-Force Web App Attack
🇩🇪 Tha_14	2024-05-29 04:34:31 (2 years ago)	Attempt to log in with non-existing username: admin	Bad Web Bot
Anonymous	2024-05-28 04:26:07 (2 years ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇪🇸 10dencehispahard SL	2024-05-26 01:00:05 (2 years ago)	Unauthorized login attempts [ wordpress-xmlrpc, wordpress]	Brute-Force Web App Attack
Anonymous	2024-05-26 00:52:25 (2 years ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇨 181.39.158.27

🇧🇸 143.105.34.121

🇮🇳 115.96.151.34

🇲🇾 49.124.149.205

🇸🇬 47.237.184.3

🇮🇩 36.92.140.209

🇺🇸 2603:3026:285:6100:6dfa:5112:ef:358c

🇧🇷 187.106.132.85

🇩🇪 176.65.132.22

🇺🇸 45.79.104.47

🇷🇸 212.200.182.52

🇸🇬 152.42.240.74

🇪🇸 79.117.225.206

🇧🇬 78.128.112.215

🇧🇷 15.228.213.192

🇨🇦 3.98.89.17

🇬🇧 193.163.125.206

🇺🇸 185.226.196.23

🇬🇧 139.59.173.98

🇨🇳 110.181.236.142