JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.101.218.20

103.101.218.20 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 21%: ?

21%

ISP	CV Multi Media Cemerlang
Usage Type	Fixed Line ISP
ASN	AS142347
Domain Name	mmctechnologi.id
Country	🇮🇩 Indonesia
City	Trenggalek, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.101.218.20

Whois 103.101.218.20

IP Abuse Reports for 103.101.218.20:

This IP address has been reported a total of 14 times from 9 distinct sources. 103.101.218.20 was first reported on September 15th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-23 18:56:19 (3 days ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
🇮🇩 hermawan	2026-06-08 13:49:58 (2 weeks ago)	06/08/2026-20:49:55.076864 [Drop] [] [1:2028103:2] Suricata ET Hash - Chrome Version 61.0.3163,1 ... show more 06/08/2026-20:49:55.076864 [Drop] [] [1:2028103:2] Suricata ET Hash - Chrome Version 61.0.3163,100(64-bit) Win10 [**] [Classification: Unknown Traffic] [Priority: 3] {TCP} 103.101.218.20:41185 -> 103.166.156.58:443 ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-06-03 12:30:21 (3 weeks ago)	06/03/2026-19:30:18.771474 [Drop] [] [1:2028103:2] Suricata ET Hash - Chrome Version 61.0.3163,1 ... show more 06/03/2026-19:30:18.771474 [Drop] [] [1:2028103:2] Suricata ET Hash - Chrome Version 61.0.3163,100(64-bit) Win10 [**] [Classification: Unknown Traffic] [Priority: 3] {TCP} 103.101.218.20:40737 -> 103.166.156.58:443 ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-26 08:53:10 (1 month ago)	1779785089.232740 103.101.218.20 103.166.156.58 65535_2-4_1440_0 2026-05-26 15:44:49 WIB ...	Email Spam Hacking
Anonymous	2026-05-26 00:34:03 (1 month ago)	Malicious activity detected	Hacking Web App Attack
Anonymous	2026-04-28 02:09:30 (1 month ago)	Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ... show more Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in email-link.asp show less	Exploited Host Bad Web Bot
Anonymous	2026-03-23 12:42:35 (3 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-02-03 13:16:19 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 ps-center	2026-01-18 11:43:00 (5 months ago)	RDM-W: TCP-Scanner. Port: 23	Port Scan
🇩🇪 Packets-Decreaser.NET	2025-12-20 19:15:36 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇮🇩 hermawan	2025-11-05 03:37:57 (7 months ago)	[Wed Nov 05 10:37:56.423547 2025] [security2:error] [pid 1219763:tid 140510931871424] [client 103.10 ... show more [Wed Nov 05 10:37:56.423547 2025] [security2:error] [pid 1219763:tid 140510931871424] [client 103.101.218.20:16713] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i),.?[\\"'\\\\)0-9`-f][\\"'`](?:[\\"'`].?[\\"'`]\|(?:\\\\r?\\\\n)?\\\\z\|[^\\"'`]+)\|[^0-9A-Z_a-z]select.+[^0-9A-Z_a-z]?from\|(?:alter\|(?:(?:cre\|trunc\|upd)at\|renam)e\|d(?:e(?:lete\|sc)\|rop)\|(?:inser\|selec)t\|load)[\\\\s\\\\x0b]?\\\\([\\\\s\\\\x0b]?space[\\\\s\\\\x0b]?\\\\(" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.19.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "2168"] [id "942200"] [msg "Detects MySQL comment-/space-obfuscated injections and backtick termination"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: , like Gecko) Version/4.0 Chrome/141.0.7390.122 Mobile Safari/537.36 OcIdWebView ({\\x22os\\x22:\\x22Android\\x22, found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 16; SM-A1 ... show less	Hacking Web App Attack
🇮🇩 hermawan	2025-10-11 22:14:38 (8 months ago)	[Sun Oct 12 00:48:17.739587 2025] [security2:error] [pid 2746635:tid 139973043840704] [client 103.10 ... show more [Sun Oct 12 00:48:17.739587 2025] [security2:error] [pid 2746635:tid 139973043840704] [client 103.101.218.20:60772] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i),.?[\\"'\\\\)0-9`-f][\\"'`](?:[\\"'`].?[\\"'`]\|(?:\\\\r?\\\\n)?\\\\z\|[^\\"'`]+)\|[^0-9A-Z_a-z]select.+[^0-9A-Z_a-z]?from\|(?:alter\|(?:(?:cre\|trunc\|upd)at\|renam)e\|d(?:e(?:lete\|sc)\|rop)\|(?:inser\|selec)t\|load)[\\\\s\\\\x0b]?\\\\([\\\\s\\\\x0b]?space[\\\\s\\\\x0b]?\\\\(" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "2129"] [id "942200"] [msg "Detects MySQL comment-/space-obfuscated injections and backtick termination"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: , like Gecko) Version/4.0 Chrome/140.0.7339.207 Mobile Safari/537.36 OcIdWebView ({\\x22os\\x22:\\x22Android\\x22, found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 10; M2006 ... show less	Hacking Web App Attack
🇺🇸 SiliSoftware	2025-10-02 05:41:13 (8 months ago)	/phpBB3/templates/subSilver/images/lang_english/post.gif	Web App Attack
🇳🇱 exxos	2025-09-15 19:03:01 (9 months ago)	Attacks with Bad user agents	Hacking

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.156.128.47

🇵🇱 74.248.24.188

🇱🇹 45.227.254.170

🇺🇸 20.65.193.79

🇯🇵 118.194.228.101

🇱🇻 81.30.98.158

🇺🇸 63.251.42.34

🇩🇪 46.101.194.217

🇳🇱 45.198.224.46

🇩🇪 193.124.20.233

🇸🇬 165.22.56.20

🇫🇷 91.231.89.84

🇬🇧 89.37.172.155

🇦🇺 45.133.6.29

🇸🇬 43.128.122.242

🇳🇬 41.219.149.74

🇯🇵 8.216.10.184

🇭🇰 199.45.154.134

🇺🇸 184.168.20.180

🇺🇸 104.244.124.135