JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.127.48.244

103.127.48.244 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 12%: ?

12%

ISP	FIBERTEL FIBERNET PVT. LTD
Usage Type	Fixed Line ISP
ASN	AS138500
Domain Name	fibertel.com
Country	🇳🇵 Nepal
City	Dhangadhi, Sudurpashchim Pradesh

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.127.48.244

Whois 103.127.48.244

IP Abuse Reports for 103.127.48.244:

This IP address has been reported a total of 5 times from 2 distinct sources. 103.127.48.244 was first reported on May 16th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-05 11:56:47 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 103.127.48.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 103.127.48.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 07:56:40.345371 2026] [security2:error] [pid 19589:tid 19589] [client 103.127.48.244:54308] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.127.48.244 (+1 hits since last alert)\|schlegelcreative.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "schlegelcreative.com"] [uri "/xmlrpc.php"] [unique_id "aiK5eLwPXyILjJPu7T-w5gAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-17 14:07:19 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 103.127.48.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 103.127.48.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 10:07:15.032394 2026] [security2:error] [pid 11387:tid 11387] [client 103.127.48.244:56577] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.127.48.244 (+1 hits since last alert)\|jimrichardart.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "jimrichardart.com"] [uri "/xmlrpc.php"] [unique_id "agnLkz6p2E6t_ZDI2eT6YwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-16 16:09:04 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 103.127.48.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 103.127.48.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 16 12:08:58.447401 2026] [security2:error] [pid 16037:tid 16037] [client 103.127.48.244:51172] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.127.48.244 (+1 hits since last alert)\|centrodentalsindolor.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "centrodentalsindolor.com"] [uri "/xmlrpc.php"] [unique_id "agiWmp68JjTVop905JMh1QAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-16 13:02:33 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 103.127.48.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 103.127.48.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 16 09:02:29.895173 2026] [security2:error] [pid 4978:tid 4978] [client 103.127.48.244:61585] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.127.48.244 (+1 hits since last alert)\|reyadecostarica.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "reyadecostarica.com"] [uri "/xmlrpc.php"] [unique_id "aghq5feSvZMCghzrlbHx2gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-16 13:00:46 (3 weeks ago)	Attac	Brute-Force

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 152.42.202.161

🇮🇳 139.59.36.109

🇭🇰 38.76.163.104

🇺🇸 20.163.16.165

🇩🇪 213.209.159.242

🇩🇪 213.209.159.228

🇺🇸 180.149.0.246

🇸🇪 171.25.158.68

🇸🇬 139.162.1.234

🇧🇷 118.26.105.144

🇨🇦 85.217.149.54

🇭🇷 82.21.209.12

🇩🇪 81.199.26.15

🇬🇧 37.10.113.220

🇨🇦 15.235.123.247

🇨🇳 222.176.201.145

🇺🇸 216.25.89.139

🇺🇸 162.216.150.126

🇮🇳 144.79.166.84

🇺🇸 142.93.191.125