JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.144.103.15

103.144.103.15 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 43%: ?

43%

ISP	PT Dharma Sarana Solusindo
Usage Type	Fixed Line ISP
ASN	AS139421
Domain Name	pandawa.net.id
Country	🇮🇩 Indonesia
City	Indramayu, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.144.103.15

Whois 103.144.103.15

IP Abuse Reports for 103.144.103.15:

This IP address has been reported a total of 12 times from 11 distinct sources. 103.144.103.15 was first reported on August 3rd 2025, and the most recent report was 21 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-27 16:41:04 (21 hours ago)	(mod_security) mod_security (id:240335) triggered by 103.144.103.15 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 103.144.103.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 12:40:59.662757 2026] [security2:error] [pid 31727:tid 31727] [client 103.144.103.15:64408] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.144.103.15 (+1 hits since last alert)\|smoothiessoupssalads.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "smoothiessoupssalads.com"] [uri "/xmlrpc.php"] [unique_id "aj_9G58mbAbHk1NOXXdw9AAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 15:44:47 (22 hours ago)	(mod_security) mod_security (id:240335) triggered by 103.144.103.15 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 103.144.103.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 11:44:37.837545 2026] [security2:error] [pid 8795:tid 8795] [client 103.144.103.15:52974] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.144.103.15 (+1 hits since last alert)\|globalsolutions.technology\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "globalsolutions.technology"] [uri "/xmlrpc.php"] [unique_id "aj_v5SBvWub_-dSG-ZKTMQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-27 14:14:10 (23 hours ago)	Attac	Brute-Force
🇰🇷 zlhIcd	2026-06-21 01:00:57 (1 week ago)	103.144.103.15 - - [16/Jun/2026:06:09:33 +0900] "GET /pcwiki/index.php?returntoquery=days%3D30%26fro ... show more 103.144.103.15 - - [16/Jun/2026:06:09:33 +0900] "GET /pcwiki/index.php?returntoquery=days%3D30%26from%3D20251121045125%26hidebots%3D0%26hideminor%3D1%26limit%3D500 HTTP/1.1" 404 460 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_2_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.6943.53 Safari/537.36" ... show less	Web Spam SQL Injection Bad Web Bot Web App Attack
Anonymous	2026-06-04 07:38:07 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 gu-alvareza	2026-06-04 07:05:37 (3 weeks ago)	DZS.GPON.Remote.Code.Execution	Hacking Web App Attack
🇮🇪 RoboSOC	2026-06-04 00:20:49 (3 weeks ago)	GPON Home Routers Remote Code Execution Vulnerability CVE 2018-10562, PTR: PTR record not found	Hacking
🇦🇱 router.al	2026-06-03 22:03:31 (3 weeks ago)	06/03/2026-22:03:31.699434 103.144.103.15 Protocol: 6 SURICATA HTTP missing Host header	Hacking
🇺🇸 MPL	2026-06-03 19:39:55 (3 weeks ago)	tcp/80 (2 or more attempts)	Port Scan
🇩🇪 pltcldvlpr	2026-05-31 04:26:03 (4 weeks ago)	Bogus Useragent: 103.144.103.15 - - [31/May/2026:06:26:02 +0200] "GET /protocol?id=st_7_121&paragrap ... show more Bogus Useragent: 103.144.103.15 - - [31/May/2026:06:26:02 +0200] "GET /protocol?id=st_7_121&paragraph=14733550&seq=1696 HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/62.0.833.0 Safari/535.1" asn=139421 org="PT Dharma Sarana Solusindo" country=ID ... show less	Bad Web Bot
🇮🇹 VHosting	2025-12-23 11:23:27 (6 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 LARL-Stompro-2024	2025-08-03 06:01:15 (10 months ago)	Evergreen ILS - Mylist Bot Abuse - HTTP Port 443 - Fake UserAgent. Requests:1	Bad Web Bot

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.39.126.90

🇺🇸 161.0.2.80

🇺🇸 146.190.112.200

🇧🇩 103.26.136.173

🇮🇪 54.217.75.248

🇫🇷 51.77.202.42

🇨🇳 36.106.166.235

🇳🇱 209.38.101.66

🇫🇮 147.185.133.167

🇮🇳 103.86.180.10

🇩🇪 64.89.163.235

🇳🇱 45.148.10.157

🇬🇧 35.203.210.52

🇺🇸 20.14.79.76

🇺🇸 162.216.150.92

🇸🇬 47.84.110.132

🇯🇵 20.46.119.207

🇧🇷 15.228.155.238

🇯🇵 15.152.105.153

🇩🇪 178.128.207.189