AbuseIPDB » 103.157.48.6
103.157.48.6
This IP was reported 12 times. Confidence of
Abuse
is 16% : ?
ISP
PT. Eka Mas Republik
Usage Type
Fixed Line ISP
ASN
AS63859
Domain Name
myrepublic.co.id
Country
๐ฎ๐ฉ
Indonesia
City
Banjar, West Java
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 103.157.48.6 :
This IP address has been reported a total of
12
times from
9 distinct
sources.
103.157.48.6 was first reported on
December 14th 2023 , and the most recent report was
1 week ago
Old Reports:
The most recent abuse report for this IP address is from
1 week ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ฉ๐ช
SMARTNET
2026-05-27 06:03:53
(1 week ago)
Aisuru(Mirai variant) DDoS | Incident ID: 991a3054-d12a-4e5e-ac87-2c17a3082180
DDoS Attack
๐ซ๐ท
security.rdmc.fr
2026-05-12 03:00:16
(3 weeks ago)
Port Scan Attack proto:TCP src:29566 dst:23
Port Scan
๐ฌ๐ง
PeravixGroup
2026-04-27 02:04:04
(1 month ago)
Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ...
show more
Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud
show less
Hacking
Exploited Host
๐บ๐ธ
kosada.com
2026-03-25 10:33:31
(2 months ago)
IMAP password guessing
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-03-19 03:48:20
(2 months ago)
(mod_security) mod_security (id:218580) triggered by 103.157.48.6 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:218580) triggered by 103.157.48.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 18 23:48:14.438364 2026] [security2:error] [pid 16542:tid 16542] [client 103.157.48.6:13342] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:\\\\/\\\\*[!+](?:[\\\\w\\\\s=_\\\\-()]+)?\\\\*\\\\/)" at ARGS:gameid. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/22_SQL_SQLi.conf"] [line "76"] [id "218580"] [rev "1"] [msg "COMODO WAF: MySQL in-line comment detected.||www.old.renju.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "SQLi"] [hostname "www.old.renju.net"] [uri "/media/gamecomments.php"] [unique_id "abtx_qju_Wx6JOA4vyBSJAAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐น๐ญ
Sawasdee
2026-03-04 23:52:48
(3 months ago)
Port Scan
...
Port Scan
๐น๐ญ
Sawasdee
2026-02-24 16:45:45
(3 months ago)
Port Scan
...
Port Scan
๐น๐ญ
Sawasdee
2026-02-05 17:16:11
(4 months ago)
Port Scan
...
Port Scan
๐จ๐ญ
backslash
2025-08-30 05:28:41
(9 months ago)
Bad Web Bot
2025-07-13 14:41:10
(10 months ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
๐ท๐บ
www.winos.me
2025-06-24 08:21:34
(11 months ago)
Default ban by fail2ban
Brute-Force
Web App Attack
SSH
๐บ๐ธ
TPI-Abuse
2023-12-14 04:40:40
(2 years ago)
(mod_security) mod_security (id:210492) triggered by 103.157.48.6 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 103.157.48.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 13 23:40:36.902684 2023] [security2:error] [pid 28029:tid 47048401344256] [client 103.157.48.6:59592] [client 103.157.48.6] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "annaly.org"] [uri "/.env"] [unique_id "ZXqHRBpAQnDhvnPZz8eK2AAAAFQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
12
of 12 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: