JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.203.48.102

103.203.48.102 was found in our database!

This IP was reported 89 times. Confidence of Abuse is 0%: ?

ISP	Asia Pacific Network Information Centre
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45753
Hostname(s)	donela.matrimenu.com
Domain Name	apnic.net
Country	🇭🇰 Hong Kong
City	Tung Chung, Islands

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.203.48.102

Whois 103.203.48.102

IP Abuse Reports for 103.203.48.102:

This IP address has been reported a total of 89 times from 51 distinct sources. 103.203.48.102 was first reported on February 27th 2026, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-15 09:16:43 (2 months ago)	Try to connect to Port_Scan_80_stealth	Port Scan
🇹🇭 Sawasdee	2026-04-15 09:00:05 (2 months ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇺🇸 rdpguard.com	2026-03-25 15:34:29 (2 months ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇮🇩 securejdprop	2026-03-25 14:19:50 (2 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing. crowdsecurity/http-probing	Hacking Web App Attack
🇦🇺 aranguren.org	2026-03-25 12:44:15 (2 months ago)	103.203.48.102 - - [25/Mar/2026:23:02:22 +1100] "GET /index/ajax/lang?lang=..//..//application/datab ... show more 103.203.48.102 - - [25/Mar/2026:23:02:22 +1100] "GET /index/ajax/lang?lang=..//..//application/database HTTP/1.1" 404 989 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0" 103.203.48.102 - - [25/Mar/2026:23:02:49 +1100] "GET /index/ajax/lang?lang=..//..//application/database HTTP/1.1" 403 984 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0" 103.203.48.102 - - [25/Mar/2026:23:03:04 +1100] "GET /index/ajax/lang?lang=..//..//application/database HTTP/1.1" 404 979 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0" 103.203.48.102 - - [25/Mar/2026:23:43:22 +1100] "GET /index/ajax/lang?lang=..//..//application/database HTTP/1.1" 404 985 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0" 103.203.48.102 - - [25/Mar/2026:23:44:00 +1100] "GET /index/ajax/lang?lang=..//..//application/database HTTP/1.1" 403 984 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Fire ... show less	Bad Web Bot
🇩🇪 HandyTreff.de	2026-03-25 10:44:58 (2 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -33.877 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -33.877 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0 show less	Web App Attack Bad Web Bot
🇺🇸 rdpguard.com	2026-03-24 11:05:29 (2 months ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇫🇮 geot	2026-03-23 17:18:09 (2 months ago)	GET /index/ajax/lang?lang=..//..//application/database HTTP/1.1	Hacking Web App Attack
🇬🇧 consul.to	2026-03-23 05:44:29 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇿 FaB Property Group	2026-03-22 21:59:12 (2 months ago)	Requested file: index/ajax/lang?lang=..//..//application/database	Web App Attack
🇮🇩 Burayot	2026-03-22 12:13:40 (2 months ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 103.203.48.102 (HK/Hong Kong/donela. ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 103.203.48.102 (HK/Hong Kong/donela.matrimenu.com): 2 in the last 3600 secs show less	Web App Attack
🇺🇸 kosada.com	2026-03-22 08:45:13 (2 months ago)	Web vulnerability probing: /index/ajax/lang	Web App Attack
🇨🇳 ThreatBook.io	2026-03-21 23:10:10 (2 months ago)	ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/103.203.48.102 2026-03-21 1 ... show more ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/103.203.48.102 2026-03-21 17:36:56 /index/ajax/lang?lang=..//..//application/database show less	Web App Attack
🇬🇧 CrystalMaker	2026-03-21 12:59:49 (2 months ago)	Vulnerability scan - GET /index/ajax/lang?lang=..//..//application/database; GET /index/ajax/lang?la ... show more Vulnerability scan - GET /index/ajax/lang?lang=..//..//application/database; GET /index/ajax/lang?lang=..//..//application/database; GET /index/ajax/lang?lang=..//..//application/database; GET /index/ajax/lang?lang=..//..//application/database; GET /index/ajax/lang?lang=..//..//application/database; GET /index/ajax/lang?lang=..//..//application/database show less	Hacking
🇮🇩 Burayot	2026-03-21 12:36:46 (2 months ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 103.203.48.102 (HK/Hong Kong/donela. ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 103.203.48.102 (HK/Hong Kong/donela.matrimenu.com): 1 in the last 3600 secs show less	Web App Attack

Showing 1 to 15 of 89 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇪 2.57.217.229

🇨🇳 183.131.109.166

🇮🇷 178.131.136.114

🇩🇪 167.94.145.18

🇫🇷 89.116.26.138

🇮🇷 89.32.197.160

🇰🇼 62.150.237.107

🇺🇸 52.248.43.121

🇺🇸 34.173.91.252

🇺🇸 20.106.195.24

🇮🇳 2409:40e3:200d:74b3:5da2:caa0:3590:c3e2

🇹🇷 217.60.254.100

🇺🇸 216.25.89.94

🇬🇧 194.50.235.130

🇮🇩 182.253.240.91

🇩🇪 167.94.145.17

🇧🇷 138.122.155.161

🇧🇬 79.124.56.138

🇺🇸 66.132.172.97

🇰🇷 59.21.37.60