JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.3.222.102

103.3.222.102 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 12%: ?

12%

ISP	PT XLSMART Telecom Sejahtera Tbk
Usage Type	Fixed Line ISP
ASN	AS139994
Domain Name	xlsmart.co.id
Country	🇮🇩 Indonesia
City	Soreang, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.3.222.102

Whois 103.3.222.102

IP Abuse Reports for 103.3.222.102:

This IP address has been reported a total of 5 times from 5 distinct sources. 103.3.222.102 was first reported on January 18th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-15 17:18:04 (3 days ago)	[Tue Jun 16 00:18:04.221373 2026] [security2:error] [pid 77273:tid 139893075289792] [client 103.3.22 ... show more [Tue Jun 16 00:18:04.221373 2026] [security2:error] [pid 77273:tid 139893075289792] [client 103.3.222.102:8111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php/informasi-iklim/buletin-1/buletin-informasi-iklim-dan-lingkungan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/buletin-1/buletin-informasi-iklim-dan-lingkungan"] [unique_id "ajAzzNds3rSnBwhr80p8kwACFQ8"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[77293] [d6RVAg779IU] [ajAzzNds3rSnBwhr80p8kwACFQ8] keep_alive=[1] [2026-06-16 00:18:04.221377] [R:ajAzzNds3rSnBwhr80p8kwACFQ8] UA:'Mozilla/5.0 (Linux; Android 6 ... show less	Email Spam Hacking
🇮🇩 soc-yk	2026-05-24 07:15:47 (3 weeks ago)	Type: exploitation_attempt Threat: public_web_exploitation_scanner Risk: 68 Events: 7 Evidence: - R ... show more Type: exploitation_attempt Threat: public_web_exploitation_scanner Risk: 68 Events: 7 Evidence: - Repeated exploitation attempts detected - Malicious infrastructure behavior observed show less	Web App Attack Hacking
🇮🇩 sockominfo	2026-04-08 16:00:08 (2 months ago)	Reported by TangerangKota-CSIRT. Status: MALICIOUS	Hacking Web App Attack
🇮🇹 VHosting	2025-12-24 15:33:57 (5 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
Anonymous	2025-01-18 04:35:28 (1 year ago)	Ports: 2077,2078,2082,2083,2086,2087,2095,2096; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 91.231.89.143

🇺🇸 20.118.224.96

🇺🇸 173.236.155.106

🇸🇬 172.188.89.41

🇧🇼 168.167.72.132

🇧🇩 103.183.62.1

🇫🇷 51.38.187.112

🇷🇴 2.57.121.112

🇳🇱 195.178.110.30

🇩🇪 185.242.3.195

🇺🇸 178.156.233.107

🇩🇪 167.94.146.60

🇺🇸 162.216.149.143

🇵🇭 154.18.197.35

🇨🇳 123.145.38.188

🇷🇺 95.108.213.171

🇳🇱 91.92.40.153

🇬🇧 35.203.210.230

🇺🇸 15.204.236.231

🇨🇳 223.109.255.155