JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.71.16.150

103.71.16.150 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 73%: ?

73%

ISP	Specific Net Pvt. Ltd.
Usage Type	Fixed Line ISP
ASN	AS138771
Domain Name	specificnet.com
Country	🇮🇳 India
City	Kalyan, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.71.16.150

Whois 103.71.16.150

IP Abuse Reports for 103.71.16.150:

This IP address has been reported a total of 25 times from 15 distinct sources. 103.71.16.150 was first reported on October 27th 2025, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-07 09:35:27 (18 hours ago)	(mod_security) mod_security (id:240335) triggered by 103.71.16.150 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 103.71.16.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 05:35:17.906303 2026] [security2:error] [pid 15958:tid 15958] [client 103.71.16.150:54022] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.71.16.150 (+1 hits since last alert)\|churchbehindthewalls.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "churchbehindthewalls.com"] [uri "/xmlrpc.php"] [unique_id "aiU7VXE-o-ZkCNNGxRNl6gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-07 08:44:39 (19 hours ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-06-07 08:31:31 (19 hours ago)	(mod_security) mod_security (id:240335) triggered by 103.71.16.150 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 103.71.16.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 04:31:21.182774 2026] [security2:error] [pid 2576:tid 2576] [client 103.71.16.150:52720] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.71.16.150 (+1 hits since last alert)\|globaldentalservices.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "globaldentalservices.com"] [uri "/xmlrpc.php"] [unique_id "aiUsWWBzSuB9PuMQPea83QAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 02:45:22 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 103.71.16.150 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 103.71.16.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 22:45:10.675551 2026] [security2:error] [pid 10430:tid 10430] [client 103.71.16.150:53576] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.71.16.150 (+1 hits since last alert)\|techoutletec.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "techoutletec.com"] [uri "/xmlrpc.php"] [unique_id "aiTbNsU6fdwQNCSJs68t_AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 16:20:07 (2 days ago)	(wordpress) Failed wordpress login from 103.71.16.150 (IN/India/Maharashtra/Mumbai/-/[redacted])	Brute-Force
🇩🇪 konseptit	2026-06-04 11:58:14 (3 days ago)	(wordpress) Failed wordpress login from 103.71.16.150 (IN/India/-)	Brute-Force
🇫🇷 SpaceHost-Server	2026-06-01 22:25:29 (6 days ago)		Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2026-05-31 22:25:21 (1 week ago)		Brute-Force Web App Attack
Anonymous	2026-05-30 13:58:16 (1 week ago)	Attac	Brute-Force
🇳🇱 debestelapp	2026-05-30 11:10:04 (1 week ago)		Web App Attack
🇺🇸 TPI-Abuse	2026-05-30 05:10:21 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 103.71.16.150 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 103.71.16.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 30 01:10:10.679308 2026] [security2:error] [pid 6603:tid 6603] [client 103.71.16.150:64033] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.71.16.150 (+1 hits since last alert)\|barecreationsaz.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "barecreationsaz.com"] [uri "/xmlrpc.php"] [unique_id "ahpxMhjcvLCenxKaWi4ATgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-05-30 05:08:54 (1 week ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
Anonymous	2026-05-30 04:06:03 (1 week ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
Anonymous	2026-05-30 03:35:27 (1 week ago)	[redacted] 103.71.16.150 - - [30/May/2026:05:34:43 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "J ... show more [redacted] 103.71.16.150 - - [30/May/2026:05:34:43 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack/12.1; WordPress/6.3; http://site47096287.com" [redacted] 103.71.16.150 - - [30/May/2026:05:34:54 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack/12.1; WordPress/6.2; http://site39225864.com" [redacted] 103.71.16.150 - - [30/May/2026:05:35:04 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "WordPress.com; https://wordpress.com" [redacted] 103.71.16.150 - - [30/May/2026:05:35:15 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "WordPress.com; https://wordpress.com" [redacted] 103.71.16.150 - - [30/May/2026:05:35:26 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack/12.5; WordPress/6.3; http://site39958131.com" ... show less	Hacking Web App Attack
🇫🇷 SpaceHost-Server	2026-05-29 22:25:27 (1 week ago)		Brute-Force Web App Attack

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 36.134.211.170

🇮🇹 2a00:1450:4025:1805::12d

🇳🇬 152.32.141.176

🇩🇪 150.241.123.191

🇸🇬 129.212.237.224

🇨🇳 115.190.172.63

🇨🇳 114.254.1.141

🇳🇵 113.199.235.101

🇲🇾 47.250.120.163

🇳🇱 45.148.10.141

🇺🇸 45.56.110.197

🇧🇪 34.76.32.160

🇺🇸 34.63.70.104

🇮🇳 34.47.131.237

🇺🇸 20.168.120.148

🇪🇸 217.154.106.153

🇨🇳 183.220.37.203

🇺🇸 172.236.126.127

🇸🇬 103.189.235.176

🇧🇷 45.226.96.113