JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.73.102.106

103.73.102.106 was found in our database!

This IP was reported 702 times. Confidence of Abuse is 44%: ?

44%

ISP	KK Networks
Usage Type	Fixed Line ISP
ASN	AS136969
Domain Name	kknetworks.com.pk
Country	🇵🇰 Pakistan
City	Lahore, Punjab

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.73.102.106

Whois 103.73.102.106

IP Abuse Reports for 103.73.102.106:

This IP address has been reported a total of 702 times from 89 distinct sources. 103.73.102.106 was first reported on December 26th 2023, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 konseptit	2026-06-21 15:41:17 (4 days ago)	(wordpress) Failed wordpress login from 103.73.102.106 (PK/Pakistan/103.73.102-106.kkn.com.pk)	Brute-Force
Anonymous	2026-06-21 11:26:40 (4 days ago)	Attac	Brute-Force
🇫🇮 YF	2026-06-15 18:00:27 (1 week ago)	xmlrpc.php Potential DDoS or brute force	DDoS Attack Brute-Force
🇺🇸 TPI-Abuse	2026-06-15 17:22:53 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 i ... show more (mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 13:22:46.757795 2026] [security2:error] [pid 28818:tid 28820] [client 103.73.102.106:52847] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.73.102.106 (+1 hits since last alert)\|planmytrust.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "planmytrust.com"] [uri "/xmlrpc.php"] [unique_id "ajA05sRIphRj0RdOLyVCwQAAAUA"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-06-15 11:34:17 (1 week ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2026-06-15 06:04:55 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 i ... show more (mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 02:04:46.944377 2026] [security2:error] [pid 7042:tid 7042] [client 103.73.102.106:60220] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.73.102.106 (+1 hits since last alert)\|baliaccommodationpadangpadang.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "baliaccommodationpadangpadang.com"] [uri "/xmlrpc.php"] [unique_id "ai-V_n5gBktdiDudRWzM8AAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 18:03:46 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 i ... show more (mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 14:03:40.362998 2026] [security2:error] [pid 18812:tid 18812] [client 103.73.102.106:53249] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.73.102.106 (+1 hits since last alert)\|hiidied.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "hiidied.com"] [uri "/xmlrpc.php"] [unique_id "ai7s_EnA0Vn_Ta1Z6dTO8gAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 19:12:48 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 i ... show more (mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 15:12:41.365471 2026] [security2:error] [pid 19037:tid 19037] [client 103.73.102.106:62635] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.73.102.106 (+1 hits since last alert)\|blacktieokc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "blacktieokc.com"] [uri "/xmlrpc.php"] [unique_id "ai2rqcMUOyYovzlDzgZB5QAAADE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 18:42:18 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 i ... show more (mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 14:42:14.749274 2026] [security2:error] [pid 2959:tid 2959] [client 103.73.102.106:51487] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.73.102.106 (+1 hits since last alert)\|blindshine.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "blindshine.com"] [uri "/xmlrpc.php"] [unique_id "ai2kho3BUKE6HvX7Kc49wwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 18:12:09 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 i ... show more (mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 14:11:56.130581 2026] [security2:error] [pid 29308:tid 29330] [client 103.73.102.106:59491] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.73.102.106 (+1 hits since last alert)\|cynosureinternetservices.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "cynosureinternetservices.com"] [uri "/xmlrpc.php"] [unique_id "ai2dbOqc47NFnf1BVZrdrQAAAc8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 09:51:17 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 i ... show more (mod_security) mod_security (id:240335) triggered by 103.73.102.106 (103.73.102-106.kkn.com.pk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 05:51:12.179762 2026] [security2:error] [pid 14868:tid 14957] [client 103.73.102.106:62216] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.73.102.106 (+1 hits since last alert)\|whatismetamodern.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "whatismetamodern.com"] [uri "/xmlrpc.php"] [unique_id "aikzkNx1AO8LsB1689T6BwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-08 16:37:14 (2 weeks ago)	Attac	Brute-Force
🇺🇸 integrantservices.com	2026-06-07 15:44:06 (2 weeks ago)	(wordpress) Failed wordpress login from 103.73.102.106 (PK/Pakistan/103.73.102-106.kkn.com.pk)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-06 19:23:07 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 103.73.102.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 103.73.102.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 15:22:49.415168 2026] [security2:error] [pid 23595:tid 23595] [client 103.73.102.106:59369] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.73.102.106 (+1 hits since last alert)\|eileensharaga.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "eileensharaga.com"] [uri "/xmlrpc.php"] [unique_id "aiRziTsm92tOkOubQHd2pQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 15:30:27 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 103.73.102.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 103.73.102.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 11:30:09.780537 2026] [security2:error] [pid 15332:tid 15332] [client 103.73.102.106:61097] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.73.102.106 (+1 hits since last alert)\|natickvillagerentals.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "natickvillagerentals.com"] [uri "/xmlrpc.php"] [unique_id "aiGaAWc3uEB39q5fT9d21wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 702 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2a03:2880:15ff:5b::

🇧🇷 181.189.91.43

🇹🇷 176.233.80.62

🇻🇳 171.233.234.84

🇱🇻 81.30.98.49

🇳🇱 45.148.10.141

🇷🇺 5.139.189.6

🇺🇸 2a03:2880:15ff:5a::

🇺🇸 2604:a880:400:d1:0:4:454c:f001

🇺🇸 216.108.238.40

🇭🇰 193.176.211.61

🇧🇴 189.28.73.169

🇱🇹 185.2.228.48

🇮🇳 182.95.233.86

🇩🇪 167.94.146.76

🇮🇩 163.7.7.40

🇺🇸 135.237.124.61

🇮🇳 122.187.230.187

🇮🇳 113.30.177.170

🇩🇪 84.233.216.239