JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.103.193.194

103.103.193.194 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 26%: ?

26%

ISP	Datacenter Infrastructure
Usage Type	Data Center/Web Hosting/Transit
ASN	AS135636
Domain Name	rackh.co.id
Country	🇮🇩 Indonesia
City	Bogor, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.103.193.194

Whois 103.103.193.194

IP Abuse Reports for 103.103.193.194:

This IP address has been reported a total of 26 times from 18 distinct sources. 103.103.193.194 was first reported on December 1st 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 sockominfo	2026-06-22 13:00:55 (2 days ago)	User login to application from malicious IP 103.103.193.194.. Threat Score: 3.8/10 (LOW). Confidence ... show more User login to application from malicious IP 103.103.193.194.. Threat Score: 3.8/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-22 12:00:13 (2 days ago)	User login to application from malicious IP 103.103.193.194.. Threat Score: 0/10 (INFORMATIONAL). Re ... show more User login to application from malicious IP 103.103.193.194.. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇵🇭 Keso	2026-06-22 00:00:00 (3 days ago)	Check for blocking	Web Spam
🇩🇪 anycast_ac	2026-06-19 12:19:47 (5 days ago)	[DDoS Attacker] This IP was attacking website anycast.ac and sent 2567 requests on port 443	DDoS Attack Web App Attack
🇩🇪 anycast_ac	2026-06-18 16:36:59 (6 days ago)	[DDoS Attacker] This IP was attacking website anycast.ac and sent 970 requests on port 443	DDoS Attack Web App Attack
🇮🇩 sockominfo	2026-06-18 01:00:53 (1 week ago)	User login to application from malicious IP 103.103.193.194.. Threat Score: 3.9/10 (LOW). Confidence ... show more User login to application from malicious IP 103.103.193.194.. Threat Score: 3.9/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-18 00:01:01 (1 week ago)	User login to application from malicious IP 103.103.193.194.. Threat Score: 4/10 (MEDIUM). Confidenc ... show more User login to application from malicious IP 103.103.193.194.. Threat Score: 4/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Very Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-17 00:00:57 (1 week ago)	User login to application from malicious IP 103.103.193.194.. Threat Score: 4.2/10 (MEDIUM). Confide ... show more User login to application from malicious IP 103.103.193.194.. Threat Score: 4.2/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 57%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Very Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇷🇴 Fn4ticHz	2026-05-29 02:43:10 (3 weeks ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇫🇷 MatStef132	2026-05-22 14:04:48 (1 month ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇷🇴 Fn4ticHz	2026-05-09 14:01:16 (1 month ago)	Repeated DDoS targeted -- ZeroGuard X ManagedSRV	DDoS Attack Exploited Host
🇩🇪 EGP Abuse Dept	2026-05-02 01:21:42 (1 month ago)	Scraping webshop URLs (webshop.hofstede-optiek.nl), likely botnet drone	Bad Web Bot Exploited Host
🇫🇷 Sklurk	2026-04-25 02:14:03 (2 months ago)	Web App Attack	Web App Attack
🇩🇪 rh24	2026-04-22 22:36:40 (2 months ago)	(wordpress) Failed wordpress login from 103.103.193.194 (ID/Indonesia/-): (CF_ENABLE)	Brute-Force
🇩🇪 NoaQT	2026-04-05 22:06:48 (2 months ago)	103.103.193.194 - - [05/Apr/2026:16:58:29 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinter ... show more 103.103.193.194 - - [05/Apr/2026:16:58:29 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinterest.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.103.193.194 - - [05/Apr/2026:16:59:31 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.advance-app.us/products" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.103.193.194 - - [05/Apr/2026:17:00:54 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.facebook.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.103.193.194 - - [05/Apr/2026:17:09:25 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.instagram.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.103.193.194 - - [05/Apr/2026:16:59:31 +0200] "GET /web/login HTTP/1.1" 499 0 "https:// ... show less	DDoS Attack

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇬 88.204.46.206

🇺🇸 2604:a940:300:5b6:0:2b::

🇧🇪 198.235.24.133

🇳🇱 192.109.200.78

🇧🇬 185.253.160.7

🇺🇸 172.182.225.194

🇯🇵 116.81.63.46

🇮🇳 103.91.246.101

🇷🇺 95.27.81.175

🇵🇹 82.140.183.100

🇺🇸 65.49.1.84

🇪🇸 46.222.54.240

🇳🇱 45.156.87.93

🇻🇳 14.225.253.26

🇺🇸 3.148.102.244

🇬🇧 188.122.39.33

🇫🇷 185.177.72.10

🇺🇸 147.185.132.255

🇧🇷 144.22.238.238

🇷🇴 141.98.83.240