JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.133.27.11

103.133.27.11 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 19%: ?

19%

ISP	PT PHATRIA INTI PERSADA
Usage Type	Data Center/Web Hosting/Transit
ASN	AS138130
Domain Name	phatriasulung.net.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.133.27.11

Whois 103.133.27.11

IP Abuse Reports for 103.133.27.11:

This IP address has been reported a total of 26 times from 19 distinct sources. 103.133.27.11 was first reported on September 10th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-02 10:20:05 (3 weeks ago)	\| [Dangerous/Indonesia] Aggressive IP 103.133.27.11 (~30 hits). Type: DoS Defender- Web server 400 e ... show more \| [Dangerous/Indonesia] Aggressive IP 103.133.27.11 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇷🇴 Fn4ticHz	2026-05-30 15:41:14 (3 weeks ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇺🇸 TPI-Abuse	2026-05-22 14:11:16 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 103.133.27.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 103.133.27.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 10:11:12.130690 2026] [security2:error] [pid 20387:tid 20387] [client 103.133.27.11:34538] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|directcch.com\|F\|2"] [data ".axd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "directcch.com"] [uri "/blog/image.axd"] [unique_id "ahBkAOMAEogoI5GArvgdcAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 MatStef132	2026-05-22 14:04:50 (1 month ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇷🇴 Fn4ticHz	2026-05-08 23:03:01 (1 month ago)	Repeated DDoS targeted -- ZeroGuard X ManagedSRV	DDoS Attack Exploited Host
🇩🇪 NoaQT	2026-04-05 22:07:33 (2 months ago)	103.133.27.11 - - [05/Apr/2026:16:48:30 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.c ... show more 103.133.27.11 - - [05/Apr/2026:16:48:30 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.133.27.11 - - [05/Apr/2026:16:57:24 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.facebook.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.133.27.11 - - [05/Apr/2026:17:00:14 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinterest.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.133.27.11 - - [05/Apr/2026:17:00:37 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.whatsapp.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.133.27.11 - - [05/Apr/2026:16:57:24 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.facebook.com/" "Mozilla ... show less	DDoS Attack
🇩🇪 NoaQT	2026-04-05 15:44:54 (2 months ago)	103.133.27.11 - - [05/Apr/2026:17:37:41 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinteres ... show more 103.133.27.11 - - [05/Apr/2026:17:37:41 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinterest.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.133.27.11 - - [05/Apr/2026:17:38:38 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.bing.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.133.27.11 - - [05/Apr/2026:17:39:31 +0200] "GET /web/login HTTP/1.1" 499 0 "https://app.link-top.info/search" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.133.27.11 - - [05/Apr/2026:17:42:45 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.instagram.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.133.27.11 - - [05/Apr/2026:17:42:48 +0200] "GET /web/login HTTP/1.1" 499 0 "https://app.top-fast.net/about" "Mozilla/5.0 (Windows N ... show less	DDoS Attack
🇳🇱 maxxsense	2026-04-03 12:56:27 (2 months ago)	103.133.27.11 (ID/Indonesia/-), 12 distributed imapd attacks on account [redacted]	Brute-Force
🇩🇪 EGP Abuse Dept	2026-03-27 02:03:41 (2 months ago)	Scraping webshop URLs (www.badgehouder.nl), likely botnet drone	Bad Web Bot Exploited Host
🇺🇸 matt	2026-03-02 21:00:03 (3 months ago)	DDOS attack with query parameters attempting to overload WordPress site.	DDoS Attack
🇳🇱 VMHeaven.io	2026-01-16 10:34:13 (5 months ago)	Blocked by UFW [23/tcp] Source port: 33172 TTL: 51 Packet length: 60	Port Scan Hacking Brute-Force
🇮🇹 VHosting	2025-12-30 13:28:23 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇨🇭 Modules	2025-12-25 20:01:37 (5 months ago)	Open proxy http://103.133.27.11:8080 (RT:5207ms,Loc:Indonesia,ASN:AS138130)	Open Proxy
🇺🇸 SuperEvilLuke	2025-12-14 14:06:30 (6 months ago)	Malicious activity detected from 138130 PHATRIASULUNG-AS-ID PT PHATRIA INTI PERSADA towards host pan ... show more Malicious activity detected from 138130 PHATRIASULUNG-AS-ID PT PHATRIA INTI PERSADA towards host panel.embotic.xyz (GET HTTP/2) @ 2025-12-14T14:06:30Z (1 occurrences) show less	DDoS Attack Exploited Host
🇵🇹 PTnet	2025-12-07 06:19:48 (6 months ago)	DDoS Attack (jail:haproxy-https-flood)	DDoS Attack Exploited Host

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇩 91.199.133.230

🇨🇴 186.115.89.150

🇳🇱 176.65.139.181

🇺🇸 67.174.100.96

🇳🇱 45.148.10.151

🇳🇱 45.142.193.53

🇮🇩 36.68.111.65

🇨🇳 36.33.167.165

🇺🇸 35.185.25.201

🇺🇸 216.25.89.95

🇯🇵 206.223.231.251

🇺🇸 172.172.30.211

🇧🇭 172.69.228.153

🇺🇸 172.69.180.162

🇺🇸 147.185.132.120

🇧🇷 138.121.36.1

🇯🇴 109.107.227.16

🇸🇬 103.187.147.214

🇳🇱 91.92.40.240

🇱🇻 81.30.98.144