JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.144.18.70

103.144.18.70 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 20%: ?

20%

ISP	PT Gasatek Bintang Nusantara
Usage Type	Fixed Line ISP
ASN	AS139418
Domain Name	gasatek.co.id
Country	🇮🇩 Indonesia
City	Jember, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.144.18.70

Whois 103.144.18.70

IP Abuse Reports for 103.144.18.70:

This IP address has been reported a total of 39 times from 30 distinct sources. 103.144.18.70 was first reported on January 10th 2021, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇴 Fn4ticHz	2026-05-30 15:41:14 (1 week ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇪🇸 librebit	2026-05-29 09:00:57 (2 weeks ago)	Listed IP in blacklist by postfix/dnsblog	Spoofing
🇮🇩 HaDeKa	2026-05-10 18:18:00 (1 month ago)	DDoS Attack to Cloudflare Protected Endpoint [10k] \| TOTAL ATTACK REQUESTS = ± 10M \| START 01:18 AM ... show more DDoS Attack to Cloudflare Protected Endpoint [10k] \| TOTAL ATTACK REQUESTS = ± 10M \| START 01:18 AM END 01:55 AM show less	DDoS Attack
🇬🇧 PeravixGroup	2026-05-04 16:24:22 (1 month ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 NoaQT	2026-04-05 22:06:13 (2 months ago)	103.144.18.70 - - [05/Apr/2026:16:40:19 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.twitter. ... show more 103.144.18.70 - - [05/Apr/2026:16:40:19 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.twitter.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.144.18.70 - - [05/Apr/2026:16:47:57 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.144.18.70 - - [05/Apr/2026:16:53:46 +0200] "GET /web/login HTTP/1.1" 499 0 "https://blog.onlinesite.io/services" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.144.18.70 - - [05/Apr/2026:16:47:57 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" ... show less	DDoS Attack
🇩🇪 NoaQT	2026-04-05 15:45:55 (2 months ago)	103.144.18.70 - - [05/Apr/2026:17:40:51 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.twitter. ... show more 103.144.18.70 - - [05/Apr/2026:17:40:51 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.twitter.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.144.18.70 - - [05/Apr/2026:17:41:01 +0200] "GET /web/login HTTP/1.1" 499 0 "https://DKLzInr.net/about" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.144.18.70 - - [05/Apr/2026:17:41:01 +0200] "GET /web/login HTTP/1.1" 499 0 "https://DKLzInr.net/about" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.144.18.70 - - [05/Apr/2026:17:44:54 +0200] "GET /web/login HTTP/1.1" 499 0 "https://blog.shop-site.info/home" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.144.18.70 - - [05/Apr/2026:17:44:54 +0200] "GET /web/login HTTP/1.1" 499 0 "https://blog.shop-site.info/ ... show less	DDoS Attack
Anonymous	2026-03-23 05:20:25 (2 months ago)	\| [Dangerous/Indonesia] Aggressive IP 103.144.18.70 (~30 hits). Type: DoS Defender- Web server 400 e ... show more \| [Dangerous/Indonesia] Aggressive IP 103.144.18.70 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇧🇪 cmbplf	2026-03-02 21:50:04 (3 months ago)	1231 limiting connections by zone (1h39m59s)	DDoS Attack
🇧🇪 cmbplf	2026-02-22 18:30:09 (3 months ago)	1316 limiting connections by zone (9m59s)	DDoS Attack
🇮🇳 liveaspankaj	2026-02-12 12:27:42 (4 months ago)	DDoS attack on learngeeta.com: 85 requests of GET / HTTP/1.1 over plain HTTP with no referrer. Autom ... show more DDoS attack on learngeeta.com: 85 requests of GET / HTTP/1.1 over plain HTTP with no referrer. Automated bot attack with randomized User-Agents (outdated Chrome 127-129). show less	DDoS Attack
🇫🇷 geeek	2026-02-04 03:49:07 (4 months ago)	Port scanning: 445 TCP Blocked	Port Scan
🇨🇭 backslash	2026-01-04 03:45:06 (5 months ago)	block ruleset 1E8A9918B1655D0828F2EEF05553DD2681055C9A	Web Spam
🇺🇸 Vano Ganzzz	2026-01-02 13:59:31 (5 months ago)	Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 139418 (GASATEKNET-AS-ID PT Gasa ... show more Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 139418 (GASATEKNET-AS-ID PT Gasatek Bintang Nusantara) Protocol: HTTP/2 (GET method) Endpoint: / Timestamp: 2026-01-02T13:59:31Z Ray ID: 9b7ac706a85d49f3 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36 show less	DDoS Attack Bad Web Bot
🇮🇹 VHosting	2025-12-30 13:28:23 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇩🇪 Nerdscave Hosting	2025-12-30 06:44:16 (5 months ago)	[SMB Honeypot Report] Timestamp: 2025-12-30 06:43:46 UTC Port: 63764 No credentials captured Attack ... show more [SMB Honeypot Report] Timestamp: 2025-12-30 06:43:46 UTC Port: 63764 No credentials captured Attack Type: Unauthorized SMB connection attempt show less	Port Scan Hacking Brute-Force

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 165.154.173.35

🇰🇷 161.118.153.131

🇹🇭 49.228.48.45

🇺🇸 34.59.18.159

🇩🇪 5.75.225.238

🇨🇳 139.9.191.197

🇨🇱 136.248.247.188

🇩🇪 64.188.83.244

🇬🇧 37.143.61.84

🇧🇷 201.86.230.232

🇧🇷 200.175.61.207

🇻🇳 171.244.141.86

🇺🇸 147.185.132.200

🇺🇸 147.185.132.29

🇧🇩 103.4.145.50

🇸🇬 85.203.21.85

🇺🇸 65.49.20.104

🇺🇸 216.239.38.223

🇭🇰 199.45.154.179

🇷🇺 188.0.166.145