JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.147.134.133

103.147.134.133 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 37%: ?

37%

ISP	PT.MURNI MAKMUR ABADI
Usage Type	Fixed Line ISP
ASN	AS139963
Domain Name	stationhotspot.net.id
Country	🇮🇩 Indonesia
City	Bangkalan, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.147.134.133

Whois 103.147.134.133

IP Abuse Reports for 103.147.134.133:

This IP address has been reported a total of 15 times from 10 distinct sources. 103.147.134.133 was first reported on July 3rd 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 cmbplf	2026-06-01 16:52:19 (4 days ago)	941 limiting connections by zone (16h39m59s)	DDoS Attack
🇮🇩 hermawan	2026-06-01 15:50:29 (4 days ago)	06/01/2026-22:50:28.963057 [Drop] [] [1:921373:1] Suricata Dibuat Gemini TCP SYN port scanner - W ... show more 06/01/2026-22:50:28.963057 [Drop] [] [1:921373:1] Suricata Dibuat Gemini TCP SYN port scanner - Win 65535 [**] [Classification: (null)] [Priority: 3] {TCP} 103.147.134.133:49250 -> 103.166.156.58:443 ... show less	Email Spam Hacking
🇧🇪 cmbplf	2026-05-31 16:51:25 (5 days ago)	973 limiting connections by zone (3h44m59s)	DDoS Attack
🇷🇴 Fn4ticHz	2026-05-30 15:42:55 (6 days ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇧🇪 cmbplf	2026-05-28 09:31:09 (1 week ago)	665 limiting connections by zone (13m59s)	DDoS Attack
🇩🇪 SMARTNET	2026-05-27 06:03:53 (1 week ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 22ada211-5b5c-463a-b46f-60fd11dc639d	DDoS Attack
🇫🇷 MatStef132	2026-05-22 14:04:39 (2 weeks ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇮🇹 VHosting	2026-04-26 08:29:52 (1 month ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇮🇹 VHosting	2026-04-10 05:17:24 (1 month ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
Anonymous	2026-04-09 19:36:27 (1 month ago)	Web App Attack, Hacking	Hacking Web App Attack
🇩🇪 NoaQT	2026-04-05 22:05:50 (2 months ago)	103.147.134.133 - - [05/Apr/2026:16:38:56 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.wikipe ... show more 103.147.134.133 - - [05/Apr/2026:16:38:56 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.wikipedia.org/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.147.134.133 - - [05/Apr/2026:16:41:53 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.bing.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.147.134.133 - - [05/Apr/2026:17:10:19 +0200] "GET /web/login HTTP/1.1" 499 0 "https://news.tech-future.biz/services" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.147.134.133 - - [05/Apr/2026:16:41:53 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.bing.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" ... show less	DDoS Attack
🇩🇪 NoaQT	2026-04-05 15:43:52 (2 months ago)	103.147.134.133 - - [05/Apr/2026:17:31:46 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinter ... show more 103.147.134.133 - - [05/Apr/2026:17:31:46 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinterest.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.147.134.133 - - [05/Apr/2026:17:32:01 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.wikipedia.org/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.147.134.133 - - [05/Apr/2026:17:32:01 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.wikipedia.org/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.147.134.133 - - [05/Apr/2026:17:41:42 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.147.134.133 - - [05/Apr/2026:17:41:42 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/ ... show less	DDoS Attack
Anonymous	2026-03-23 06:20:21 (2 months ago)	\| [Dangerous/Indonesia] Aggressive IP 103.147.134.133 (~30 hits). Type: DoS Defender- Web server 400 ... show more \| [Dangerous/Indonesia] Aggressive IP 103.147.134.133 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇮🇩 hermawan	2025-09-22 06:02:06 (8 months ago)	[Mon Sep 22 13:00:33.084422 2025] [security2:error] [pid 775336:tid 139669592245952] [client 103.147 ... show more [Mon Sep 22 13:00:33.084422 2025] [security2:error] [pid 775336:tid 139669592245952] [client 103.147.134.133:46514] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i),.?[\\"'\\\\)0-9`-f][\\"'`](?:[\\"'`].?[\\"'`]\|(?:\\\\r?\\\\n)?\\\\z\|[^\\"'`]+)\|[^0-9A-Z_a-z]select.+[^0-9A-Z_a-z]?from\|(?:alter\|(?:(?:cre\|trunc\|upd)at\|renam)e\|d(?:e(?:lete\|sc)\|rop)\|(?:inser\|selec)t\|load)[\\\\s\\\\x0b]?\\\\([\\\\s\\\\x0b]?space[\\\\s\\\\x0b]?\\\\(" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "2129"] [id "942200"] [msg "Detects MySQL comment-/space-obfuscated injections and backtick termination"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: , like Gecko) Version/4.0 Chrome/140.0.7339.51 Mobile Safari/537.36 OcIdWebView ({\\x22os\\x22:\\x22Android\\x22, found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 11; vivo 2 ... show less	Hacking Web App Attack
🇺🇸 LARL-Stompro-2024	2025-07-03 01:20:48 (11 months ago)	Evergreen ILS - Mylist Bot Abuse - HTTP Port 443 - Fake UserAgent. Requests:1	Bad Web Bot

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 193.36.84.88

🇻🇳 171.231.196.120

🇨🇳 123.157.223.90

🇻🇳 123.25.116.123

🇨🇳 120.48.27.74

🇷🇺 94.198.1.94

🇫🇷 82.25.175.105

🇸🇬 47.236.169.75

🇳🇱 46.8.68.144

🇺🇸 43.162.98.142

🇺🇸 32.198.22.252

🇩🇪 193.124.20.244

🇪🇨 186.68.83.105

🇮🇳 168.144.95.137

🇺🇸 162.216.150.202

🇻🇳 160.250.5.104

🇺🇸 143.198.134.9

🇮🇩 103.230.81.100

🇵🇰 103.191.119.216

🇵🇰 103.121.43.1