JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.154.150.211

103.154.150.211 was found in our database!

This IP was reported 2 times. Confidence of Abuse is 4%: ?

ISP	PT. Mora Telematika Indonesia
Usage Type	Fixed Line ISP
ASN	AS131111
Hostname(s)	ip-103-154-150-211.moratelindo.net.id
Domain Name	moratelindo.co.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.154.150.211

Whois 103.154.150.211

IP Abuse Reports for 103.154.150.211:

This IP address has been reported a total of 2 times from 1 distinct source. 103.154.150.211 was first reported on April 18th 2025, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-14 08:13:46 (9 hours ago)	[Sun Jun 14 15:13:45.732375 2026] [security2:error] [pid 1620118:tid 139664453928640] [client 103.15 ... show more [Sun Jun 14 15:13:45.732375 2026] [security2:error] [pid 1620118:tid 139664453928640] [client 103.154.150.211:61441] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bing.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bing.go.id found within REQUEST_HEADERS:Referer: https://www.bing.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-klimat-story HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-klimat-story"] [unique_id "ai5iuUo2tmTEU9sKyCM5_AAAQAI"], referer https://www.bing.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1620121] [CrHqSbJVul8] [ai5iuUo2tmTEU9sKyCM5_AAAQAI] keep_alive=[1] [2026-06-14 15:13:45.732378] [R:ai5iuUo2tmTEU9sKyCM5_AAAQAI] UA:'Mozilla/5.0 (iPhone; CPU iPhone OS 17_ ... show less	Email Spam Hacking
🇮🇩 hermawan	2025-04-18 22:52:26 (1 year ago)	[Sat Apr 19 05:44:48.471525 2025] [security2:error] [pid 1050118:tid 139683440654016] [client 103.15 ... show more [Sat Apr 19 05:44:48.471525 2025] [security2:error] [pid 1050118:tid 139683440654016] [client 103.154.150.211:23094] ModSecurity: Access denied with code 403 (phase 1). String match within ".asa/ .asax/ .ascx/ .backup/ .bak/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .com/ .config/ .conf/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dll/ .dos/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .ini/ .key/ .licx/ .lnk/ .log/ .mdb/ .old/ .pass/ .pdb/ .pem/ .pol/ .printer/ .pwd/ .rdb/ .resources/ .resx/ .sql/ .swp/ .sys/ .vb/ .vbs/ .vbproj/ .vsdisco/ .webinfo/ .xsd/ .xsx/" at TX:extension. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1899"] [id "920440"] [msg "URL file extension is restricted by policy"] [data " Matched Data ARGS charset: - Matched Data TX.1: config found within Content-Type multipart form Matched Data: .config found within TX:extension: .config/ request_line = GET /web.config HTTP/1.1 Request URI RAW = /web.config Request Basename = web.config"] [severit ... show less	Hacking Web App Attack

Showing 1 to 2 of 2 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 170.245.250.241

🇫🇮 147.185.133.255

🇮🇩 128.14.232.254

🇧🇩 123.49.60.158

🇨🇳 118.145.225.50

🇩🇪 213.209.159.56

🇺🇸 193.3.53.9

🇺🇸 172.253.244.149

🇺🇸 172.203.195.1

🇺🇸 163.61.236.118

🇺🇸 146.190.41.214

🇪🇸 87.218.135.246

🇧🇭 77.69.151.191

🇫🇮 45.154.244.2

🇳🇱 45.148.10.183

🇺🇸 34.69.108.166

🇨🇱 190.114.43.84

🇺🇾 167.59.217.173

🇸🇬 165.154.236.104

🇩🇿 154.255.101.121