JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.157.62.235

103.157.62.235 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 19%: ?

19%

ISP	PT Adhelin Data Solution
Usage Type	Fixed Line ISP
ASN	AS149976
Domain Name	adsnetwork.co.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.157.62.235

Whois 103.157.62.235

IP Abuse Reports for 103.157.62.235:

This IP address has been reported a total of 18 times from 15 distinct sources. 103.157.62.235 was first reported on September 5th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-05-28 07:17:34 (2 weeks ago)	[Thu May 28 14:17:29.215450 2026] [security2:error] [pid 518289:tid 139852119979712] [client 103.157 ... show more [Thu May 28 14:17:29.215450 2026] [security2:error] [pid 518289:tid 139852119979712] [client 103.157.62.235:42335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bing" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "254"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bing found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 15; SM-S928U Build/AP3A.240905.015.A2; ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36 BingSapphire/32.3.430811006 request_line = GET / HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/"] [unique_id "ahfsCfF_DWxIgzzgYMKP0AAB1BM"], referer https://staklim-jatim.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[518316] [0UdZhVuls/o] [ahfsCfF_DWxIgzzgYMKP0AAB1BM] keep_alive=[1] [2026-05-28 14:17:29.215457] [R:ahfsCfF_DWxIgzzgYMKP0AAB1BM] UA:'Mozilla/ ... show less	Email Spam Hacking
🇫🇷 Sklurk	2026-05-23 03:53:35 (2 weeks ago)	Web App Attack	Web App Attack
🇦🇺 MAGIC	2026-04-30 01:32:08 (1 month ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇮🇹 A000Z	2026-04-22 02:04:00 (1 month ago)	Fail2Ban: 103.157.62.235 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5 ... show more Fail2Ban: 103.157.62.235 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 show less	Bad Web Bot
🇺🇸 kosada.com	2026-03-25 16:13:50 (2 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 stechusa	2026-03-24 19:02:51 (2 months ago)	[Askari] \| country=ID \| Behavior: Targeting specific pages, HTTP/1.1 over TLS, Outdated browser, Con ... show more [Askari] \| country=ID \| Behavior: Targeting specific pages, HTTP/1.1 over TLS, Outdated browser, Concurrent page load during attack show less	Bad Web Bot DDoS Attack
🇺🇸 stechusa	2026-03-24 19:02:50 (2 months ago)	ELEVATED_THREAT \| country=ID \| ASN=PT Adhelin Data Solution \| 9 IPs targeting /brand/access-lighting ... show more ELEVATED_THREAT \| country=ID \| ASN=PT Adhelin Data Solution \| 9 IPs targeting /brand/access-lighting/lighting-fixtures.html \| Facet request during elevated threat (facet_ratio=0.83, unique_ips=362) \| HTTP/1.1 over TLS (elevated=True) show less	Bad Web Bot DDoS Attack
Anonymous	2026-02-18 03:24:39 (3 months ago)	Web App Attack	SQL Injection
🇸🇬 Vano Ganzzz	2025-11-29 11:13:52 (6 months ago)	Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 149976 (ADSNETWORK-AS-ID PT Adhe ... show more Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 149976 (ADSNETWORK-AS-ID PT Adhelin Data Solution) Protocol: HTTP/1.1 (GET method) Endpoint: / Timestamp: 2025-11-29T11:13:52Z Ray ID: 9a61ada1dd06fcf0 UA: Mozilla/5.0 (Linux; Android 10; SM-G970F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.101 Mobile Safari/537.36 OPR/76.2.4027.73374 show less	DDoS Attack Bad Web Bot
🇩🇪 Tizian Maxime Weigt	2025-11-25 08:19:26 (6 months ago)	Incoming DDoS to port 443 (L7 HTTPS Flood) Detected	DDoS Attack
🇨🇭 backslash	2025-10-31 15:06:20 (7 months ago)		DDoS Attack
🇩🇪 Packets-Decreaser.NET	2025-10-04 22:34:33 (8 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇧🇪 cmbplf	2025-04-17 16:00:57 (1 year ago)	588 limiting connections by zone (14m59s)	DDoS Attack
🇩🇪 Packets-Decreaser.NET	2025-03-26 13:33:41 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇬🇧 Bytemark	2024-10-30 00:52:43 (1 year ago)	103.157.62.235 - - [30/Oct/2024:00:52:42 +0000] "GET /wp-login.php HTTP/1.1" 404 27 "-" "Mozilla/5.0 ... show more 103.157.62.235 - - [30/Oct/2024:00:52:42 +0000] "GET /wp-login.php HTTP/1.1" 404 27 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 103.157.62.235 - - [30/Oct/2024:00:52:42 +0000] "GET /xmlrpc.php HTTP/1.1" 404 27 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 103.157.62.235 - - [30/Oct/2024:00:52:43 +0000] "GET /wp-login.php HTTP/1.1" 404 27 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" show less	Brute-Force Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.82

🇹🇼 116.59.8.106

🇺🇸 70.37.89.177

🇩🇪 2401:b140:2::92:201

🇺🇸 208.87.242.185

🇮🇳 202.159.221.146

🇧🇪 198.235.24.206

🇬🇧 194.50.235.146

🇦🇷 190.113.165.161

🇺🇸 162.216.149.241

🇺🇸 142.248.80.209

🇮🇩 110.139.55.253

🇺🇸 85.208.96.197

🇩🇪 69.5.169.242

🇨🇳 47.106.218.161

🇧🇷 45.174.220.205

🇺🇸 45.33.55.247

🇬🇧 31.14.254.79

🇷🇴 2.57.121.25

🇮🇩 210.57.216.130