JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.159.96.19

103.159.96.19 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 0%: ?

ISP	PT Jinde Grup Indonesia
Usage Type	Fixed Line ISP
ASN	AS141140
Hostname(s)	internet-cepat-103-159-96-19.myriseid.com
Domain Name	myriseid.com
Country	🇮🇩 Indonesia
City	Batu, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.159.96.19

Whois 103.159.96.19

IP Abuse Reports for 103.159.96.19:

This IP address has been reported a total of 20 times from 10 distinct sources. 103.159.96.19 was first reported on August 14th 2024, and the most recent report was 8 months ago.

Old Reports: The most recent abuse report for this IP address is from 8 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 1gz	2025-09-24 15:00:38 (8 months ago)	Triggered Cloudflare WAF (firewallCustom) from ID. Action taken: CHALLENGE Protocol: HTTP/2 (GET met ... show more Triggered Cloudflare WAF (firewallCustom) from ID. Action taken: CHALLENGE Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (Linux; Android 13; wv) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Mobile Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 Silly Development	2025-09-05 03:59:59 (9 months ago)	Malicious activity detected from 141140 IDNIC-MYRISE-AS-ID PT Jinde Grup Indonesia towards host pane ... show more Malicious activity detected from 141140 IDNIC-MYRISE-AS-ID PT Jinde Grup Indonesia towards host panel.sillydev.co.uk (GET HTTP/2) @ 2025-09-05T03:59:59Z (1 occurrences) show less	DDoS Attack Exploited Host
🇸🇬 Vano Ganzzz	2025-09-01 11:59:28 (9 months ago)	Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 141140 (IDNIC-MYRISE-AS-ID PT Ji ... show more Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 141140 (IDNIC-MYRISE-AS-ID PT Jinde Grup Indonesia) Protocol: HTTP/2 (HEAD method) Endpoint: / Timestamp: 2025-09-01T11:59:28Z Ray ID: 97849a0b9a26577a UA: Mozilla/5.0 (Linux; Android 10; M2010J19SG Build/QKQ1.200830.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/95.0.4638.50 Mobile Safari/537.36 Code:YQDt1K This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	DDoS Attack Bad Web Bot
🇪🇸 el-brujo	2025-09-01 09:29:39 (9 months ago)	Cloudflare WAF: Request Path: / Request Query: Host: elhacker.net userAgent: Mozilla/6.0 (FirefoxTo ... show more Cloudflare WAF: Request Path: / Request Query: Host: elhacker.net userAgent: Mozilla/6.0 (FirefoxTop)Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.134 Safari/537.36 GTmetrix Action: block Source: l7ddos ASN Description: IDNIC-MYRISE-AS-ID PT Jinde Grup Indonesia Country: ID Method: GET Timestamp: 2025-09-01T09:29:39Z ruleId: cc5ac300fbc54ceda2944ca261bc58d5. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 SuperEvilLuke	2025-08-30 09:18:07 (9 months ago)	Malicious activity detected from 141140 IDNIC-MYRISE-AS-ID PT Jinde Grup Indonesia towards host pane ... show more Malicious activity detected from 141140 IDNIC-MYRISE-AS-ID PT Jinde Grup Indonesia towards host panel.embotic.xyz (GET HTTP/2) @ 2025-08-30T09:18:07Z (4 occurrences) show less	DDoS Attack Exploited Host
🇩🇪 CommanderRoot	2025-08-26 19:02:03 (9 months ago)	HTTP request flood	DDoS Attack Web Spam
🇬🇧 Silly Development	2025-08-26 14:25:19 (9 months ago)	Malicious activity detected from 141140 IDNIC-MYRISE-AS-ID PT Jinde Grup Indonesia towards host pane ... show more Malicious activity detected from 141140 IDNIC-MYRISE-AS-ID PT Jinde Grup Indonesia towards host panel.sillydev.co.uk (GET HTTP/2) @ 2025-08-26T14:25:19Z (23 occurrences) show less	DDoS Attack Exploited Host
🇬🇧 Silly Development	2025-08-25 14:21:21 (9 months ago)	Malicious activity detected from 141140 IDNIC-MYRISE-AS-ID PT Jinde Grup Indonesia towards host pane ... show more Malicious activity detected from 141140 IDNIC-MYRISE-AS-ID PT Jinde Grup Indonesia towards host panel.sillydev.co.uk (GET HTTP/2) @ 2025-08-25T14:21:21Z (9 occurrences) show less	DDoS Attack Exploited Host
🇬🇧 Silly Development	2025-08-25 04:03:49 (9 months ago)	Malicious activity detected from 141140 IDNIC-MYRISE-AS-ID PT Jinde Grup Indonesia towards host pane ... show more Malicious activity detected from 141140 IDNIC-MYRISE-AS-ID PT Jinde Grup Indonesia towards host panel.sillydev.co.uk (GET HTTP/2) @ 2025-08-25T04:03:49Z (20 occurrences) show less	DDoS Attack Exploited Host
🇩🇪 1gz	2025-08-25 04:00:09 (9 months ago)	Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoin ... show more Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/4.0 (compatible; MSIE 7.0; AOL 7.0; Windows NT 5.1) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	DDoS Attack Bad Web Bot
Anonymous	2025-08-17 15:05:14 (9 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_APACHE_403	Brute-Force SSH
🇩🇪 Packets-Decreaser.NET	2025-08-16 23:08:26 (9 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇩🇪 botreporter	2025-05-17 01:18:30 (1 year ago)	botnet ignoring robots.txt	Bad Web Bot
🇮🇩 hermawan	2025-05-10 16:07:20 (1 year ago)	[Sat May 10 21:46:41.521319 2025] [security2:error] [pid 597957:tid 140599595566784] [client 103.159 ... show more [Sat May 10 21:46:41.521319 2025] [security2:error] [pid 597957:tid 140599595566784] [client 103.159.96.19:47482] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "myactivity.google.com" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "439"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: myactivity.google.com found within REQUEST_HEADERS:Referer: https://myactivity.google.com/ request_line = GET /images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Curah_Hujan_Bulanan/Prakiraan_Curah_Hujan_Bulanan_Provinsi_Jawa_Timur/2025/01_Januari_2025/03_Prakiraan_Curah_Hujan_Bulan_MEI_2025_di_Provinsi_Jawa_Timur-Update_dari_Analisis_Bulan_Januari_2025.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Curah_Hujan_Bulanan/Prakiraan_Curah_Hujan_Bulanan_Provinsi_Jawa_Timur/2025/01_Januari_2025/03_Prakiraan_C ... show less	Hacking Web App Attack
🇮🇩 hermawan	2025-05-10 11:39:58 (1 year ago)	[Sat May 10 17:53:19.379388 2025] [security2:error] [pid 490038:tid 140584996714176] [client 103.159 ... show more [Sat May 10 17:53:19.379388 2025] [security2:error] [pid 490038:tid 140584996714176] [client 103.159.96.19:33280] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "themes" at REQUEST_FILENAME. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "52"] [id "448101"] [msg "BAD REQUEST FILENAME - Detected and Blocked"] [data "Matched Data: themes found within REQUEST_FILENAME: /TableFilter/TF_Themes/Default/TF_Default.css request_line = GET /TableFilter/TF_Themes/Default/TF_Default.css HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/TableFilter/TF_Themes/Default/TF_Default.css"] [unique_id "aB8wHy6WMMwdJ5j61C1sqQABVyU"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[490076] [Bdz1432dAeY] [aB8wHy6WMMwdJ5j61C1sqQABVyU] keep_alive=[1] [2025-05-10 17:53:19.379392] [R:aB8wHy6WMMwdJ5j61C1sqQABVyU] UA:'Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Mobil ... show less	Hacking Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.73.216.101

🇰🇷 211.215.92.85

🇺🇸 208.64.202.48

🇩🇪 91.99.27.201

🇦🇪 89.35.193.35

🇺🇸 216.25.89.96

🇷🇼 196.216.81.126

🇸🇦 193.122.74.208

🇮🇩 182.253.153.132

🇧🇷 181.215.13.227

🇰🇷 158.180.79.132

🇮🇳 122.187.228.253

🇯🇵 114.17.51.42

🇨🇳 101.87.42.211

🇺🇸 77.91.118.50

🇮🇷 185.231.181.16

🇨🇳 111.26.62.39

🇷🇺 109.195.179.94

🇮🇳 103.174.34.49

🇷🇺 79.139.211.100