JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.160.69.121

103.160.69.121 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 25%: ?

25%

ISP	PT Gayatri Lintas Nusantara
Usage Type	Fixed Line ISP
ASN	AS141607
Domain Name	gayatri.net.id
Country	🇮🇩 Indonesia
City	Kertosono, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.160.69.121

Whois 103.160.69.121

IP Abuse Reports for 103.160.69.121:

This IP address has been reported a total of 18 times from 11 distinct sources. 103.160.69.121 was first reported on May 13th 2025, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-16 10:26:25 (1 hour ago)	Captured JA4H: ge11n_186438911b7e \| Log: 103.160.69.121 - - [16/Jun/2026:17:26:13 +0700] "GET /index ... show more Captured JA4H: ge11n_186438911b7e \| Log: 103.160.69.121 - - [16/Jun/2026:17:26:13 +0700] "GET /index.php/prakiraan-bulanan/4116-prakiraan-sifat-hujan-bulanan/prakiraan-sifat-hujan-bulanan-di-propinsi-jawa-timur/prakiraan-bulanan-sifat-hujan-di-propinsi-jawa-timur-tahun-2022 HTTP/1.1" 200 37931 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" ge11n_host,sec-ch-ua,sec-ch-ua-mobile,sec-ch-ua-platform,upgrade-insecure-requests,user-agent,accept,sec-fetch-site,sec-fetch-mode,sec-fetch-user,sec-fetch-dest,accept-encoding,accept-language,priority... ... show less	Email Spam Hacking
🇩🇪 Vegascosmetics	2026-06-15 13:08:46 (22 hours ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
🇦🇺 MAGIC	2026-05-30 00:14:05 (2 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇮🇩 hermawan	2026-04-25 19:33:28 (1 month ago)	[Sun Apr 26 02:20:09.777654 2026] [security2:error] [pid 782242:tid 140700008036032] [client 103.160 ... show more [Sun Apr 26 02:20:09.777654 2026] [security2:error] [pid 782242:tid 140700008036032] [client 103.160.69.121:58520] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bing" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.25.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "295"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bing found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 14; SM-G991U Build/UP1A.231005.007; ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36 BingSapphire/32.3.430811006 request_line = GET /index.php/e-buletin-untuk-kota-dan-kabupaten-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/e-buletin-untuk-kota-dan-kabupaten-di-provinsi-jawa-timur"] [unique_id "ae0T6dz8zwPTm69Y6FogWgAAAMk"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[782280] [G6oRxU1GgI ... show less	Email Spam Hacking
🇫🇷 Sklurk	2026-04-22 04:34:16 (1 month ago)	Web App Attack	Web App Attack
🇺🇸 stechusa	2026-03-24 02:06:16 (2 months ago)	[Askari] ELEVATED_THREAT \| 260 IPs targeting /brand.html \| URL template shared by 90 IPs: /brand.htm ... show more [Askari] ELEVATED_THREAT \| 260 IPs targeting /brand.html \| URL template shared by 90 IPs: /brand.html?bulb_shape=&bulb_shape_type=&bulb_type=&mode=list&p= \| Facet request during elevated threat (facet_ratio=0.98, unique_ips=423) \| Signals: path_concentration, concurrent_facet_load, facet_param_template, http1_on_tls, recv_q_stall show less	Web App Attack Hacking Web Spam
🇺🇸 stechusa	2026-03-24 02:06:16 (2 months ago)	ELEVATED_THREAT \| 260 IPs targeting /brand.html \| URL template shared by 90 IPs: /brand.html?bulb_sh ... show more ELEVATED_THREAT \| 260 IPs targeting /brand.html \| URL template shared by 90 IPs: /brand.html?bulb_shape=&bulb_shape_type=&bulb_type=&mode=list&p= \| Facet request during elevated threat (facet_ratio=0.98, unique_ips=423) show less	Web App Attack Hacking Web Spam
🇫🇷 Sklurk	2026-03-20 05:46:03 (2 months ago)	Web App Attack	Web App Attack
🇳🇱 EGP Abuse Dept	2026-03-18 01:16:09 (2 months ago)	Scanning for port/service exploits on tpc-036.mach3builders.nl	Port Scan Hacking
Anonymous	2025-12-11 09:39:58 (6 months ago)	botnet	DDoS Attack
🇨🇭 backslash	2025-12-04 05:20:11 (6 months ago)	block ruleset DA4A07AEE48B136A3922182BE8AA8BFBC1840803	Bad Web Bot
Anonymous	2025-11-25 07:54:25 (6 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-15 21:59:42 (7 months ago)	scanning http requests from known botnet	Web App Attack
🇨🇭 backslash	2025-10-09 19:00:54 (8 months ago)	block ruleset DA4A07AEE48B136A3922182BE8AA8BFBC1840803	Bad Web Bot
🇮🇩 hermawan	2025-10-07 11:24:17 (8 months ago)	[Tue Oct 07 18:23:30.256873 2025] [security2:error] [pid 482881:tid 140224370816704] [client 103.160 ... show more [Tue Oct 07 18:23:30.256873 2025] [security2:error] [pid 482881:tid 140224370816704] [client 103.160.69.121:38980] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "utf-8" at REQUEST_HEADERS:Accept-Charset. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "333"] [id "440015"] [msg "Bot Accept-Charset utf-8"] [data "Matched Data: utf-8 found within REQUEST_HEADERS:Accept-Charset: UTF-8 request_line = GET /images/Klimatologi/Analisis/Peta_Zona_Musim/Peta_Zona_Musim_ZOM_di_Provinsi_Jawa_Timur_Tahun_1991-2020-v1.webp HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Analisis/Peta_Zona_Musim/Peta_Zona_Musim_ZOM_di_Provinsi_Jawa_Timur_Tahun_1991-2020-v1.webp"] [unique_id "aOT4MiSPUFQOcuvNETTRAwAA0wQ"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[482886] [p/8pzI9n/cM] [aOT4MiSPUFQOcuvNETTRAwAA0wQ] keep_alive=[1] [2025-10-07 18:23:30.256883] [R:aOT4MiSPUFQOcuvNETTRAwAA0wQ] ... show less	Hacking Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇹 213.130.207.177

🇨🇦 208.96.233.67

🇺🇦 194.24.236.244

🇨🇳 123.56.124.190

🇮🇳 117.248.126.1

🇮🇳 103.134.46.237

🇻🇳 103.82.21.8

🇮🇳 103.50.5.94

🇺🇸 66.132.172.159

🇺🇸 54.196.183.17

🇺🇸 13.217.95.0

🇺🇸 3.145.162.2

🇰🇷 222.104.76.94

🇳🇱 209.85.208.43

🇺🇸 207.90.244.13

🇸🇦 188.48.214.208

🇨🇳 183.34.228.90

🇺🇸 172.234.199.93

🇺🇸 152.70.157.25

🇺🇸 150.107.38.252