JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.169.135.83

103.169.135.83 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 13%: ?

13%

ISP	PT Neo Santara Solusi
Usage Type	Fixed Line ISP
ASN	AS142338
Domain Name	neosantarasolusi.net
Country	🇮🇩 Indonesia
City	Kedungwaru, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.169.135.83

Whois 103.169.135.83

IP Abuse Reports for 103.169.135.83:

This IP address has been reported a total of 26 times from 17 distinct sources. 103.169.135.83 was first reported on March 8th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-01 11:30:02 (1 week ago)	Kingcopy(AI-IDS) Report: IP 103.169.135.83 wurde nach 3 Angriffsversuchen automatisch geblockt. Patt ... show more Kingcopy(AI-IDS) Report: IP 103.169.135.83 wurde nach 3 Angriffsversuchen automatisch geblockt. Pattern: High Priority: ChangeCountry - Vegas Cosmetics Security System show less	DDoS Attack Hacking Bad Web Bot
🇩🇪 SMARTNET	2026-05-27 06:03:53 (2 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 5b730afc-5cec-4742-843f-18085cc64e5c	DDoS Attack
🇸🇪 Johan Finn	2026-01-03 04:16:33 (5 months ago)	malicious activity	Web App Attack
🇮🇩 hermawan	2025-12-19 17:48:10 (5 months ago)	[Sat Dec 20 00:47:38.551229 2025] [security2:error] [pid 155406:tid 139735285593792] [client 103.169 ... show more [Sat Dec 20 00:47:38.551229 2025] [security2:error] [pid 155406:tid 139735285593792] [client 103.169.135.83:59692] ModSecurity: Access denied with code 403 (phase 2). Pattern match "." at ARGS_NAMES:idsite. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-921-PROTOCOL-ATTACK.conf"] [line "732"] [id "921170"] [msg "deny 921170"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: i found within ARGS_NAMES:idsite: idsite request_line = GET /matomo.php?idsite=1&rec=1 HTTP/2.0 Request URI RAW = /matomo.php?idsite=1&rec=1 Request Basename = matomo.php"] [ver "OWASP_CRS/4.20.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL-ATTACK"] [tag "capec/1000/152/137/15/460"] [hostname "matomo.staklim-malang.info"] [uri "/matomo.php"] [unique_id "aUWPus0d2e6qs4zwRxtmQQAABAw"], referer https://staklim-jatim.bmkg.go.id/index.php/profil/meteorol ... show less	Hacking Web App Attack
🇮🇩 hermawan	2025-11-27 22:20:54 (6 months ago)	[Fri Nov 28 04:59:03.550713 2025] [security2:error] [pid 1180518:tid 139900465604288] [client 103.16 ... show more [Fri Nov 28 04:59:03.550713 2025] [security2:error] [pid 1180518:tid 139900465604288] [client 103.169.135.83:46566] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "utf-8" at REQUEST_HEADERS:Accept-Charset. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "357"] [id "440015"] [msg "Bot Accept-Charset utf-8"] [data "Matched Data: utf-8 found within REQUEST_HEADERS:Accept-Charset: UTF-8 request_line = GET /images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Daerah_Potensi_Banjir_Bulanan/Prakiraan_Daerah_Potensi_Banjir_Bulan_Provinsi_Jawa_Timur/2025/01_JANUARI_2025/02_Prakiraan_Bulanan_Daerah_Potensi_Banjir_di_Provinsi_Jawa_Timur_MARET_Tahun_2025_update_10_Januari_2025.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Daerah_Potensi_Banjir_Bulanan/Prakiraan_Daerah_Potensi_Banjir_Bulan_Provinsi_Jawa_Timur/2025/01_JANUARI_2025/02_Praki ... show less	Hacking Web App Attack
Anonymous	2025-11-26 04:03:32 (6 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-17 16:13:54 (6 months ago)	scanning http requests from known botnet	Web App Attack
🇳🇱 exxos	2025-08-29 20:03:01 (9 months ago)	http-no-verb	Hacking
🇮🇩 hermawan	2025-06-25 11:40:34 (11 months ago)	[Wed Jun 25 18:40:03.757520 2025] [security2:error] [pid 73560:tid 139969271854784] [client 103.169. ... show more [Wed Jun 25 18:40:03.757520 2025] [security2:error] [pid 73560:tid 139969271854784] [client 103.169.135.83:49548] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "okhttp" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "222"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: okhttp found within REQUEST_HEADERS:User-Agent: okhttp/4.12.0 request_line = GET /images/Klimatologi/Prakiraan/04_Prakiraan_6_Bulanan/Prakiraan_Musim/Prakiraan_Musim_Kemarau/Provinsi_Jawa_Timur/2020/Peta_Prakiraan_Awal_Musim_Kemarau_Tahun_2020_Zona_Musim_di_Provinsi_Jawa_Timur.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Prakiraan/04_Prakiraan_6_Bulanan/Prakiraan_Musim/Prakiraan_Musim_Kemarau/Provinsi_Jawa_Timur/2020/Peta_Prakiraan_Awal_Musim_Kemarau_Tahun_2020_Zona_Musim_di_Provinsi_Jawa_Timur.jpg"] [unique_id "aFvgExtlvfC727i3EsVdYQAAgQA"] [ ... show less	Hacking Web App Attack
🇮🇩 hermawan	2025-05-18 09:04:36 (1 year ago)	[Sun May 18 15:49:22.155754 2025] [security2:error] [pid 146324:tid 139797278402240] [client 103.169 ... show more [Sun May 18 15:49:22.155754 2025] [security2:error] [pid 146324:tid 139797278402240] [client 103.169.135.83:37382] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "myactivity.google.com" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "439"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: myactivity.google.com found within REQUEST_HEADERS:Referer: https://myactivity.google.com/ request_line = GET /images/berita/2025/04/04-04-2025/Ucapan_Duka_Atas_Meninggalnya_Lestari.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/berita/2025/04/04-04-2025/Ucapan_Duka_Atas_Meninggalnya_Lestari.jpg"] [unique_id "aCmfEifsVSn1wIEG9_25OgAArRM"], referer https://myactivity.google.com/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[146344] [CRt5F30bMxo] [aCmfEifsVSn1wIEG9_25OgAArRM] keep_alive=[1] [2025-05-18 15:49:22.155760] [R:aCmfEifsVSn1wIEG9_25OgAArRM] U ... show less	Hacking Web App Attack
🇦🇺 MAGIC	2025-02-28 15:01:35 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇮🇩 hermawan	2025-02-16 09:54:00 (1 year ago)	[Sun Feb 16 16:54:00.158570 2025] [security2:error] [pid 89113:tid 140056728536768] [client 103.169. ... show more [Sun Feb 16 16:54:00.158570 2025] [security2:error] [pid 89113:tid 140056728536768] [client 103.169.135.83:38290] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "de" at REQUEST_HEADERS:Accept-Language. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "167"] [id "440001"] [msg "Seperti Ddos bahasa Rusia ada di ip vietnam 2.59.0.188 "] [data "Matched Data: de found within REQUEST_HEADERS:Accept-Language: id-ID,id;q=0.9,jv-ID;q=0.8,jv;q=0.7,de-DE;q=0.6,de;q=0.5,en-US;q=0.4,en;q=0.3 request_line = GET /TableFilter/system-v170.css HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/TableFilter/system-v170.css"] [unique_id "Z7G1uAHZ_Xfk0h7RSJjV4wABzEI"], referer https://staklim-jatim.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[89180] [MOYCY5fcHvg] [Z7G1uAHZ_Xfk0h7RSJjV4wABzEI] keep_alive=[1] [2025-02-16 16:54:00.158574] [R:Z7G1uAHZ_Xfk0h7RSJjV4wABzEI] UA:'Mozilla/5.0 (Linux; A ... show less	Hacking Web App Attack
Anonymous	2025-02-10 14:04:52 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇹🇷 rtbh.com.tr	2024-09-09 08:54:49 (1 year ago)	list.rtbh.com.tr report: tcp/1433	Brute-Force
Anonymous	2024-09-09 00:45:09 (1 year ago)	MS-SQL Bruteforce	Brute-Force

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 139.170.72.215

🇳🇱 62.212.70.49

🇨🇳 58.220.17.109

🇭🇰 199.45.154.113

🇧🇷 181.214.221.184

🇮🇩 163.7.1.218

🇺🇸 162.216.150.65

🇷🇴 140.233.190.220

🇷🇴 80.94.92.164

🇺🇸 52.188.147.239

🇧🇷 205.210.31.225

🇺🇸 203.161.54.251

🇺🇸 193.19.109.132

🇨🇳 101.26.28.113

🇭🇰 38.76.163.44

🇻🇳 14.225.206.187

🇰🇷 219.248.65.30

🇩🇪 212.80.7.172

🇨🇴 190.109.9.50

🇮🇳 182.95.232.154