JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.170.97.134

103.170.97.134 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 0%: ?

ISP	PT Global Data Akses Persada
Usage Type	Commercial
ASN	AS142368
Hostname(s)	134.97.170.addr.globaldataakses.com
Domain Name	globaldataakses.com
Country	🇮🇩 Indonesia
City	Jombang, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.170.97.134

Whois 103.170.97.134

IP Abuse Reports for 103.170.97.134:

This IP address has been reported a total of 17 times from 10 distinct sources. 103.170.97.134 was first reported on May 19th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2025-01-20 15:01:27 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 nyuuzyou	2024-12-09 18:22:15 (1 year ago)	Intensive scraping: /web?s=Prismotube%20%22Post%20a%20comment%22%20%22Guest%20Name%22&country=ss-ss& ... show more Intensive scraping: /web?s=Prismotube%20%22Post%20a%20comment%22%20%22Guest%20Name%22&country=ss-ss&scraper=brave. User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1264.71. show less	Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2024-12-09 17:17:29 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇷🇴 abuse_IP_reporter	2024-12-09 13:00:37 (1 year ago)	ddosattackagainspublicwebpagewithrandomstrings	DDoS Attack
🇷🇴 abuse_IP_reporter	2024-12-09 13:00:37 (1 year ago)	ddosattackagainspublicwebpagewithrandomstrings	DDoS Attack
🇷🇴 abuse_IP_reporter	2024-12-09 13:00:37 (1 year ago)	ddosattackagainspublicwebpagewithrandomstrings	DDoS Attack
🇩🇪 Packets-Decreaser.NET	2024-12-05 08:12:24 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇮🇩 hermawan	2024-11-08 09:59:25 (1 year ago)	[Fri Nov 08 15:10:47.079460 2024] [security2:error] [pid 456290:tid 125251453191872] [client 103.170 ... show more [Fri Nov 08 15:10:47.079460 2024] [security2:error] [pid 456290:tid 125251453191872] [client 103.170.97.134:45202] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "myactivity.google.com" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.7.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "257"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: myactivity.google.com found within REQUEST_HEADERS:Referer: https://myactivity.google.com/ request_line = GET /images/Klimatologi/Artikel/Materi_Perubahan_iklim.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Artikel/Materi_Perubahan_iklim.jpg"] [unique_id "Zy3HhyDEbmpQWvdJ9XdsVQAEPQE"], referer https://myactivity.google.com/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[456292] [miXMSbp4gBo] [Zy3HhyDEbmpQWvdJ9XdsVQAEPQE] keep_alive=[1] [2024-11-08 15:10:47.079467] [R:Zy3HhyDEbmpQWvdJ9XdsVQAEPQE] UA:'Mozilla/5.0 (Linux; Android 10; K) Apple ... show less	Hacking Web App Attack
🇮🇩 hermawan	2024-11-05 12:49:32 (1 year ago)	[Mon Nov 04 18:01:11.325533 2024] [security2:error] [pid 1387882:tid 124491353032384] [client 103.17 ... show more [Mon Nov 04 18:01:11.325533 2024] [security2:error] [pid 1387882:tid 124491353032384] [client 103.170.97.134:33430] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "myactivity.google.com" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.7.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "257"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: myactivity.google.com found within REQUEST_HEADERS:Referer: https://myactivity.google.com/ request_line = GET /images/vi_webp/1QhD7oezpOo/maxresdefault.webp HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/vi_webp/1QhD7oezpOo/maxresdefault.webp"] [unique_id "Zyipd1eoIoXWVDUyGuKOQgAGBlU"], referer https://myactivity.google.com/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1387968] [NznYM0xi5F4] [Zyipd1eoIoXWVDUyGuKOQgAGBlU] keep_alive=[1] [2024-11-04 18:01:11.325538] [R:Zyipd1eoIoXWVDUyGuKOQgAGBlU] UA:'Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 ... show less	Hacking Web App Attack
Anonymous	2024-10-10 05:30:01 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇲🇹 Malta	2024-10-03 16:33:48 (1 year ago)	103.170.97.134 - - [03/Oct/2024:18:33:47 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux ... show more 103.170.97.134 - - [03/Oct/2024:18:33:47 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.6613.138 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack
Anonymous	2024-10-02 11:19:47 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇩🇪 xserverx.ru	2024-09-08 14:27:06 (1 year ago)	[UFW SCAN] SRC=103.170.97.134 LEN=244 TOS=0x00 PREC=0x00 TTL=44 PROTO=TCP SPT=60393 DPT=80 WINDOW=22 ... show more [UFW SCAN] SRC=103.170.97.134 LEN=244 TOS=0x00 PREC=0x00 TTL=44 PROTO=TCP SPT=60393 DPT=80 WINDOW=22679 RES=0x00 ACK PSH URGP=0 [UFW SCAN] SRC=103.170.97.134 LEN=244 TOS=0x00 PREC=0x00 TTL=44 PROTO=TCP SPT=44637 DPT=80 WINDOW=22679 RES=0x00 ACK PSH URGP=0 [UFW SCAN] SRC=103.170.97.134 LEN=244 TOS=0x00 PREC=0x00 TTL=44 PROTO=TCP SPT=33929 DPT=80 WINDOW=22679 RES=0x00 ACK PSH URGP=0 [UFW SCAN] SRC=103.170.97.134 LEN=244 TOS=0x00 PREC=0x00 T ... show less	Port Scan
🇲🇹 Malta	2024-09-03 19:03:58 (1 year ago)	103.170.97.134 - - [03/Sep/2024:21:03:58 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; ... show more 103.170.97.134 - - [03/Sep/2024:21:03:58 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack
🇩🇪 Ba-Yu	2024-08-28 23:51:33 (1 year ago)	WP-xmlrpc exploit	Web Spam Blog Spam Hacking Exploited Host Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇷 185.113.9.199

🇰🇷 168.107.62.229

🇩🇪 150.241.77.28

🇧🇷 150.230.72.141

🇩🇪 64.226.86.7

🇬🇧 45.82.76.124

🇰🇷 218.150.194.125

🇪🇸 217.160.226.51

🇰🇷 211.223.107.86

🇧🇪 198.235.24.244

🇹🇼 198.235.24.114

🇹🇼 198.235.24.48

🇩🇪 185.220.100.248

🇹🇭 183.88.208.80

🇺🇸 162.216.149.65

🇳🇬 152.32.143.6

🇭🇰 103.43.191.43

🇱🇹 45.227.254.170

🇳🇱 45.148.10.147

🇩🇪 35.156.54.1