JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.172.70.207

103.172.70.207 was found in our database!

This IP was reported 106 times. Confidence of Abuse is 0%: ?

ISP	PT JARINGAN LINTAS ARTHA
Usage Type	Data Center/Web Hosting/Transit
ASN	AS142386
Hostname(s)	ip-207.70.jaringanlintasartha.com
Domain Name	jaringanlintasartha.com
Country	🇮🇩 Indonesia
City	Surakarta, Central Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.172.70.207

Whois 103.172.70.207

IP Abuse Reports for 103.172.70.207:

This IP address has been reported a total of 106 times from 42 distinct sources. 103.172.70.207 was first reported on February 1st 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 filstal.org	2026-04-30 11:53:55 (1 month ago)	Bad web bot: Spoofed/obsolete UA (Opera/8.88.(Windows NT 5.1; mg-MG) Presto/2.9.172 Version/10.00). ... show more Bad web bot: Spoofed/obsolete UA (Opera/8.88.(Windows NT 5.1; mg-MG) Presto/2.9.172 Version/10.00). Mass-scanning WordPress plugin. Coordinated large-scale bot attack. show less	Bad Web Bot Web App Attack
Anonymous	2026-03-20 14:01:03 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-02-27 04:56:43 (3 months ago)	(mod_security) mod_security (id:211030) triggered by 103.172.70.207 (ip-207.70.jaringanlintasartha.c ... show more (mod_security) mod_security (id:211030) triggered by 103.172.70.207 (ip-207.70.jaringanlintasartha.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 26 23:56:39.330780 2026] [security2:error] [pid 27818:tid 27818] [client 103.172.70.207:44416] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at ARGS. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "17"] [id "211030"] [rev "3"] [msg "COMODO WAF: LDAP Injection Attack\|\|thomasanthonyquinn.com\|F\|2"] [data "Matched Data: ('~'\|\|( found within ARGS: 0"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "thomasanthonyquinn.com"] [uri "/index.php"] [unique_id "aaEkByKyAoSO8hyGZ-ZsiQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 el-brujo	2026-01-23 02:35:23 (4 months ago)	01/23/2026-03:35:23.783125 103.172.70.207 Protocol: 6 ET INFO Potentially unsafe SMBv1 protocol in u ... show more 01/23/2026-03:35:23.783125 103.172.70.207 Protocol: 6 ET INFO Potentially unsafe SMBv1 protocol in use show less	Hacking
🇸🇰 GOVCERT	2026-01-22 03:15:25 (4 months ago)	Sweep Scan	Port Scan
🇳🇱 donarev419	2026-01-02 05:01:25 (5 months ago)	Abused smb on 445 2026-01-02T05:01:25Z client "00000054ff534d42720000000018012800000000000000000000 ... show more Abused smb on 445 2026-01-02T05:01:25Z client "00000054ff534d4272000000001801280000000000000000000000000000446d000042c1003100024c414e4d414e312e3000024c4d312e325830303200024e54204c414e4d414e20312e3000024e54204c4d20302e313200" 2026-01-02T05:01:25Z server "00000090fe534d420000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000" show less	Hacking Brute-Force
🇩🇪 Nerdscave Hosting	2025-12-31 02:57:53 (5 months ago)	[SMB Honeypot Report] Timestamp: 2025-12-31 02:57:23 UTC Port: 50853 No credentials captured Attack ... show more [SMB Honeypot Report] Timestamp: 2025-12-31 02:57:23 UTC Port: 50853 No credentials captured Attack Type: Unauthorized SMB connection attempt show less	Port Scan Hacking Brute-Force
🇨🇭 MLCloud	2025-12-27 06:20:00 (5 months ago)	Honeypot hit: SMB traffic on port 445	Hacking
🇩🇪 Grizzlytools	2025-09-12 05:03:10 (9 months ago)	Kingcopy(AI-IDS)RouterOS: Portscanner detected.	Port Scan
🇩🇪 Grizzlytools	2025-09-09 05:03:20 (9 months ago)	Kingcopy(AI-IDS)RouterOS: Portscanner detected.	Port Scan
🇳🇱 nitrix	2025-09-09 00:23:34 (9 months ago)	ZMap scanning detected	Port Scan Hacking
🇹🇷 rtbh.com.tr	2025-09-05 12:08:38 (9 months ago)	list.rtbh.com.tr report: tcp/135	Brute-Force
🇩🇪 HoneyPot-FrPri	2025-09-03 04:16:35 (9 months ago)	1756872994 - 09/03/2025 06:16:34 Host: 103.172.70.207/103.172.70.207 Port: 1088 TCP Blocked ...	Port Scan
🇳🇱 Study Bitcoin 🤗	2025-07-03 07:44:15 (11 months ago)	4 port probes: 2x tcp/445 (smb), 2x tcp/1433 (microsoft-sql-server) [srv62]	Port Scan Hacking SQL Injection
🇳🇱 Study Bitcoin 🤗	2025-07-03 06:30:06 (11 months ago)	2 port probes: 2x tcp/135 (dce endpoint resolution) [srv62]	Port Scan SQL Injection

Showing 1 to 15 of 106 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 35.203.211.45

🇰🇷 221.163.5.228

🇨🇳 218.0.56.30

🇧🇷 205.210.31.220

🇺🇸 205.210.31.107

🇫🇮 185.148.0.38

🇺🇸 174.27.213.193

🇺🇸 162.217.162.55

🇺🇸 162.216.149.221

🇨🇳 125.124.226.217

🇱🇻 62.60.234.140

🇬🇧 44.131.104.245

🇺🇸 24.199.81.79

🇷🇴 2.57.121.112

🇰🇷 222.108.100.117

🇳🇱 195.178.110.30

🇺🇸 165.154.163.182

🇨🇳 115.190.55.44

🇩🇪 89.19.209.155

🇲🇾 47.254.231.12