JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.173.173.0

103.173.173.0 was found in our database!

This IP was reported 44 times. Confidence of Abuse is 32%: ?

32%

ISP	Bhaluka Broadband Internet Service
Usage Type	Fixed Line ISP
ASN	AS147053
Domain Name	bhalukabroadband.com
Country	🇧🇩 Bangladesh
City	Gazipur, Dhaka Division

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.173.173.0

Whois 103.173.173.0

IP Abuse Reports for 103.173.173.0:

This IP address has been reported a total of 44 times from 27 distinct sources. 103.173.173.0 was first reported on October 24th 2023, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-21 19:43:08 (23 hours ago)	[Mon Jun 22 02:43:07.537761 2026] [security2:error] [pid 1903047:tid 140109106095808] [client 103.17 ... show more [Mon Jun 22 02:43:07.537761 2026] [security2:error] [pid 1903047:tid 140109106095808] [client 103.173.173.0:58804] ModSecurity: Access denied with code 403 (phase 2). Match of "rx (?i)^[a-z0-9\\\\-._]+$" against "TX:referer-hardening-plugin_domain_name" required. [file "/etc/modsecurity/coreruleset-4.26.0/plugins/referer-hardening-plugin/plugins/referer-hardening-before.conf"] [line "221"] [id "9524170"] [msg "Invalid domain name within Referer header"] [data " google.com, https Matched Data ARGS charset: - Matched Data TX.1: google.com, https found within Content-Type multipart form Matched Data: https://google.com, https://staklim-malang.info/index.php/profil/meteorologi/list-of-all-tags/prakiraan-potensi-banjir-di-malang-tahun-2017 found within TX:referer-hardening-plugin_domain_name: google.com, https request_line = GET /images/Klimatologi/Analisis/02-Analisis_Dasarian/Analisis_Monitoring_Hari_Tanpa_Hujan_Berturut-Turut_Dasarian/Analisis_Monitoring_Hari_T..."] [severity "CRITICAL" ... show less	Email Spam Hacking
🇩🇪 Vegascosmetics	2026-06-18 15:28:20 (4 days ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
Anonymous	2026-06-09 08:31:35 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-06-02 17:30:35 (2 weeks ago)	Attack Signature Blocked: /wishlist/index/add/product/4349/form_key/Z2sR8mTd0412ihOg/ \| UA: Mozilla/ ... show more Attack Signature Blocked: /wishlist/index/add/product/4349/form_key/Z2sR8mTd0412ihOg/ \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 \| (Magento Site) (Botnet activity attributed to: ... show less	Web App Attack Bad Web Bot
🇫🇷 Sklurk	2026-05-21 03:53:49 (1 month ago)	Web App Attack	Web App Attack
🇫🇷 Sklurk	2026-05-16 04:03:58 (1 month ago)	Web App Attack	Web App Attack
🇮🇹 Progetto1	2026-04-25 03:45:02 (1 month ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇩🇪 filstal.org	2026-04-21 16:11:03 (2 months ago)	Brute-force/Enumeration: Multiple login attempts for non-existent mail accounts (Honeytrap).	Email Spam Brute-Force
🇳🇱 melroy89	2026-04-04 15:36:17 (2 months ago)	103.173.173.0 - - [04/Apr/2026:17:35:46 +0200] "GET /u/@[email protected] HTTP/1.1" 302 282 ... show more 103.173.173.0 - - [04/Apr/2026:17:35:46 +0200] "GET /u/@[email protected] HTTP/1.1" 302 282 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" "kbin.melroy.org" 0.018 ... show less	DDoS Attack
🇫🇷 Sklurk	2026-04-04 04:24:29 (2 months ago)	Web App Attack	Web App Attack
🇺🇸 stechusa	2026-03-31 09:49:49 (2 months ago)	ELEVATED_THREAT \| country=BD \| ASN=Bhaluka Broadband Internet Service \| 37 IPs targeting /brand.html ... show more ELEVATED_THREAT \| country=BD \| ASN=Bhaluka Broadband Internet Service \| 37 IPs targeting /brand.html \| Facet request during elevated threat (facet_ratio=0.88, unique_ips=224) \| HTTP/1.1 over TLS (elevated=True) show less	Bad Web Bot DDoS Attack
🇺🇸 quilla	2026-03-30 20:13:00 (2 months ago)	Botnet infected device observed in honeypot (Vector: TCP HANDSHAKE ATTACK)	DDoS Attack
Anonymous	2026-03-28 20:52:36 (2 months ago)	Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ... show more Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in thread-post.asp show less	Exploited Host Bad Web Bot
🇩🇪 HandyTreff.de	2026-03-22 14:10:46 (3 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -42.008 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -42.008 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 show less	Web App Attack Bad Web Bot
🇫🇷 Sklurk	2026-03-20 02:08:24 (3 months ago)	Web App Attack	Web App Attack

Showing 1 to 15 of 44 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇿🇦 197.184.83.155

🇺🇸 65.49.1.32

🇱🇹 45.227.254.170

🇺🇸 45.33.96.214

🇮🇳 122.185.187.2

🇺🇸 104.238.220.228

🇩🇪 104.28.164.239

🇳🇱 77.83.240.70

🇺🇸 67.217.245.142

🇨🇳 58.242.60.57

🇬🇧 37.10.113.222

🇮🇩 2620:171:74:f002:9999::243

🇺🇸 2607:f8b0:4023:1000::129

🇨🇳 180.167.207.234

🇧🇪 146.148.24.166

🇳🇱 91.92.40.202

🇮🇹 52.84.143.67

🇨🇦 15.156.110.125

🇧🇬 5.188.206.30

🇮🇹 2.57.170.219