JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.177.21.2

103.177.21.2 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 0%: ?

ISP	PT Diva Telekomunikasi Indonesia
Usage Type	Fixed Line ISP
ASN	AS147139
Domain Name	dive.net.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.177.21.2

Whois 103.177.21.2

IP Abuse Reports for 103.177.21.2:

This IP address has been reported a total of 22 times from 11 distinct sources. 103.177.21.2 was first reported on October 3rd 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 Modules	2026-01-01 01:13:48 (5 months ago)	Open proxy http://103.177.21.2:8181 (RT:14241ms,Loc:Indonesia,ASN:AS147139)	Open Proxy
🇸🇬 Fn4ticHz	2025-12-27 04:01:44 (5 months ago)	repeated ddos targeted zeroguard.id -- ZeroGuard	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-13 21:44:40 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 13 16:44:33.987152 2025] [security2:error] [pid 2872:tid 2872] [client 103.177.21.2:37960] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "noriega.us"] [uri "/.env"] [unique_id "aT3eQT2KkL39IaPFZmvofgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-13 12:19:02 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 13 07:18:53.009318 2025] [security2:error] [pid 17305:tid 17305] [client 103.177.21.2:56688] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "royalchess.net"] [uri "/.env"] [unique_id "aT1ZrZyaewDgyotniizh1gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-12 20:00:46 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 12 15:00:28.085943 2025] [security2:error] [pid 25468:tid 25468] [client 103.177.21.2:43566] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "domainexecs.com"] [uri "/.env"] [unique_id "aTx0XEsHwPUneC2hZoL13gAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-12 02:07:21 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 11 21:07:11.594806 2025] [security2:error] [pid 9156:tid 9205] [client 103.177.21.2:59370] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aisapy.com"] [uri "/.env"] [unique_id "aTt4z2W8YhoJ93Ba9KOpCAAAAVE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-11 10:39:19 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 11 05:39:01.912479 2025] [security2:error] [pid 18692:tid 18692] [client 103.177.21.2:56644] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "koswerks.net"] [uri "/.env"] [unique_id "aTqfRTJSvXdEoYQAp7fsrAAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 23:26:35 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 18:25:15.998200 2025] [security2:error] [pid 19586:tid 19586] [client 103.177.21.2:44468] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "notearsweb.com"] [uri "/.env"] [unique_id "aTiv2_n2_if8myfySBwP7QAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 19:14:24 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 14:13:35.750489 2025] [security2:error] [pid 24216:tid 24216] [client 103.177.21.2:51694] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nealschonbiography.com"] [uri "/.env"] [unique_id "aTh034EnX8jFhVb-cfpW4QAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-09 09:01:36 (5 months ago)	Blocking for trying to access an exploit file: /.env.production	Hacking
🇺🇸 TPI-Abuse	2025-12-09 08:26:34 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 03:25:42.799066 2025] [security2:error] [pid 22740:tid 22740] [client 103.177.21.2:52100] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "biographicalpainting.com"] [uri "/.env"] [unique_id "aTfdBqDoGYFpS77vmTixTgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 06:12:32 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 01:11:53.612088 2025] [security2:error] [pid 14671:tid 14671] [client 103.177.21.2:35500] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wendywonjungkim.com"] [uri "/.env"] [unique_id "aTe9qQq8aPJVhZ3gxGF8pQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 02:35:19 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 103.177.21.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 21:35:05.992072 2025] [security2:error] [pid 17723:tid 17723] [client 103.177.21.2:35344] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lognlumber.com"] [uri "/.env"] [unique_id "aTeK2bS9bLfcEts4t6o0jwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇹 PTnet	2025-12-07 06:20:16 (6 months ago)	DDoS Attack (jail:haproxy-https-flood)	DDoS Attack Exploited Host
🇵🇹 PTnet	2025-12-06 11:57:45 (6 months ago)	DDoS Attack (jail:haproxy-https-flood)	DDoS Attack Exploited Host

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇱 185.124.185.28

🇫🇮 178.20.210.152

🇳🇱 64.89.162.107

🇰🇷 59.28.242.34

🇳🇱 45.148.10.152

🇫🇮 34.88.4.106

🇨🇭 31.7.63.6

🇨🇳 14.18.122.240

🇮🇷 2.180.216.240

🇨🇳 120.48.102.177

🇺🇸 98.148.230.27

🇷🇴 80.94.92.186

🇫🇷 62.34.75.57

🇰🇷 58.122.253.47

🇺🇸 40.124.127.239

🇻🇳 27.79.13.216

🇩🇪 213.209.159.158

🇿🇦 196.192.181.202

🇬🇧 193.163.125.179

🇨🇱 191.118.2.218