JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.189.207.229

103.189.207.229 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 22%: ?

22%

ISP	PT Indonesia Comnets Plus
Usage Type	Fixed Line ISP
ASN	AS9341
Domain Name	iconpln.net.id
Country	🇮🇩 Indonesia
City	Bengkulu, Bengkulu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.189.207.229

Whois 103.189.207.229

IP Abuse Reports for 103.189.207.229:

This IP address has been reported a total of 16 times from 9 distinct sources. 103.189.207.229 was first reported on October 13th 2023, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-27 14:10:57 (2 days ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
🇩🇪 pltcldvlpr	2026-06-11 09:17:57 (2 weeks ago)	Bogus Useragent: 103.189.207.229 - - [11/Jun/2026:11:17:56 +0200] "GET /protocol?id=be_19_16&offset= ... show more Bogus Useragent: 103.189.207.229 - - [11/Jun/2026:11:17:56 +0200] "GET /protocol?id=be_19_16&offset=1450&seq=1464 HTTP/1.1" 444 0 "-" "Opera/8.17.(X11; Linux i686; yue-HK) Presto/2.9.184 Version/10.00" asn=9341 org="PT INDONESIA COMNETS PLUS" country=ID ... show less	Bad Web Bot
🇺🇸 ipblock.com	2026-06-02 21:13:00 (3 weeks ago)	IPBlock protected site ID [4055-d][s=01]. Rogue crawler, does not respect robots.txt	Bad Web Bot
🇫🇷 sthoyer.de	2026-05-30 06:51:39 (4 weeks ago)	May 30 08:51:38 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more May 30 08:51:38 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=103.189.207.229 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=19501 DF PROTO=TCP SPT=41053 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 TPI-Abuse	2026-03-10 10:26:48 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 103.189.207.229 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 103.189.207.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 10 06:26:43.242239 2026] [security2:error] [pid 16050:tid 16050] [client 103.189.207.229:50244] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|persnicketyinc.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "persnicketyinc.com"] [uri "/wedding-show-at-linwood-estate/lesliegilbertphotography.com"] [unique_id "aa_x4yM2-brdeWKePgQ7pwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-09 11:11:55 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-01-15 13:35:11 (5 months ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
Anonymous	2025-11-12 02:27:23 (7 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-08-25 00:09:29 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-02-10 20:35:59 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-11-25 07:22:46 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-09-17 15:11:38 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 MPL	2024-06-06 13:32:42 (2 years ago)	tcp/80	Port Scan
Anonymous	2024-06-06 10:46:13 (2 years ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2024-05-06 01:26:12 (2 years ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇶 185.75.226.159

🇳🇱 160.119.71.136

🇮🇳 52.140.76.154

🇺🇸 18.97.26.110

🇺🇸 204.152.193.100

🇲🇽 187.188.111.9

🇩🇪 69.5.169.61

🇲🇽 46.250.160.109

🇺🇸 18.97.19.224

🇺🇸 18.97.19.187

🇷🇺 5.3.154.1

🇳🇱 178.16.54.36

🇺🇸 159.26.99.157

🇨🇳 124.31.107.250

🇺🇸 63.135.169.175

🇺🇸 45.194.67.146

🇺🇸 18.97.19.180

🇺🇸 18.97.19.179

🇩🇪 213.209.159.241

🇸🇬 168.138.188.55