JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.190.46.130

103.190.46.130 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 47%: ?

47%

ISP	PT Indonesia Comnets Plus
Usage Type	Fixed Line ISP
ASN	AS9341
Domain Name	iconpln.net.id
Country	🇮🇩 Indonesia
City	Pekanbaru, Riau

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.190.46.130

Whois 103.190.46.130

IP Abuse Reports for 103.190.46.130:

This IP address has been reported a total of 13 times from 11 distinct sources. 103.190.46.130 was first reported on March 25th 2024, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-17 08:53:06 (6 hours ago)	(mod_security) mod_security (id:225170) triggered by 103.190.46.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 103.190.46.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 04:53:01.619823 2026] [security2:error] [pid 29969:tid 29969] [client 103.190.46.130:26911] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|automatebi.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "automatebi.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajJgbYDYa28l9R6PaJB0LAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 wlt-blocker	2026-06-17 02:41:23 (12 hours ago)	Unauthorized access to webpage admin	Web App Attack
🇳🇱 Roderic	2026-06-16 08:39:46 (1 day ago)	(apache_scanners-2) Failed apache-scanners trigger with match [redacted])	Port Scan
🇺🇸 TPI-Abuse	2026-06-14 11:04:48 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 103.190.46.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 103.190.46.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 07:04:41.688675 2026] [security2:error] [pid 10656:tid 10666] [client 103.190.46.130:52246] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|peterhansenranch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "peterhansenranch.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai6KyV-Wi9kc8FoRFCRSGwAAAEE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Tripwire	2026-06-14 10:59:50 (3 days ago)	Probing for Wordpress - /xmlrpc.php	Brute-Force Web App Attack
🇳🇱 BlueWire Hosting	2026-06-14 10:35:06 (3 days ago)	Probing websites for vulnerabilities	Web App Attack
🇩🇪 joharikop	2026-06-14 10:03:15 (3 days ago)	Nginx: WordPress/CMS probe (wp-admin, wp-login, xmlrpc). Automated ban via fail2ban nginx-cms-probes ... show more Nginx: WordPress/CMS probe (wp-admin, wp-login, xmlrpc). Automated ban via fail2ban nginx-cms-probes jail. show less	Web App Attack
🇨🇭 4server	2026-06-14 09:12:54 (3 days ago)	[SunJun1411:12:50.2975372026][security2:error][pid1445365:tid1445800][client103.190.46.130:0]ModSecu ... show more [SunJun1411:12:50.2975372026][security2:error][pid1445365:tid1445800][client103.190.46.130:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"368\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"mm-ingegneria.ch\"][uri\"/xmlrpc.php\"][unique_id\"ai5wkuOa0IUejHK0QEP8zQAAAEc\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 04:39:48 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 103.190.46.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 103.190.46.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 00:39:40.344183 2026] [security2:error] [pid 28008:tid 28008] [client 103.190.46.130:59506] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|honigcpa.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "honigcpa.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aizfDL5Bfe9YTKUn7CyHTwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2025-12-16 22:20:41 (6 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇨🇭 backslash	2025-12-11 05:00:26 (6 months ago)	block ruleset DA4A07AEE48B136A3922182BE8AA8BFBC1840803	Bad Web Bot
🇮🇩 hermawan	2025-09-08 20:10:08 (9 months ago)	[Tue Sep 09 03:09:12.943037 2025] [security2:error] [pid 785697:tid 139841539827392] [client 103.190 ... show more [Tue Sep 09 03:09:12.943037 2025] [security2:error] [pid 785697:tid 139841539827392] [client 103.190.46.130:7201] ModSecurity: Access denied with code 403 (phase 1). Match of "pm matomo.staklim-malang.info " against "SERVER_NAME" required. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "164"] [id "440235"] [msg "BAD REQUEST Bro"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: %3a found within SERVER_NAME: staklim-malang.info request_line = GET /index.php/profil/arsip-artikel?catid=473&id=572%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-9-15-juni-2015&start=120 HTTP/2.0 Request URI RAW = /index.php/profil/arsip-artikel?catid=473&id=572%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-9-15-juni-2015&start=120 Request B..."] [hostname "staklim-malang.info"] [uri "/index.php/profil/arsip-artikel"] [unique_id "aL836K82tmlmL ... show less	Hacking Web App Attack
🇩🇪 IP Analyzer	2024-03-25 05:30:21 (2 years ago)	Unauthorized connection attempt from IP address 103.190.46.130 on Port 445(SMB)	Port Scan

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 209.85.218.50

🇪🇨 190.96.97.180

🇵🇰 160.187.180.146

🇨🇳 115.190.213.206

🇧🇬 79.124.56.138

🇱🇹 62.60.130.241

🇺🇸 45.131.195.69

🇺🇸 34.231.156.59

🇺🇸 34.193.119.44

🇺🇸 205.210.31.40

🇨🇳 182.61.148.217

🇨🇳 182.61.35.204

🇺🇸 147.185.132.37

🇨🇳 117.40.249.40

🇺🇸 108.62.57.167

🇷🇴 80.94.92.186

🇳🇱 45.148.10.240

🇿🇦 197.86.206.243

🇨🇳 182.43.235.75

🇷🇴 80.94.92.187