JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.191.196.34

103.191.196.34 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 2%: ?

ISP	PT Pangkalan Lintas Data
Usage Type	Fixed Line ISP
ASN	AS149934
Hostname(s)	host-196-34.palindo.id
Domain Name	palindonet.id
Country	🇮🇩 Indonesia
City	Majalengka, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.191.196.34

Whois 103.191.196.34

IP Abuse Reports for 103.191.196.34:

This IP address has been reported a total of 27 times from 17 distinct sources. 103.191.196.34 was first reported on September 10th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-27 03:38:25 (2 weeks ago)	Attack Signature Blocked: /wishlist/index/add/product/223/form_key/jKGEGJ4UrK9ZgtHF/ \| UA: Opera/9.8 ... show more Attack Signature Blocked: /wishlist/index/add/product/223/form_key/jKGEGJ4UrK9ZgtHF/ \| UA: Opera/9.86.(X11; Linux i686; mhr-RU) Presto/2.9.164 Version/12.00 \| (Magento Site) (Botnet activity attributed to: Angara Technologies Group / mikhail-smirnov-798... show less	Web App Attack Bad Web Bot
🇮🇩 hermawan	2025-08-01 10:11:33 (10 months ago)	[Fri Aug 01 17:04:12.055989 2025] [security2:error] [pid 12058:tid 139677050836672] [client 103.191. ... show more [Fri Aug 01 17:04:12.055989 2025] [security2:error] [pid 12058:tid 139677050836672] [client 103.191.196.34:43996] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "myactivity.google.com" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "467"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: myactivity.google.com found within REQUEST_HEADERS:Referer: https://myactivity.google.com/ request_line = GET /images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Curah_Hujan_Bulanan/Prakiraan_Curah_Hujan_Bulanan_Provinsi_Jawa_Timur/2025/03_Maret_2025/03_Prediksi_Curah_Hujan_Bulan_JULI_2025_di_Provinsi_Jawa_Timur-Update_dari_Analisis_Bulan_Maret_2025.webp HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Curah_Hujan_Bulanan/Prakiraan_Curah_Hujan_Bulanan_Provinsi_Jawa_Timur/2025/03_Maret_2025/03_Prediksi_Curah_H ... show less	Hacking Web App Attack
🇮🇩 hermawan	2025-06-22 12:21:26 (11 months ago)	[Sun Jun 22 19:21:25.694026 2025] [security2:error] [pid 106517:tid 139799808497344] [client 103.191 ... show more [Sun Jun 22 19:21:25.694026 2025] [security2:error] [pid 106517:tid 139799808497344] [client 103.191.196.34:53780] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "myactivity.google.com" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "455"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: myactivity.google.com found within REQUEST_HEADERS:Referer: https://myactivity.google.com/ request_line = GET /images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Curah_Hujan_Bulanan/Prakiraan_Curah_Hujan_Bulanan_Provinsi_Jawa_Timur/2025/03_Maret_2025/03_Prediksi_Curah_Hujan_Bulan_JULI_2025_di_Provinsi_Jawa_Timur-Update_dari_Analisis_Bulan_Maret_2025.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Curah_Hujan_Bulanan/Prakiraan_Curah_Hujan_Bulanan_Provinsi_Jawa_Timur/2025/03_Maret_2025/03_Prediksi_Curah_H ... show less	Hacking Web App Attack
🇦🇺 MAGIC	2025-06-17 15:01:23 (11 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇬🇧 Silly Development	2025-06-07 20:46:05 (1 year ago)	Malicious activity detected from 149934 IDNIC-PALINDONET-AS-ID PT Pangkalan Lintas Data towards host ... show more Malicious activity detected from 149934 IDNIC-PALINDONET-AS-ID PT Pangkalan Lintas Data towards host sillydev.co.uk (GET HTTP/2) @ 2025-06-07T20:46:05Z (7 occurrences) show less	DDoS Attack Exploited Host
🇺🇸 COMPLEX	2025-06-07 04:49:32 (1 year ago)	Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 149934 (IDNIC-PALINDONET-AS-ID P ... show more Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 149934 (IDNIC-PALINDONET-AS-ID PT Pangkalan Lintas Data) Protocol: HTTP/2 (GET method) Endpoint: /auth/login show less	DDoS Attack Bad Web Bot
🇸🇪 cheatmaster.store	2025-06-04 13:46:38 (1 year ago)	Open proxy and SSH brute force activity detected from VPS logs	Open Proxy Brute-Force
🇺🇸 uira.live	2025-05-17 04:11:21 (1 year ago)	Malicious activity detected from 149934 IDNIC-PALINDONET-AS-ID PT Pangkalan Lintas Data towards host ... show more Malicious activity detected from 149934 IDNIC-PALINDONET-AS-ID PT Pangkalan Lintas Data towards host uira.live (GET HTTP/2) @ 2025-05-17T04:11:21Z (10 occurrences) show less	DDoS Attack
🇪🇸 el-brujo	2025-05-16 11:00:00 (1 year ago)	DDoS Attack Layer 7	DDoS Attack
🇪🇸 el-brujo	2025-05-16 11:00:00 (1 year ago)	DDoS Attack Layer 7	DDoS Attack
🇪🇸 el-brujo	2025-05-16 09:59:38 (1 year ago)	Cloudflare WAF: Request Path: / Request Query: ?=&=WXXHgriobSRJzf9h&=6SjA0D8vbCYUw&cb=1747389249389& ... show more Cloudflare WAF: Request Path: / Request Query: ?=&=WXXHgriobSRJzf9h&=6SjA0D8vbCYUw&cb=1747389249389&session= Host: elhacker.net. userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/124.0 Action: block Source: ratelimit ASN Description: IDNIC-PALINDONET-AS-ID PT Pangkalan Lintas Data Country: ID Method: GET Timestamp: 2025-05-16T09:59:38Z ruleId: c0c2d5c2a7024f7fbdba4d0f7a002ea8. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇲🇾 Rizzy	2025-04-30 21:42:07 (1 year ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-04-29 21:29:15 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇪🇸 el-brujo	2025-04-26 05:53:16 (1 year ago)	Cloudflare WAF: Request Path: / Request Query: Host: www.elhacker.net userAgent: Mozilla/5.0 (Windo ... show more Cloudflare WAF: Request Path: / Request Query: Host: www.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/605.1.15 (KHTML, like Gecko) Chrome/129.0.6668.59 Safari/604.1 Action: block Source: l7ddos ASN Description: IDNIC-PALINDONET-AS-ID PT Pangkalan Lintas Data Country: ID Method: GET Timestamp: 2025-04-26T05:53:16Z ruleId: bd86ad15a1d24741bd9edcc93c843b37. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 COMPLEX	2025-04-13 21:01:14 (1 year ago)	Triggered Cloudflare WAF (firewallCustom) from ID. Action taken: MANAGED_CHALLENGE ASN: 149934 (IDNI ... show more Triggered Cloudflare WAF (firewallCustom) from ID. Action taken: MANAGED_CHALLENGE ASN: 149934 (IDNIC-PALINDONET-AS-ID PT Pangkalan Lintas Data) Protocol: HTTP/2 (GET method) Timestamp: 2025-04-13T19:50:47Z show less	Bad Web Bot

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 202.47.62.21

🇨🇳 223.91.40.211

🇺🇸 147.185.132.111

🇨🇳 58.49.26.202

🇳🇱 45.156.87.204

🇺🇸 45.79.207.71

🇩🇪 43.228.157.9

🇩🇿 41.101.132.201

🇳🇱 195.178.110.30

🇬🇧 193.163.125.85

🇺🇸 170.4.46.147

🇷🇴 80.94.92.164

🇨🇳 49.74.42.159

🇳🇱 45.148.10.147

🇬🇧 2a06:4880:c000::fb

🇺🇿 188.113.211.201

🇱🇹 77.90.185.80

🇺🇸 54.242.174.160

🇮🇷 5.219.117.18

🇲🇽 187.188.220.207