JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.208.204.131

103.208.204.131 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 30%: ?

30%

ISP	PT. Yetoya Solusi Indonesia
Usage Type	Fixed Line ISP
ASN	AS134651
Domain Name	yetoya.co.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.208.204.131

Whois 103.208.204.131

IP Abuse Reports for 103.208.204.131:

This IP address has been reported a total of 14 times from 9 distinct sources. 103.208.204.131 was first reported on July 24th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-16 23:36:28 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇮🇩 hermawan	2026-06-02 14:57:22 (3 weeks ago)	[Tue Jun 02 21:57:19.134369 2026] [security2:error] [pid 9123:tid 139946048341696] [client 103.208.2 ... show more [Tue Jun 02 21:57:19.134369 2026] [security2:error] [pid 9123:tid 139946048341696] [client 103.208.204.131:62898] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php"] [unique_id "ah7vT3--jn2T2T8qyF9vRwAAAFM"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[9169] [/6EMh8ZmciY] [ah7vT3--jn2T2T8qyF9vRwAAAFM] keep_alive=[0] [2026-06-02 21:57:19.134374] [R:ah7vT3--jn2T2T8qyF9vRwAAAFM] UA:'Mozilla/5.0 (iPhone; CPU iPhone OS 18_4_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) GSA/385.0.802777482 Mobile/15E148 Safari/604.1' Host:'stakli ... show less	Email Spam Hacking
🇨🇦 electronico	2026-05-30 09:09:19 (3 weeks ago)	103.208.204.131 - - [30/May/2026:20:09:15 +1100] "GET /wp-login.php HTTP/1.1" 403 5676 "-" "Mozilla/ ... show more 103.208.204.131 - - [30/May/2026:20:09:15 +1100] "GET /wp-login.php HTTP/1.1" 403 5676 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.5249.168 Safari/537.36" 103.208.204.131 - - [30/May/2026:20:09:17 +1100] "GET /wp-login.php HTTP/1.1" 403 2256 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.5249.62 Safari/537.36" 103.208.204.131 - - [30/May/2026:20:09:18 +1100] "GET /wp-login.php HTTP/1.1" 403 2256 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.62 Safari/537.36" ... show less	Brute-Force Web App Attack
🇬🇧 consul.to	2026-05-29 20:52:41 (3 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 ELYAZ	2026-05-29 17:35:06 (3 weeks ago)	(y4) Failed scan -byebye- from 103.208.204.131 (ID/Indonesia/-): (CF_ENABLE)	Hacking
🇺🇸 MPL	2026-05-09 06:10:42 (1 month ago)	tcp/23 (4 or more attempts)	Port Scan
🇺🇸 MPL	2026-05-07 23:55:01 (1 month ago)	tcp/23 (2 or more attempts)	Port Scan
🇦🇹 urnilxfgbez	2026-05-07 22:45:00 (1 month ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇳🇱 knock	2026-05-07 07:04:08 (1 month ago)	Knock-Knock honeypot brute-force: Telnet (4 total hits)	Brute-Force
Anonymous	2026-05-06 21:05:24 (1 month ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇦🇹 urnilxfgbez	2026-05-04 22:45:00 (1 month ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
Anonymous	2026-05-02 04:31:42 (1 month ago)	Unauthorized connection attempt on Port 2323	Port Scan Hacking Exploited Host
🇳🇱 exxos	2025-07-29 02:57:02 (10 months ago)	HTTP1.x attacks	DDoS Attack
🇳🇱 exxos	2025-07-24 17:07:31 (10 months ago)	HTTP1.x attacks	DDoS Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.110.147.58

🇧🇦 185.65.107.14

🇺🇸 216.218.206.100

🇨🇳 211.145.38.60

🇦🇷 190.221.50.123

🇺🇸 185.198.240.179

🇫🇷 185.182.186.243

🇳🇱 176.65.132.149

🇯🇵 172.253.236.151

🇴🇲 37.40.237.239

🇩🇪 18.184.67.25

🇨🇳 221.234.36.123

🇺🇿 213.230.64.246

🇧🇷 205.210.31.222

🇬🇧 195.96.139.68

🇰🇷 175.118.127.138

🇪🇸 158.158.47.67

🇵🇰 116.58.9.158

🇪🇬 41.234.161.142

🇨🇳 14.103.111.13