JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.61.5.106

103.61.5.106 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 27%: ?

27%

ISP	PT Dunia Tak Terbatas
Usage Type	Data Center/Web Hosting/Transit
ASN	AS150505
Domain Name	dunianet.id
Country	🇮🇩 Indonesia
City	Moro, Riau Islands

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.61.5.106

Whois 103.61.5.106

IP Abuse Reports for 103.61.5.106:

This IP address has been reported a total of 12 times from 12 distinct sources. 103.61.5.106 was first reported on January 7th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-18 23:50:53 (1 hour ago)	[Fri Jun 19 06:50:48.891782 2026] [security2:error] [pid 1086102:tid 140710773733056] [client 103.61 ... show more [Fri Jun 19 06:50:48.891782 2026] [security2:error] [pid 1086102:tid 140710773733056] [client 103.61.5.106:49258] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.baidu.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.baidu.go.id found within REQUEST_HEADERS:Referer: http://www.baidu.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-bulanan/infografis-bulanan-iklim-ekstrim HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-bulanan/infografis-bulanan-iklim-ekstrim"] [unique_id "ajSEWNA0j81Xk-YXK6kXXgAAyws"], referer http://www.baidu.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1086114] [N1Bx2M/0JO4] [ajSEWNA0j81Xk-YXK6kXXgAAyws] keep_alive=[1] [2026-06-19 06:50:48.891787] [R:ajSEWNA0j81Xk-YX ... show less	Email Spam Hacking
🇫🇷 Sklurk	2026-05-29 03:43:41 (2 weeks ago)	Web App Attack	Web App Attack
🇷🇴 Fn4ticHz	2026-05-29 02:46:02 (2 weeks ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇺🇸 nodepile	2026-05-25 21:41:02 (3 weeks ago)	Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/static/version1775170088/frontend/ ... show more Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/static/version1775170088/frontend/Smartwave/porto/en_US/js-translation.json ua='Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.4913.1456 Safari/537.36') show less	Open Proxy VPN IP
🇩🇪 HandyTreff.de	2026-05-24 19:22:08 (3 weeks ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -57.144 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -57.144 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Sa show less	Web App Attack Bad Web Bot
🇦🇺 MAGIC	2026-03-26 01:09:26 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2026-02-27 00:19:13 (3 months ago)	Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ... show more Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in email-link.asp show less	Exploited Host Bad Web Bot
🇵🇱 IROK	2026-01-29 18:36:08 (4 months ago)	Firewall Blocked - Unauthorized Port Scanning ...	Port Scan
🇬🇧 catalink.com	2026-01-10 07:11:39 (5 months ago)	Brute forcing Wordpress login	Exploited Host Web App Attack
🇩🇪 FeG Deutschland	2026-01-08 04:57:59 (5 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇳🇱 EGP Abuse Dept	2026-01-08 02:27:02 (5 months ago)	Unauthorized connection to Telnet port 23	Port Scan Hacking
🇺🇸 www.winos.me	2026-01-07 02:03:38 (5 months ago)	port scan	Port Scan

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2001:470:1:c84::10c

🇵🇪 190.119.139.178

🇺🇸 152.233.5.135

🇰🇷 112.175.29.94

🇺🇸 91.230.168.209

🇳🇱 91.92.40.237

🇺🇸 62.132.18.53

🇨🇳 61.149.15.47

🇨🇳 180.115.224.87

🇫🇮 172.253.83.215

🇷🇴 141.98.83.48

🇨🇳 115.190.51.220

🇳🇱 185.223.235.23

🇷🇺 185.22.154.163

🇮🇳 182.95.181.22

🇺🇸 172.253.251.48

🇫🇮 147.185.133.194

🇨🇳 123.232.128.63

🇨🇳 111.26.63.89

🇬🇧 101.36.97.80