JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.67.85.14

103.67.85.14 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 10%: ?

10%

ISP	PT Tujuh Fondasi Teknologi
Usage Type	Fixed Line ISP
ASN	AS152004
Domain Name	tujuhfondasiteknologi.co.id
Country	🇮🇩 Indonesia
City	Banyuwangi, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.67.85.14

Whois 103.67.85.14

IP Abuse Reports for 103.67.85.14:

This IP address has been reported a total of 31 times from 22 distinct sources. 103.67.85.14 was first reported on June 15th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-08 05:44:05 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 pltcldvlpr	2026-06-07 08:00:43 (3 weeks ago)	Bogus Useragent: 103.67.85.14 - - [07/Jun/2026:10:00:42 +0200] "GET /protocol?id=be_14_18&offset=115 ... show more Bogus Useragent: 103.67.85.14 - - [07/Jun/2026:10:00:42 +0200] "GET /protocol?id=be_14_18&offset=1150&seq=1191 HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/17.0.855.0 Safari/532.0" asn=152004 org="PT Tujuh Fondasi Teknologi" country=ID ... show less	Bad Web Bot
🇨🇦 polycoda	2026-03-23 11:02:19 (3 months ago)	🥶 Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27	DDoS Attack
Anonymous	2025-12-10 16:49:30 (6 months ago)	botnet	DDoS Attack
🇮🇩 hermawan	2025-12-10 15:09:34 (6 months ago)	[Wed Dec 10 22:09:32.762291 2025] [security2:error] [pid 184744:tid 140034268108480] [client 103.67. ... show more [Wed Dec 10 22:09:32.762291 2025] [security2:error] [pid 184744:tid 140034268108480] [client 103.67.85.14:44586] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "HttpClient" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "253"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: HttpClient found within REQUEST_HEADERS:User-Agent: AndroidHttpClient (Linux; U; Android 13; in_ID; CPH2387; Build/TP1A.220905.001; Cronet/139.0.7205.3) request_line = GET /images/Klimatologi/Analisis/03-Analisis_Bulanan/Analisis_Hari_Tanpa_Hujan_Berturut-Turut_Maksimum_3_Bulanan_Update_1_Bulan_Sekali/Analisis_Hari_Tanpa_Hujan_Berturut-Turut_Maksimum_3_Bulanan_Provinsi_Jawa_Timur_Update_1_Bulan_Sekali/2023/12/Analisis_Bulanan_Hari_Tanpa_Hujan_Berturut-Turut_Maksimum_Bulan_Oktober-November-D..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Analisis/03-Ana ... show less	Hacking Web App Attack
🇨🇭 backslash	2025-12-08 07:20:18 (6 months ago)	block ruleset DA4A07AEE48B136A3922182BE8AA8BFBC1840803	Bad Web Bot
🇮🇩 hermawan	2025-11-27 17:42:07 (7 months ago)	[Thu Nov 27 23:31:22.782715 2025] [security2:error] [pid 1008045:tid 139900688000704] [client 103.67 ... show more [Thu Nov 27 23:31:22.782715 2025] [security2:error] [pid 1008045:tid 139900688000704] [client 103.67.85.14:49919] ModSecurity: Access denied with code 403 (phase 1). Match of "pm matomo.staklim-malang.info " against "SERVER_NAME" required. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "188"] [id "440235"] [msg "BAD REQUEST Bro"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: %3a found within SERVER_NAME: staklim-jatim.bmkg.go.id request_line = GET /index.php/profil/arsip-artikel?catid=618&id=555556376%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-28-nopember-4-desember-2017&start=150 HTTP/2.0 Request URI RAW = /index.php/profil/arsip-artikel?catid=618&id=555556376%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-28-n..."] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/arsip-artikel"] [unique_id "aSh82l7i ... show less	Hacking Web App Attack
🇺🇸 LARL-Stompro-2024	2025-11-25 06:57:31 (7 months ago)	Evergreen ILS - Mylist Bot Abuse - HTTP Port 443 - Fake UserAgent. Requests:1	Bad Web Bot
Anonymous	2025-11-24 18:26:43 (7 months ago)	scanning http requests from known botnet	Web App Attack
🇷🇴 INTEQ	2025-11-01 23:47:57 (7 months ago)	Web attack from 103.67.85.14	Web App Attack
🇩🇪 LRob.fr	2025-10-16 01:49:11 (8 months ago)	Bad web bot activity detected by Fail2Ban in plesk-apache-badbot jail	Bad Web Bot
🇩🇪 Mailguard-FRD	2025-10-08 18:16:58 (8 months ago)	1759947417 - 10/08/2025 20:16:57 Host: 103.67.85.14/103.67.85.14 Port: 445 TCP Blocked ...	Port Scan
🇦🇺 MAGIC	2025-09-30 03:18:41 (9 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇮🇩 hermawan	2025-09-22 17:50:12 (9 months ago)	[Tue Sep 23 00:47:57.071189 2025] [security2:error] [pid 1370543:tid 139669516834496] [client 103.67 ... show more [Tue Sep 23 00:47:57.071189 2025] [security2:error] [pid 1370543:tid 139669516834496] [client 103.67.85.14:38819] ModSecurity: Access denied with code 403 (phase 1). Match of "pm matomo.staklim-malang.info " against "SERVER_NAME" required. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "164"] [id "440235"] [msg "BAD REQUEST Bro"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: %3a found within SERVER_NAME: staklim-malang.info request_line = GET /index.php/profil/arsip-artikel?catid=476&id=553%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-26-mei-1-juni-2015&start=160 HTTP/2.0 Request URI RAW = /index.php/profil/arsip-artikel?catid=476&id=553%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-26-mei-1-juni-2015&start=160 R..."] [hostname "staklim-malang.info"] [uri "/index.php/profil/arsip-artikel"] [unique_id "aNGLzTT45EZoc ... show less	Hacking Web App Attack
🇳🇱 exxos	2025-09-03 17:03:01 (9 months ago)	Attacks with Bad user agents	Hacking

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇿 196.28.226.66

🇺🇸 172.253.9.151

🇪🇬 156.209.4.233

🇫🇷 87.98.184.144

🇺🇸 73.162.0.208

🇳🇱 45.148.10.141

🇧🇪 34.156.37.35

🇮🇳 20.244.18.126

🇬🇪 2.57.217.229

🇻🇳 183.81.18.76

🇺🇸 161.35.99.7

🇸🇪 135.116.20.17

🇯🇴 94.249.5.86

🇹🇷 94.154.43.43

🇧🇪 91.86.88.24

🇸🇪 83.233.149.204

🇱🇹 81.30.98.144

🇺🇸 76.169.78.221

🇰🇿 37.151.47.27

🇿🇦 197.185.179.59