JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.76.108.106

103.76.108.106 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 17%: ?

17%

ISP	PT Mahawira Nusantara Grup
Usage Type	Fixed Line ISP
ASN	AS151576
Domain Name	mahawiranusantaragroup.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.76.108.106

Whois 103.76.108.106

IP Abuse Reports for 103.76.108.106:

This IP address has been reported a total of 14 times from 11 distinct sources. 103.76.108.106 was first reported on December 15th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 derester	2026-05-24 05:33:59 (3 weeks ago)	Hit MikroTik Honeypot port: 23 (Telnet)	Port Scan IoT Targeted
🇫🇷 Hiigara	2026-05-24 04:31:53 (3 weeks ago)	connection attempt : 103.76.108.106 on port : tcp/23 (Telnet)	Port Scan
🇫🇷 security.rdmc.fr	2026-05-24 03:29:47 (3 weeks ago)	Port Scan Attack proto:TCP src:44254 dst:23	Port Scan
🇮🇹 VHosting	2026-04-26 09:14:47 (1 month ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇮🇹 VHosting	2026-04-10 05:17:21 (2 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇩🇪 NoaQT	2026-04-05 22:04:47 (2 months ago)	103.76.108.106 - - [05/Apr/2026:16:34:02 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit. ... show more 103.76.108.106 - - [05/Apr/2026:16:34:02 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.76.108.106 - - [05/Apr/2026:16:36:38 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.yahoo.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.76.108.106 - - [05/Apr/2026:16:41:39 +0200] "GET /web/login HTTP/1.1" 499 0 "https://news.news-advance.com/services" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.76.108.106 - - [05/Apr/2026:16:43:02 +0200] "GET /web/login HTTP/1.1" 499 0 "https://shop.advance-media.io/search" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.76.108.106 - - [05/Apr/2026:16:36:38 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.yaho ... show less	DDoS Attack
🇩🇪 NoaQT	2026-04-05 14:43:08 (2 months ago)	103.76.108.106 - - [05/Apr/2026:16:34:02 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit. ... show more 103.76.108.106 - - [05/Apr/2026:16:34:02 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.76.108.106 - - [05/Apr/2026:16:36:38 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.yahoo.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.76.108.106 - - [05/Apr/2026:16:36:38 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.yahoo.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.76.108.106 - - [05/Apr/2026:16:41:39 +0200] "GET /web/login HTTP/1.1" 499 0 "https://news.news-advance.com/services" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.76.108.106 - - [05/Apr/2026:16:41:39 +0200] "GET /web/login HTTP/1.1" 499 0 "https://news.news-advance.com/services" ... show less	DDoS Attack
🇧🇪 cmbplf	2026-02-22 11:20:30 (3 months ago)	615 limiting connections by zone (13m59s)	DDoS Attack
🇺🇸 COMPLEX	2026-01-26 01:07:21 (4 months ago)	Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: undefined (undefined) Protocol: ... show more Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: undefined (undefined) Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0 show less	DDoS Attack Bad Web Bot
🇨🇦 SuperEvilLuke	2026-01-24 19:58:45 (4 months ago)	Malicious activity detected from 151576 IDNIC-DNS-NET-AS-ID PT Mahawira Nusantara Grup towards host ... show more Malicious activity detected from 151576 IDNIC-DNS-NET-AS-ID PT Mahawira Nusantara Grup towards host embotic.xyz (GET HTTP/2) @ 2026-01-24T19:58:45Z (1 occurrences) show less	DDoS Attack Exploited Host
🇨🇭 Modules	2026-01-19 13:20:53 (5 months ago)	Open proxy http://103.76.108.106:8080 (RT:8568ms,Loc:Indonesia,ASN:AS151576)	Open Proxy
🇩🇪 Packets-Decreaser.NET	2026-01-12 22:17:20 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2024-12-16 22:49:17 (1 year ago)	Detected Hacking, SQL Injection or general Web App Attack	Web App Attack
🇩🇪 Packets-Decreaser.NET	2024-12-15 23:27:45 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 40.75.94.154

🇳🇱 195.178.110.30

🇨🇳 36.149.9.43

🇪🇸 196.196.150.4

🇨🇳 110.249.202.28

🇷🇺 109.73.206.231

🇭🇰 103.243.26.174

🇳🇱 91.92.40.5

🇺🇸 64.225.8.171

🇸🇬 47.128.56.21

🇧🇬 45.88.138.45

🇧🇷 191.177.160.93

🇸🇪 171.25.158.57

🇭🇰 118.193.47.155

🇰🇷 115.68.208.117

🇺🇸 107.167.34.125

🇫🇮 94.183.234.128

🇳🇱 45.148.10.151

🇯🇵 45.43.60.220

🇬🇧 35.203.210.249