JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.77.106.81

103.77.106.81 was found in our database!

This IP was reported 550 times. Confidence of Abuse is 100%: ?

100%

ISP	PT Berkah Solusi Teknologi Informasi
Usage Type	Data Center/Web Hosting/Transit
ASN	AS135450
Domain Name	ptbsti.com
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.77.106.81

Whois 103.77.106.81

IP Abuse Reports for 103.77.106.81:

This IP address has been reported a total of 550 times from 192 distinct sources. 103.77.106.81 was first reported on November 3rd 2025, and the most recent report was 55 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Baking333	2026-03-29 13:31:56 (2 months ago)	[redacted] 103.77.106.81 - - [29/Mar/2026:14:31:43 +0100] "GET /[redacted] HTTP/1.1" 302 5262 0/7180 ... show more [redacted] 103.77.106.81 - - [29/Mar/2026:14:31:43 +0100] "GET /[redacted] HTTP/1.1" 302 5262 0/71809 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" [redacted] 103.77.106.81 - - [29/Mar/2026:14:31:54 +0100] "GET /.vscode/[redacted] HTTP/1.1" 302 5262 0/46425 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" show less	Bad Web Bot Web App Attack
🇭🇺 kranem	2026-03-29 12:00:31 (2 months ago)	Triggered Cloudflare WAF from ID. Action taken: BLOCK ASN: 135450 (IDNIC-BSTI-AS-ID PT Berkah Solusi ... show more Triggered Cloudflare WAF from ID. Action taken: BLOCK ASN: 135450 (IDNIC-BSTI-AS-ID PT Berkah Solusi Teknologi Informasi) Protocol: HTTP/1.1 (GET method) Endpoint: /.vscode/sftp.json Timestamp: 2026-03-29T11:25:30Z User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0 show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-03-29 10:51:04 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 103.77.106.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 103.77.106.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 06:50:57.538504 2026] [security2:error] [pid 27161:tid 27161] [client 103.77.106.81:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hondabvi.com"] [uri "/sftp-config.json"] [unique_id "ackEEaCUAQ8W_3l43fB1JwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-29 08:33:18 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 103.77.106.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 103.77.106.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 04:33:14.279841 2026] [security2:error] [pid 17788:tid 17788] [client 103.77.106.81:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ccamp.dev"] [uri "/sftp-config.json"] [unique_id "acjjyt9qJ4NBqG3-iLoTcwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 tutaim.com	2026-03-29 08:00:12 (2 months ago)	⛔ [29/03/26] This IP has been detected performing multiple attacks on websites (3 attempts blocked). ... show more ⛔ [29/03/26] This IP has been detected performing multiple attacks on websites (3 attempts blocked). Potential malicious activity. show less	Brute-Force SSH Web App Attack FTP Brute-Force
🇬🇧 WebNiraj	2026-03-29 05:32:21 (2 months ago)	(mod_security) mod_security (id:949110) triggered by 103.77.106.81 (ID/Indonesia/-): 5 in the last 3 ... show more (mod_security) mod_security (id:949110) triggered by 103.77.106.81 (ID/Indonesia/-): 5 in the last 3600 secs [ZETA] show less	Brute-Force
🇫🇷 Baking333	2026-03-29 03:44:49 (2 months ago)	[redacted] 103.77.106.81 - - [29/Mar/2026:04:44:44 +0100] "GET /[redacted] HTTP/1.1" 302 1528 0/4416 ... show more [redacted] 103.77.106.81 - - [29/Mar/2026:04:44:44 +0100] "GET /[redacted] HTTP/1.1" 302 1528 0/44168 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" [redacted] 103.77.106.81 - - [29/Mar/2026:04:44:48 +0100] "GET /.vscode/[redacted] HTTP/1.1" 302 1528 0/37587 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" show less	Bad Web Bot Web App Attack
🇺🇸 S.O.B.A. Dev.	2026-03-29 02:55:13 (2 months ago)	Threat Blocked by BeeHive from (ASN:135450) (Network:IDNIC-BSTI-AS-ID PT Berkah Solusi Teknologi Inf ... show more Threat Blocked by BeeHive from (ASN:135450) (Network:IDNIC-BSTI-AS-ID PT Berkah Solusi Teknologi Informasi) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2026-03-29T02:55:13Z) show less	Brute-Force Web Spam Web App Attack
🇺🇸 TPI-Abuse	2026-03-28 23:39:25 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 103.77.106.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 103.77.106.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 28 19:39:18.597010 2026] [security2:error] [pid 7814:tid 7836] [client 103.77.106.81:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mindgardens.com"] [uri "/sftp-config.json"] [unique_id "achmpho30Yci4Ob4y7jRNwAAAEs"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 conseilgouz	2026-03-28 21:20:04 (2 months ago)	hae-17 : Block hidden directories=>/.vscode/sftp.json(/)	Hacking
🇺🇸 TPI-Abuse	2026-03-28 20:35:48 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 103.77.106.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 103.77.106.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 28 16:35:37.607702 2026] [security2:error] [pid 17705:tid 17705] [client 103.77.106.81:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jspsf.com"] [uri "/sftp-config.json"] [unique_id "acg7ma0-waQ-nDKluUtCiQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 rellik	2026-03-28 20:19:00 (2 months ago)	Mass Scanning Critical Files	Hacking Brute-Force Web App Attack
🇺🇸 Sylvyon	2026-03-28 17:13:54 (2 months ago)	Triggered Cloudflare WAF (firewallCustom) from ID. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoi ... show more Triggered Cloudflare WAF (firewallCustom) from ID. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoint: /.vscode/sftp.json \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇹🇷 rtbh.com.tr	2026-03-27 20:12:18 (2 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 TPI-Abuse	2026-03-27 13:23:48 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 103.77.106.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 103.77.106.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 27 09:23:40.883530 2026] [security2:error] [pid 6272:tid 6272] [client 103.77.106.81:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "antitribu.com"] [uri "/sftp-config.json"] [unique_id "acaE3NJKUwOuQnKxi4n0WAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 106 to 120 of 550 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 217.216.59.228

🇧🇪 198.235.24.171

🇷🇴 93.114.194.159

🇰🇷 58.224.62.29

🇺🇦 31.42.184.158

🇺🇸 216.133.145.160

🇰🇷 211.106.54.198

🇺🇸 174.35.25.177

🇩🇪 167.94.146.45

🇩🇪 162.158.110.64

🇺🇸 147.185.132.231

🇺🇸 136.109.198.118

🇱🇹 45.227.254.170

🇳🇱 45.148.10.151

🇮🇩 36.78.97.156

🇺🇸 216.25.89.122

🇹🇼 198.235.24.116

🇨🇳 180.105.9.136

🇺🇸 172.96.182.111

🇩🇪 167.94.146.50