JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.99.136.66

103.99.136.66 was found in our database!

This IP was reported 50 times. Confidence of Abuse is 16%: ?

16%

ISP	PT Jelajah Kreasi Informatika
Usage Type	Fixed Line ISP
ASN	AS151575
Domain Name	jelajahid.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.99.136.66

Whois 103.99.136.66

IP Abuse Reports for 103.99.136.66:

This IP address has been reported a total of 50 times from 26 distinct sources. 103.99.136.66 was first reported on January 25th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇴 Fn4ticHz	2026-05-29 02:43:41 (1 week ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇫🇷 MatStef132	2026-05-22 14:04:38 (2 weeks ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇷🇴 Fn4ticHz	2026-05-09 14:13:33 (4 weeks ago)	Repeated DDoS targeted -- ZeroGuard X ManagedSRV	DDoS Attack Exploited Host
🇮🇹 VHosting	2026-04-26 08:47:32 (1 month ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇮🇹 VHosting	2026-04-10 05:17:21 (1 month ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇩🇪 NoaQT	2026-04-05 22:04:50 (2 months ago)	103.99.136.66 - - [05/Apr/2026:16:35:20 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinteres ... show more 103.99.136.66 - - [05/Apr/2026:16:35:20 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinterest.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.99.136.66 - - [05/Apr/2026:16:36:46 +0200] "GET /web/login HTTP/1.1" 499 0 "https://shop.pro-top.biz/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.99.136.66 - - [05/Apr/2026:16:40:17 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.tech.co/products" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.99.136.66 - - [05/Apr/2026:16:41:53 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.linkedin.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.99.136.66 - - [05/Apr/2026:16:36:46 +0200] "GET /web/login HTTP/1.1" 499 0 "https://shop.pro-top.biz/" "Mozilla/5.0 (X11; Linux x86_64) Ap ... show less	DDoS Attack
🇩🇪 NoaQT	2026-04-05 14:41:58 (2 months ago)	103.99.136.66 - - [05/Apr/2026:16:35:20 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinteres ... show more 103.99.136.66 - - [05/Apr/2026:16:35:20 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinterest.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.99.136.66 - - [05/Apr/2026:16:36:46 +0200] "GET /web/login HTTP/1.1" 499 0 "https://shop.pro-top.biz/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.99.136.66 - - [05/Apr/2026:16:36:46 +0200] "GET /web/login HTTP/1.1" 499 0 "https://shop.pro-top.biz/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.99.136.66 - - [05/Apr/2026:16:40:17 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.tech.co/products" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.99.136.66 - - [05/Apr/2026:16:40:17 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.tech.co/products" "Mozilla/5.0 (Windows NT 10.0; W ... show less	DDoS Attack
🇮🇩 hermawan	2026-03-25 00:01:26 (2 months ago)	[Wed Mar 25 07:01:18.513614 2026] [security2:error] [pid 345762:tid 140346643158720] [client 103.99. ... show more [Wed Mar 25 07:01:18.513614 2026] [security2:error] [pid 345762:tid 140346643158720] [client 103.99.136.66:39870] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.yahoo.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.24.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "591"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.yahoo.go.id found within REQUEST_HEADERS:Referer: https://www.yahoo.go.id/ request_line = GET /index.php/e-buletin-untuk-kota-dan-kabupaten-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/e-buletin-untuk-kota-dan-kabupaten-di-provinsi-jawa-timur"] [unique_id "acMlzpVUxayhJFXg-ifYFQAAigk"], referer https://www.yahoo.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[345772] [Q2Wa9407kxM] [acMlzpVUxayhJFXg-ifYFQAAigk] keep_alive=[1] [2026-03-25 07:01:18.513628] [R:acMlzpVUxayhJFXg-ifYFQAAigk] UA:'Mozilla/5.0 (Macintosh; Intel Mac OS ... show less	Web App Attack Hacking
🇵🇹 PTnet	2025-12-09 11:15:57 (5 months ago)	DDoS Attack (jail:haproxy-https-flood)	DDoS Attack Exploited Host
🇵🇹 PTnet	2025-12-09 09:26:07 (5 months ago)	DDoS Attack (jail:haproxy-badreq)	DDoS Attack Exploited Host
Anonymous	2025-12-04 07:20:22 (6 months ago)	botnet	DDoS Attack
🇩🇪 Szymekk	2025-12-02 13:57:15 (6 months ago)	Fail2Ban: SSH brute force attempt [srv01]	Brute-Force SSH
🇦🇺 GreyWatch - Honeypot Intelligence	2025-11-09 03:15:07 (6 months ago)	ASN: 151575 (IDNIC-JELAJAHID-AS-ID PT Jelajah Kreasi Informatika) Botnet Zombie: This IP has been de ... show more ASN: 151575 (IDNIC-JELAJAHID-AS-ID PT Jelajah Kreasi Informatika) Botnet Zombie: This IP has been detected as a botnet zombie \| Outbound DDoS attack source \| Malicious show less	DDoS Attack Bad Web Bot
🇺🇸 SuperEvilLuke	2025-11-04 17:42:21 (7 months ago)	Malicious activity detected from 151575 IDNIC-JELAJAHID-AS-ID PT Jelajah Kreasi Informatika towards ... show more Malicious activity detected from 151575 IDNIC-JELAJAHID-AS-ID PT Jelajah Kreasi Informatika towards host dash.embotic.xyz (GET HTTP/2) @ 2025-11-04T17:42:21Z (3 occurrences) show less	DDoS Attack Exploited Host
🇸🇬 Vano Ganzzz	2025-11-03 08:16:36 (7 months ago)	Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 151575 (IDNIC-JELAJAHID-AS-ID PT ... show more Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 151575 (IDNIC-JELAJAHID-AS-ID PT Jelajah Kreasi Informatika) Protocol: HTTP/2 (GET method) Endpoint: / Timestamp: 2025-11-03T08:16:36Z Ray ID: 998a6e339ed29cf0 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36 show less	DDoS Attack Bad Web Bot

Showing 1 to 15 of 50 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 125.20.210.182

🇳🇱 77.83.39.55

🇩🇪 213.209.159.56

🇯🇵 203.25.124.77

🇳🇱 185.224.128.16

🇺🇸 159.65.43.48

🇨🇦 138.197.164.175

🇰🇷 123.143.6.233

🇵🇰 119.73.7.46

🇹🇼 101.13.4.119

🇰🇷 61.76.112.4

🇺🇦 46.33.44.244

🇸🇬 43.98.166.124

🇺🇸 2607:f8b0:400e:c06::12b

🇺🇸 216.126.239.17

🇻🇳 118.71.35.149

🇫🇷 185.135.137.194

🇨🇳 180.76.184.79

🇺🇸 165.227.65.239

🇧🇷 160.238.24.130