JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 160.25.196.22

160.25.196.22 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 0%: ?

ISP	PT Rnet Mitra Sentosa
Usage Type	Fixed Line ISP
ASN	AS153107
Domain Name	myrnet.id
Country	🇮🇩 Indonesia
City	Bojonegoro, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 160.25.196.22

Whois 160.25.196.22

IP Abuse Reports for 160.25.196.22:

This IP address has been reported a total of 9 times from 7 distinct sources. 160.25.196.22 was first reported on April 8th 2025, and the most recent report was 8 months ago.

Old Reports: The most recent abuse report for this IP address is from 8 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 1gz	2025-09-24 15:00:36 (8 months ago)	Triggered Cloudflare WAF (firewallCustom) from ID. Action taken: CHALLENGE Protocol: HTTP/2 (GET met ... show more Triggered Cloudflare WAF (firewallCustom) from ID. Action taken: CHALLENGE Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2025-09-11 12:21:58 (8 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇫🇷 ᴀʀᴛ	2025-07-22 11:03:29 (10 months ago)	Triggered Cloudflare WAF (l7ddos) from ID. ASN: 153107 (IDNIC-RNET-AS-ID PT Rnet Mitra Sentosa) Prot ... show more Triggered Cloudflare WAF (l7ddos) from ID. ASN: 153107 (IDNIC-RNET-AS-ID PT Rnet Mitra Sentosa) Protocol: HTTP/2 (GET method) UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 show less	DDoS Attack Bad Web Bot
🇩🇪 Tizian Maxime Weigt	2025-07-21 19:24:02 (10 months ago)	Incoming DDoS to port 443 (L7 HTTPS Flood) Detected	DDoS Attack
🇩🇪 Tizian Maxime Weigt	2025-07-16 20:03:09 (10 months ago)	Incoming DDoS to port 443 (L7 HTTPS Flood) Detected	DDoS Attack
🇮🇩 hermawan	2025-07-10 16:33:32 (10 months ago)	[Thu Jul 10 23:32:16.964130 2025] [security2:error] [pid 49768:tid 140158983669440] [client 160.25.1 ... show more [Thu Jul 10 23:32:16.964130 2025] [security2:error] [pid 49768:tid 140158983669440] [client 160.25.196.22:21655] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "myactivity.google.com" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "460"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: myactivity.google.com found within REQUEST_HEADERS:Referer: https://myactivity.google.com/ request_line = GET /b/curah_bulanankediri.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/b/curah_bulanankediri.jpg"] [unique_id "aG_rEAYW9BnVDSoGqlRbRgAAjBA"], referer https://myactivity.google.com/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[49785] [30mSvJVlAGw] [aG_rEAYW9BnVDSoGqlRbRgAAjBA] keep_alive=[1] [2025-07-10 23:32:16.964134] [R:aG_rEAYW9BnVDSoGqlRbRgAAjBA] UA:'Mozilla/5.0 (Linux; Android 10; vivo 1938 Build/QP1A.190711.020; wv) AppleWebKit/537.36 (KHTML, li ... show less	Hacking Web App Attack
🇬🇧 Silly Development	2025-05-07 10:27:53 (1 year ago)	Malicious activity detected from 153107 IDNIC-RNET-AS-ID PT Rnet Mitra Sentosa towards host sillydev ... show more Malicious activity detected from 153107 IDNIC-RNET-AS-ID PT Rnet Mitra Sentosa towards host sillydev.co.uk (GET HTTP/2) @ 2025-05-07T10:27:53Z (3 occurrences) show less	DDoS Attack Exploited Host
🇬🇧 Silly Development	2025-05-07 10:27:53 (1 year ago)	Malicious activity detected from 153107 IDNIC-RNET-AS-ID PT Rnet Mitra Sentosa towards host sillydev ... show more Malicious activity detected from 153107 IDNIC-RNET-AS-ID PT Rnet Mitra Sentosa towards host sillydev.co.uk (GET HTTP/2) @ 2025-05-07T10:27:53Z (3 occurrences) show less	DDoS Attack Exploited Host
Anonymous	2025-04-08 06:54:10 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.148.10.240

🇻🇳 45.119.212.99

🇨🇳 218.8.184.137

🇨🇳 182.43.22.64

🇺🇸 172.217.22.142

🇨🇳 123.57.87.214

🇨🇳 111.19.19.127

🇮🇳 106.219.198.250

🇯🇵 66.245.218.54

🇧🇷 37.148.132.205

🇩🇪 213.209.159.56

🇺🇸 147.185.132.216

🇨🇳 124.117.195.105

🇨🇳 120.48.20.170

🇨🇳 114.246.161.24

🇨🇳 111.37.134.148

🇨🇳 110.177.182.43

🇺🇸 107.150.103.88

🇯🇵 103.125.146.118

🇸🇪 78.40.116.35