AbuseIPDB » 168.235.203.253

168.235.203.253 was found in our database!

This IP was reported 113 times. Confidence of Abuse is 23%: ?

23%

ISP	Meteverse Limited.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS54994
Domain Name	meteversecloud.com
Country	United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 168.235.203.253

Whois 168.235.203.253

IP Abuse Reports for 168.235.203.253:

This IP address has been reported a total of 113 times from 14 distinct sources. 168.235.203.253 was first reported on November 20th 2021, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
hermawan	2025-06-09 23:29:11 (1 week ago)	[Tue Jun 10 06:28:25.709999 2025] [security2:error] [pid 1351485:tid 139880004826816] [client 168.23 ... show more[Tue Jun 10 06:28:25.709999 2025] [security2:error] [pid 1351485:tid 139880004826816] [client 168.235.203.253:34702] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "X-Forwarded-For" at REQUEST_HEADERS_NAMES:X-Forwarded-For. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "353"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: X-Forwarded-For found within REQUEST_HEADERS_NAMES:X-Forwarded-For: X-Forwarded-For request_line = GET /index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561892-prediksi-bulanan-curah-hujan-bulan-juli-tahun-2025-update-dari-analisis-bulan-maret-tahun-2025-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561892-prediksi-bulanan-curah-hujan-bulan-juli-tahun-2025-update-dari-analisis-bulan-maret-tahun-2025-di-prov ... show less	Hacking Web App Attack
bigorre.org	2025-05-26 15:26:42 (3 weeks ago)	Unidentified crawling: not a self-announced bot in user-agent	Bad Web Bot
hermawan	2025-05-24 00:45:52 (3 weeks ago)	[Sat May 24 07:45:07.504583 2025] [security2:error] [pid 161424:tid 140399415686848] [client 168.235 ... show more[Sat May 24 07:45:07.504583 2025] [security2:error] [pid 161424:tid 140399415686848] [client 168.235.203.253:41314] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "X-Forwarded-For" at REQUEST_HEADERS_NAMES:X-Forwarded-For. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "353"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: X-Forwarded-For found within REQUEST_HEADERS_NAMES:X-Forwarded-For: X-Forwarded-For request_line = GET /index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561891-prediksi-bulanan-curah-hujan-bulan-juni-tahun-2025-update-dari-analisis-bulan-maret-tahun-2025-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561891-prediksi-bulanan-curah-hujan-bulan-juni-tahun-2025-update-dari-analisis-bulan-maret-tahun-2025-di-provinsi-j ... show less	Hacking Web App Attack
hermawan	2025-05-22 07:41:53 (3 weeks ago)	[Thu May 22 14:41:22.778744 2025] [security2:error] [pid 604503:tid 140178622486208] [client 168.235 ... show more[Thu May 22 14:41:22.778744 2025] [security2:error] [pid 604503:tid 140178622486208] [client 168.235.203.253:13906] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "X-Forwarded-For" at REQUEST_HEADERS_NAMES:X-Forwarded-For. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "353"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: X-Forwarded-For found within REQUEST_HEADERS_NAMES:X-Forwarded-For: X-Forwarded-For request_line = GET /index.php/prakiraan-musim/4311-prakiraan-musim-kemarau/prakiraan-awal-musim-kemarau/prakiraan-awal-musim-kemarau-di-propinsi-jawa-timur/prediksi-6-bulanan-awal-musim-kemarau-tahun-2025-zona-musim-di-provinsi-jawa-timur/555561823-prediksi-6-bulanan-awal-musim-kemarau-tahun-2025-zona-musim-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-musim/4311-prakiraan-musim-kemarau/prakiraan-awal-m ... show less	Hacking Web App Attack
hermawan	2025-05-21 07:58:23 (3 weeks ago)	[Wed May 21 14:45:44.794212 2025] [security2:error] [pid 420256:tid 140136830449344] [client 168.235 ... show more[Wed May 21 14:45:44.794212 2025] [security2:error] [pid 420256:tid 140136830449344] [client 168.235.203.253:57096] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "X-Forwarded-For" at REQUEST_HEADERS_NAMES:X-Forwarded-For. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "353"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: X-Forwarded-For found within REQUEST_HEADERS_NAMES:X-Forwarded-For: X-Forwarded-For request_line = GET /index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561857-prediksi-bulanan-curah-hujan-bulan-juni-tahun-2025-update-dari-analisis-bulan-februari-tahun-2025-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561857-prediksi-bulanan-curah-hujan-bulan-juni-tahun-2025-update-dari-analisis-bulan-februari-tahun-2025-di ... show less	Hacking Web App Attack
hermawan	2025-05-16 16:49:39 (1 month ago)	[Fri May 16 23:48:53.471908 2025] [security2:error] [pid 631799:tid 140675412653760] [client 168.235 ... show more[Fri May 16 23:48:53.471908 2025] [security2:error] [pid 631799:tid 140675412653760] [client 168.235.203.253:5866] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "X-Forwarded-For" at REQUEST_HEADERS_NAMES:X-Forwarded-For. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "353"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: X-Forwarded-For found within REQUEST_HEADERS_NAMES:X-Forwarded-For: X-Forwarded-For request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/3-bulan-ke-depan/555561701-prakiraan-bulanan-curah-hujan-bulan-maret-tahun-2025-update-dari-analisis-bulan-desember-tahun-2024-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/3-bulan-ke-depan/555561701-prakiraan-bulanan-curah-hujan-bulan-maret-tahun-2025-update ... show less	Hacking Web App Attack
hermawan	2025-05-15 15:49:05 (1 month ago)	[Thu May 15 22:49:04.790557 2025] [security2:error] [pid 1646836:tid 139630519248576] [client 168.23 ... show more[Thu May 15 22:49:04.790557 2025] [security2:error] [pid 1646836:tid 139630519248576] [client 168.235.203.253:59826] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "X-Forwarded-For" at REQUEST_HEADERS_NAMES:X-Forwarded-For. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "353"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: X-Forwarded-For found within REQUEST_HEADERS_NAMES:X-Forwarded-For: X-Forwarded-For request_line = GET /index.php/prakiraan-musim/4311-prakiraan-musim-kemarau/prakiraan-awal-musim-kemarau/prakiraan-awal-musim-kemarau-di-propinsi-jawa-timur/prediksi-6-bulanan-awal-musim-kemarau-tahun-2025-zona-musim-di-provinsi-jawa-timur/555561823-prediksi-6-bulanan-awal-musim-kemarau-tahun-2025-zona-musim-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-musim/4311-prakiraan-musim-kemarau/prakiraan-awal- ... show less	Hacking Web App Attack
hermawan	2025-05-13 06:53:35 (1 month ago)	[Tue May 13 13:53:03.868202 2025] [security2:error] [pid 142857:tid 140041300997824] [client 168.235 ... show more[Tue May 13 13:53:03.868202 2025] [security2:error] [pid 142857:tid 140041300997824] [client 168.235.203.253:50114] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "X-Forwarded-For" at REQUEST_HEADERS_NAMES:X-Forwarded-For. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "353"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: X-Forwarded-For found within REQUEST_HEADERS_NAMES:X-Forwarded-For: X-Forwarded-For request_line = GET /index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561857-prediksi-bulanan-curah-hujan-bulan-juni-tahun-2025-update-dari-analisis-bulan-februari-tahun-2025-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561857-prediksi-bulanan-curah-hujan-bulan-juni-tahun-2025-update-dari-analisis-bulan-februari-tahun-2025-di ... show less	Hacking Web App Attack
hermawan	2025-05-09 14:59:08 (1 month ago)	[Fri May 09 21:32:18.534910 2025] [security2:error] [pid 43800:tid 140586182805184] [client 168.235. ... show more[Fri May 09 21:32:18.534910 2025] [security2:error] [pid 43800:tid 140586182805184] [client 168.235.203.253:26468] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "X-Forwarded-For" at REQUEST_HEADERS_NAMES:X-Forwarded-For. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "353"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: X-Forwarded-For found within REQUEST_HEADERS_NAMES:X-Forwarded-For: X-Forwarded-For request_line = GET /index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561891-prediksi-bulanan-curah-hujan-bulan-juni-tahun-2025-update-dari-analisis-bulan-maret-tahun-2025-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561891-prediksi-bulanan-curah-hujan-bulan-juni-tahun-2025-update-dari-analisis-bulan-maret-tahun-2025-di-provin ... show less	Hacking Web App Attack
ThreatBook.io	2025-05-07 22:35:34 (1 month ago)	ThreatBook Intelligence: Zombie more details on http://threatbook.io/ip/168.235.203.253 2025-0 ... show moreThreatBook Intelligence: Zombie more details on http://threatbook.io/ip/168.235.203.253 2025-05-07 18:38:29 /cc.gif show less	Web App Attack
ThreatBook.io	2025-05-06 22:36:58 (1 month ago)	ThreatBook Intelligence: Zombie more details on http://threatbook.io/ip/168.235.203.253 2025-0 ... show moreThreatBook Intelligence: Zombie more details on http://threatbook.io/ip/168.235.203.253 2025-05-06 15:49:29 /cc.gif show less	Web App Attack
hermawan	2025-05-05 11:39:43 (1 month ago)	[Mon May 05 18:38:24.667094 2025] [security2:error] [pid 855116:tid 139974972262080] [client 168.235 ... show more[Mon May 05 18:38:24.667094 2025] [security2:error] [pid 855116:tid 139974972262080] [client 168.235.203.253:10622] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "X-Forwarded-For" at REQUEST_HEADERS_NAMES:X-Forwarded-For. [file "/etc/modsecurity/coreruleset-4.13.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "349"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: X-Forwarded-For found within REQUEST_HEADERS_NAMES:X-Forwarded-For: X-Forwarded-For request_line = GET /index.php/normal-klimatologi/198-normal-awal-musim/normal-awal-musim-kemarau/normal-awal-musim-kemarau-propinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/normal-klimatologi/198-normal-awal-musim/normal-awal-musim-kemarau/normal-awal-musim-kemarau-propinsi-jawa-timur"] [unique_id "aBijMBrJ9YcbyJkaLWWFiwAAAJM"], referer https://www.google.co.id/ [staklim-malang.info] [staklim-malang.info] top=[855187] [Wa4O8 ... show less	Hacking Web App Attack
hermawan	2025-05-01 12:48:40 (1 month ago)	[Thu May 01 19:48:40.180763 2025] [security2:error] [pid 194343:tid 139727686362816] [client 168.235 ... show more[Thu May 01 19:48:40.180763 2025] [security2:error] [pid 194343:tid 139727686362816] [client 168.235.203.253:58546] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "X-Forwarded-For" at REQUEST_HEADERS_NAMES:X-Forwarded-For. [file "/etc/modsecurity/coreruleset-4.13.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "349"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: X-Forwarded-For found within REQUEST_HEADERS_NAMES:X-Forwarded-For: X-Forwarded-For request_line = GET /index.php/normal-klimatologi/197-normal-awal-musim/normal-awal-musim-hujan/normal-awal-musim-hujan-propinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/normal-klimatologi/197-normal-awal-musim/normal-awal-musim-hujan/normal-awal-musim-hujan-propinsi-jawa-timur"] [unique_id "aBNtqNGyIDnvBCnQMbl1wAAAAIA"], referer https://www.google.co.id/search?q=prediksi+hujan+jawa+timur&client=ucweb-b-bookmark&sca_esv=5c6a9 ... show less	Hacking Web App Attack
Anonymous	2025-04-29 06:17:40 (1 month ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
hermawan	2025-04-27 11:10:53 (1 month ago)	[Sun Apr 27 18:09:58.993743 2025] [security2:error] [pid 986254:tid 140550011332288] [client 168.235 ... show more[Sun Apr 27 18:09:58.993743 2025] [security2:error] [pid 986254:tid 140550011332288] [client 168.235.203.253:34530] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "X-Forwarded-For" at REQUEST_HEADERS_NAMES:X-Forwarded-For. [file "/etc/modsecurity/coreruleset-4.13.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "349"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: X-Forwarded-For found within REQUEST_HEADERS_NAMES:X-Forwarded-For: X-Forwarded-For request_line = GET /index.php/profil/meteorologi/list-of-all-tags/gempa-terkini HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-of-all-tags/gempa-terkini"] [unique_id "aA4QhkaoKgxxs90Z2vK7zgAAAIU"], referer https://www.google.co.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[986311] [EhGpm/hjJmA] [aA4QhkaoKgxxs90Z2vK7zgAAAIU] keep_alive=[0] [2025-04-27 18:09:58.993760] [R:aA4QhkaoKgxxs90Z2vK7zgAAAI ... show less	Hacking Web App Attack

Showing 1 to 15 of 113 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

190.12.102.58

171.4.66.242

8.150.8.211

186.233.115.229

194.187.177.56

36.155.130.193

186.91.213.223

8.222.143.108

2.136.140.106

116.110.18.10

92.118.39.71

52.151.22.44

223.244.25.6

8.211.52.48

167.94.146.31

196.251.72.213

65.49.1.212

38.52.143.71

14.103.117.84

217.26.179.90