JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.65.225.104

202.65.225.104 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 3%: ?

ISP	PT Global Telecom Utama
Usage Type	Fixed Line ISP
ASN	AS45700
Hostname(s)	customer.jtnaidn2.pop.starlinkisp.net
Domain Name	apjii.or.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.65.225.104

Whois 202.65.225.104

IP Abuse Reports for 202.65.225.104:

This IP address has been reported a total of 7 times from 7 distinct sources. 202.65.225.104 was first reported on August 24th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇰🇷 zlhIcd	2026-06-27 09:47:21 (2 days ago)	202.65.225.104 - - [16/Jun/2026:11:07:26 +0900] "GET /pcwiki/index.php?days=30&from=20251110035237&h ... show more 202.65.225.104 - - [16/Jun/2026:11:07:26 +0900] "GET /pcwiki/index.php?days=30&from=20251110035237&hideanons=1&hidemyself=1&limit=250&title=%ED%8A%B9%EC%88%98%EA%B8%B0%EB%8A%A5:%EB%A7%81%ED%81%AC%EC%B5%9C%EA%B7%BC%EB%B0%94%EB%80%9C HTTP/1.1" 404 460 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_3_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.6533.72 Safari/537.36" ... show less	Web Spam SQL Injection Bad Web Bot Web App Attack
Anonymous	2026-03-27 21:17:13 (3 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-01-17 08:55:07 (5 months ago)	tcp/23 (2 or more attempts)	Port Scan
🇩🇪 Packets-Decreaser.NET	2025-12-09 12:07:23 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇵🇹 PTnet	2025-12-09 10:01:35 (6 months ago)	DDoS Attack (jail:haproxy-https-flood)	DDoS Attack Exploited Host
Anonymous	2025-12-08 13:42:34 (6 months ago)	botnet	DDoS Attack
🇮🇩 hermawan	2025-08-24 11:54:36 (10 months ago)	[Sun Aug 24 18:51:00.128909 2025] [security2:error] [pid 33420:tid 139692418766528] [client 202.65.2 ... show more [Sun Aug 24 18:51:00.128909 2025] [security2:error] [pid 33420:tid 139692418766528] [client 202.65.225.104:36203] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "utf-8" at REQUEST_HEADERS:Accept-Charset. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "333"] [id "440015"] [msg "Bot Accept-Charset utf-8"] [data "Matched Data: utf-8 found within REQUEST_HEADERS:Accept-Charset: utf-8;q=0.7,*;q=0.3 request_line = GET /index.php/using-joomla/extensions/components/contact-component/contact-categories/35-shop-site HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/using-joomla/extensions/components/contact-component/contact-categories/35-shop-site"] [unique_id "aKr8pJ-rp83LVclnZTQrfAAAAxc"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[33470] [HaN+DZsmqUM] [aKr8pJ-rp83LVclnZTQrfAAAAxc] keep_alive=[0] [2025-08-24 18:51:00.128913] [R:aKr8pJ-rp83LVclnZTQrfAAAAxc] UA:'Mozilla/5.0 (Wi ... show less	Hacking Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 135.237.126.219

🇯🇵 133.117.72.24

🇨🇳 111.228.51.116

🇸🇬 103.189.234.57

🇺🇸 74.208.177.56

🇺🇸 2602:fa59:10:2c1::1

🇮🇹 188.152.238.126

🇺🇸 167.88.164.171

🇨🇳 106.12.144.153

🇮🇩 103.98.176.164

🇩🇪 91.99.201.90

🇺🇸 71.27.86.44

🇺🇸 48.214.144.100

🇺🇸 38.42.39.21

🇺🇸 23.239.178.181

🇷🇺 5.255.231.9

🇧🇷 201.71.38.166

🇺🇸 195.184.76.166

🇩🇪 159.195.70.243

🇻🇳 103.75.182.108