JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 210.79.146.106

210.79.146.106 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 1%: ?

ISP	PT Petabyte Network Indonesia
Usage Type	Fixed Line ISP
ASN	AS152045
Domain Name	petabyteindo.net
Country	🇮🇩 Indonesia
City	Situbondo, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 210.79.146.106

Whois 210.79.146.106

IP Abuse Reports for 210.79.146.106:

This IP address has been reported a total of 19 times from 12 distinct sources. 210.79.146.106 was first reported on December 4th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-13 05:28:18 (1 month ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇮🇩 hermawan	2025-11-30 14:41:36 (6 months ago)	[Sun Nov 30 21:36:49.161673 2025] [security2:error] [pid 774646:tid 139859394971328] [client 210.79. ... show more [Sun Nov 30 21:36:49.161673 2025] [security2:error] [pid 774646:tid 139859394971328] [client 210.79.146.106:37344] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Craving" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "252"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Craving found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 CravingExplorer/2.4.1 request_line = GET /index.php/profil/meteorologi/list-all-categories/4167-klimatologi/prakiraan-klimatologi/prakiraan-dasarian/prakiraan-dasarian-daerah-potensi-banjir/prakiraan-dasarian-daerah-potensi-banjir-di-provinsi-jawa-timur/prakiraan-dasarian-daerah-potensi-banjir-di-provinsi-jawa-timur-tahun-2023/55..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-a ... show less	Hacking Web App Attack
🇳🇱 debestelapp	2025-11-04 07:35:11 (7 months ago)		Web App Attack
🇮🇩 hermawan	2025-10-28 12:09:57 (7 months ago)	[Tue Oct 28 19:09:26.144632 2025] [security2:error] [pid 2676731:tid 139675059607232] [client 210.79 ... show more [Tue Oct 28 19:09:26.144632 2025] [security2:error] [pid 2676731:tid 139675059607232] [client 210.79.146.106:59674] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i),.?[\\"'\\\\)0-9`-f][\\"'`](?:[\\"'`].?[\\"'`]\|(?:\\\\r?\\\\n)?\\\\z\|[^\\"'`]+)\|[^0-9A-Z_a-z]select.+[^0-9A-Z_a-z]?from\|(?:alter\|(?:(?:cre\|trunc\|upd)at\|renam)e\|d(?:e(?:lete\|sc)\|rop)\|(?:inser\|selec)t\|load)[\\\\s\\\\x0b]?\\\\([\\\\s\\\\x0b]?space[\\\\s\\\\x0b]?\\\\(" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.19.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "2120"] [id "942200"] [msg "Detects MySQL comment-/space-obfuscated injections and backtick termination"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: , like Gecko) Version/4.0 Chrome/141.0.7390.97 Mobile Safari/537.36 OcIdWebView ({\\x22os\\x22:\\x22Android\\x22, found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 15; V2419 ... show less	Hacking Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-09-11 12:21:33 (9 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-09-11 06:57:17 (9 months ago)	210.79.146.106 - - [11/Sep/2025:06:55:57 +0000] "POST /wiki/Special:Contact HTTP/1.1" 200 10850 "htt ... show more 210.79.146.106 - - [11/Sep/2025:06:55:57 +0000] "POST /wiki/Special:Contact HTTP/1.1" 200 10850 "https://en.transformal.com/wiki/Special:Contact" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51" 210.79.146.106 - - [11/Sep/2025:06:57:16 +0000] "POST /wiki/Special:Contact HTTP/1.1" 200 11093 "https://en.transformal.com/wiki/Special:Contact" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51" ... show less	Web Spam Web App Attack
🇮🇩 hermawan	2025-03-25 09:52:42 (1 year ago)	[Tue Mar 25 16:50:33.134567 2025] [security2:error] [pid 59977:tid 139770038171328] [client 210.79.1 ... show more [Tue Mar 25 16:50:33.134567 2025] [security2:error] [pid 59977:tid 139770038171328] [client 210.79.146.106:55708] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i),.?[\\"'\\\\)0-9`-f][\\"'`](?:[\\"'`].?[\\"'`]\|(?:\\\\r?\\\\n)?\\\\z\|[^\\"'`]+)\|[^0-9A-Z_a-z]select.+[^0-9A-Z_a-z]?from\|(?:alter\|(?:(?:cre\|trunc\|upd)at\|renam)e\|d(?:e(?:lete\|sc)\|rop)\|(?:inser\|selec)t\|load)[\\\\s\\\\x0b]?\\\\([\\\\s\\\\x0b]?space[\\\\s\\\\x0b]?\\\\(" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "2130"] [id "942200"] [msg "Detects MySQL comment-/space-obfuscated injections and backtick termination"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: , like Gecko) Version/4.0 Chrome/126.0.6478.122 Mobile Safari/537.36 OcIdWebView ({\\x22os\\x22:\\x22Android\\x22, found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 9; CPH2015 ... show less	Hacking Web App Attack
🇺🇸 tannerschermerhorn.dev	2025-02-10 18:01:54 (1 year ago)	Malicious activity detected from 152045 IDNIC-PNT-AS-ID PT Petabyte Network Indonesia towards host n ... show more Malicious activity detected from 152045 IDNIC-PNT-AS-ID PT Petabyte Network Indonesia towards host nextcloud.tannerschermerhorn.dev (GET HTTP/1.1) @ 2025-02-10T18:01:54Z show less	Open Proxy VPN IP Port Scan Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
Anonymous	2025-01-08 11:27:27 (1 year ago)	(CT) IP 210.79.146.106 (ID/Indonesia/-) found to have 640 connections; Ports: 27960; Direction: IN; ... show more (CT) IP 210.79.146.106 (ID/Indonesia/-) found to have 640 connections; Ports: 27960; Direction: IN; Trigger: CT_LIMIT show less	DDoS Attack Hacking
🇩🇪 Packets-Decreaser.NET	2024-12-22 23:01:22 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇦🇺 MAGIC	2024-12-20 01:01:04 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇸🇬 lyratris.com	2024-12-13 19:03:21 (1 year ago)	Layer 7 HTTP Flood	DDoS Attack
🇪🇸 el-brujo	2024-12-10 18:10:00 (1 year ago)	DDoS Attack Layer 7	DDoS Attack
🇩🇪 Packets-Decreaser.NET	2024-12-09 17:17:46 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇷🇴 abuse_IP_reporter	2024-12-09 13:00:37 (1 year ago)	ddosattackagainspublicwebpagewithrandomstrings	DDoS Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇴 80.94.92.165

🇮🇳 34.100.195.119

🇸🇪 2001:67c:289c:2::37

🇨🇴 186.118.223.61

🇹🇼 165.154.227.8

🇺🇸 104.248.117.120

🇮🇩 103.151.140.79

🇦🇪 92.99.87.81

🇳🇱 68.183.4.254

🇭🇰 49.0.251.144

🇺🇸 178.128.144.168

🇨🇩 169.239.158.90

🇨🇳 113.221.72.75

🇰🇼 78.89.154.59

🇺🇸 52.21.227.35

🇮🇳 34.131.134.245

🇧🇪 34.38.165.90

🇻🇳 1.55.45.33

🇧🇷 191.7.26.153

🇩🇴 190.122.119.3