JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.125.17.91

103.125.17.91 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 38%: ?

38%

ISP	PT JAVA MEDIANET TEKHNOLOGI
Usage Type	Fixed Line ISP
ASN	AS138087
Domain Name	javamedia.net.id
Country	🇮🇩 Indonesia
City	Pasarkemis, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.125.17.91

Whois 103.125.17.91

IP Abuse Reports for 103.125.17.91:

This IP address has been reported a total of 14 times from 13 distinct sources. 103.125.17.91 was first reported on March 17th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 FireGuard Server	2026-06-13 16:25:13 (3 hours ago)	Blocked by OPNsense firewall; 4 hits, proto=tcp, ports=443	Port Scan Hacking
🇮🇩 hermawan	2026-06-06 23:48:46 (6 days ago)	Captured JA4H: ge20n_c9263fe5c0c0 \| Log: 103.125.17.91 - - [07/Jun/2026:06:48:36 +0700] "GET /index. ... show more Captured JA4H: ge20n_c9263fe5c0c0 \| Log: 103.125.17.91 - - [07/Jun/2026:06:48:36 +0700] "GET /index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561307-infografis-perubahan-iklim-jawa-timur HTTP/2.0" 200 31569 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_3_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) FxiOS/124.0 Mobile/15E148 Safari/605.1.15" ge20n_accept,sec-fetch-mode,user-agent,accept-language,accept-encoding,sec-fetch-site,sec-fetch-dest,host... ... show less	Email Spam Hacking
🇩🇪 SMARTNET	2026-05-27 06:03:53 (2 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 4acf41a8-b801-4675-a9cd-4cf95dcec3e7	DDoS Attack
🇩🇪 FeG Deutschland	2026-05-26 17:02:22 (2 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 28	Exploited Host Web App Attack
🇦🇹 urnilxfgbez	2026-05-17 22:45:00 (3 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇬🇧 PeravixGroup	2026-05-06 10:37:09 (1 month ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
Anonymous	2026-04-22 00:28:41 (1 month ago)	Automated bot traffic — residential proxy, fake browser fingerprint. UA="Mozilla/5.0 (Windows NT 10. ... show more Automated bot traffic — residential proxy, fake browser fingerprint. UA="Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.5249.119 Safari/537.36" show less	Bad Web Bot Web App Attack
🇨🇭 backslash	2026-04-19 11:42:09 (1 month ago)	block ruleset Badbot using very old user-agents 5CF3CDB778C7D82564405B86B9242E612F378C68	Bad Web Bot
🇿🇦 maximonline.co.za	2026-04-17 07:00:15 (1 month ago)	Brute Force RDP Attack	Port Scan Hacking Brute-Force
🇺🇸 mnsf	2026-04-17 01:06:26 (1 month ago)	Login Too Frequent (7)	Brute-Force Web App Attack
🇩🇪 iNetWorker	2026-04-14 05:30:35 (1 month ago)	firewall-block, port(s): 445/tcp	Port Scan
🇩🇪 Soncraft	2026-04-12 09:57:12 (2 months ago)	Blocked by UFW on Jellyfin [1433/tcp] Source port: 60947 TTL: 115 Packet length: 52 TOS: 0x00 This ... show more Blocked by UFW on Jellyfin [1433/tcp] Source port: 60947 TTL: 115 Packet length: 52 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇮🇩 sockominfo	2026-04-07 19:00:10 (2 months ago)	Reported by TangerangKota-CSIRT. Status: MALICIOUS	Hacking Web App Attack
🇮🇩 sockominfo	2026-03-17 22:00:09 (2 months ago)	Reported by TangerangKota-CSIRT. Status: MALICIOUS	Hacking Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 222.253.40.231

🇺🇸 205.210.31.68

🇧🇷 170.246.120.58

🇭🇰 152.32.128.169

🇫🇮 147.185.133.108

🇺🇸 147.185.132.140

🇺🇸 66.132.195.55

🇨🇦 34.130.158.245

🇺🇸 20.118.201.169

🇺🇸 205.210.31.10

🇳🇱 203.55.131.4

🇹🇼 198.235.24.90

🇲🇽 187.190.191.165

🇺🇸 172.174.72.225

🇨🇳 171.217.92.33

🇫🇮 147.185.133.54

🇺🇸 147.185.132.116

🇺🇸 74.249.128.189

🇺🇸 66.132.186.160

🇳🇱 45.156.87.216