JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.145.34.17

103.145.34.17 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 53%: ?

53%

ISP	PT. Lintas Data Multimedia
Usage Type	Fixed Line ISP
ASN	AS139449
Hostname(s)	dis-bdl.lintasdata.net.id
Domain Name	lintasdata.net.id
Country	🇮🇩 Indonesia
City	Kota Agung, Lampung

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.145.34.17

Whois 103.145.34.17

IP Abuse Reports for 103.145.34.17:

This IP address has been reported a total of 32 times from 23 distinct sources. 103.145.34.17 was first reported on September 23rd 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-10 03:19:06 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 103.145.34.17 (dis-bdl.lintasdata.net.id): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 103.145.34.17 (dis-bdl.lintasdata.net.id): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 23:19:00.490328 2026] [security2:error] [pid 16641:tid 16641] [client 103.145.34.17:27321] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.145.34.17 (+1 hits since last alert)\|targetbinario.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "targetbinario.com"] [uri "/xmlrpc.php"] [unique_id "aijXpF-YpZt3c_SKHqT7MgAAAGE"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 PeravixGroup	2026-06-08 07:46:02 (4 days ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-03 07:20:15 (1 week ago)	tcp/80	Port Scan
🇫🇷 Sklurk	2026-06-02 04:31:45 (1 week ago)	Web App Attack	Web App Attack
🇩🇪 Vegascosmetics	2026-05-31 23:41:19 (1 week ago)	Kingcopy(AI-IDS) Report: IP 103.145.34.17 wurde nach 3 Angriffsversuchen automatisch geblockt. Patte ... show more Kingcopy(AI-IDS) Report: IP 103.145.34.17 wurde nach 3 Angriffsversuchen automatisch geblockt. Pattern: High Priority: ChangeCountry - Vegas Cosmetics Security System show less	DDoS Attack Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-05-31 03:33:37 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 103.145.34.17 (dis-bdl.lintasdata.net.id): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 103.145.34.17 (dis-bdl.lintasdata.net.id): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 30 23:33:33.274934 2026] [security2:error] [pid 19199:tid 19199] [client 103.145.34.17:57097] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.145.34.17 (+1 hits since last alert)\|cmcnow.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "cmcnow.net"] [uri "/xmlrpc.php"] [unique_id "ahusDZ5rp_oOLF9IEcH4-QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇴 Fn4ticHz	2026-05-30 15:41:14 (1 week ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇺🇸 TPI-Abuse	2026-05-25 02:23:25 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 103.145.34.17 (dis-bdl.lintasdata.net.id): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 103.145.34.17 (dis-bdl.lintasdata.net.id): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 22:23:17.909074 2026] [security2:error] [pid 2265:tid 2265] [client 103.145.34.17:9997] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 103.145.34.17 (+1 hits since last alert)\|cajunpicasso.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "cajunpicasso.com"] [uri "/xmlrpc.php"] [unique_id "ahOylcHTOij7x81WuiD9qQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-22 04:00:51 (3 weeks ago)	Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ... show more Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in thread-skip.asp show less	Exploited Host Bad Web Bot
🇦🇺 FireGuard Server	2026-05-21 23:40:22 (3 weeks ago)	Blocked by OPNsense firewall; 3 hits, proto=tcp, ports=443	Port Scan Hacking
🇧🇪 sauron-le-noir	2026-05-17 02:19:15 (3 weeks ago)	scan port : 23 from Indonésie at Sun May 17 04:23:21 2026	Port Scan
🇦🇺 FireGuard Server	2026-05-15 20:00:11 (4 weeks ago)	Blocked by OPNsense firewall; 4 hits, proto=tcp, ports=443	Port Scan Hacking
🇦🇺 FireGuard Server	2026-05-11 01:00:18 (1 month ago)	Blocked by OPNsense firewall; 4 hits, proto=tcp, ports=443	Port Scan Hacking
🇩🇪 KPS	2026-05-07 08:33:33 (1 month ago)	PortscanM	Port Scan
🇫🇷 masterguru	2026-05-02 16:59:59 (1 month ago)	wp-comments-post.php request blocked, no referer. Pattern match "wp-comments-post.php" at REQUEST_UR ... show more wp-comments-post.php request blocked, no referer. Pattern match "wp-comments-post.php" at REQUEST_URI. (88520-197) show less	Hacking

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 205.188.217.8

🇮🇳 203.145.49.159

🇫🇮 65.109.78.187

🇺🇸 64.62.197.21

🇱🇹 62.60.130.169

🇮🇳 14.194.55.146

🇺🇸 206.189.205.85

🇿🇦 197.90.205.166

🇫🇷 89.117.63.237

🇷🇴 80.94.92.186

🇧🇬 79.124.59.10

🇸🇬 43.134.167.218

🇬🇧 35.203.210.166

🇰🇷 34.158.204.160

🇺🇸 34.11.110.32

🇩🇪 31.76.16.115

🇮🇩 8.215.88.36

🇺🇸 162.216.149.254

🇩🇪 135.125.200.99

🇧🇩 103.4.145.50