JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.170.173.34

103.170.173.34 was found in our database!

This IP was reported 85 times. Confidence of Abuse is 40%: ?

40%

ISP	AG Communication
Usage Type	Fixed Line ISP
ASN	AS142595
Domain Name	agcommunication.net
Country	🇧🇩 Bangladesh
City	Dhaka, Dhaka Division

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.170.173.34

Whois 103.170.173.34

IP Abuse Reports for 103.170.173.34:

This IP address has been reported a total of 85 times from 39 distinct sources. 103.170.173.34 was first reported on May 22nd 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nodepile	2026-06-08 08:58:40 (4 days ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/catalogsearch/result/index/ ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/catalogsearch/result/index/ ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36') show less	Web App Attack Exploited Host
🇩🇪 Vegascosmetics	2026-06-07 16:24:14 (5 days ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security Syst ... show more (Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security System show less	DDoS Attack Hacking Exploited Host
🇺🇸 nodepile	2026-06-06 06:08:39 (6 days ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/catalogsearch/result/index/ ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/catalogsearch/result/index/ ua='Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36') show less	Web App Attack Exploited Host
🇮🇩 hermawan	2026-06-05 16:58:01 (1 week ago)	[Fri Jun 05 23:57:52.383472 2026] [security2:error] [pid 1142656:tid 140020857939648] [client 103.17 ... show more [Fri Jun 05 23:57:52.383472 2026] [security2:error] [pid 1142656:tid 140020857939648] [client 103.170.173.34:54044] ModSecurity: Access denied with code 403 (phase 2). Match of "rx (?i)^[a-z0-9\\\\-._]+$" against "TX:referer-hardening-plugin_domain_name" required. [file "/etc/modsecurity/coreruleset-4.26.0/plugins/referer-hardening-plugin/plugins/referer-hardening-before.conf"] [line "221"] [id "9524170"] [msg "Invalid domain name within Referer header"] [data " google.com, https Matched Data ARGS charset: - Matched Data TX.1: google.com, https found within Content-Type multipart form Matched Data: https://google.com, https://staklim-jatim.bmkg.go.id/index.php/profil/meteorologi/list-of-all-tags/prakiraan-bulanan-curah-hujan-di-propinsi-jawa-timur-tahun-2026 found within TX:referer-hardening-plugin_domain_name: google.com, https request_line = GET /images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Curah_Hujan_Bulanan/Prakiraan_Curah_Hujan_Bulanan_Pro..."] [severity "CRITICAL ... show less	Email Spam Hacking
🇺🇸 nodepile	2026-06-03 11:59:12 (1 week ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/catalogsearch/result/index/ ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/catalogsearch/result/index/ ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36') show less	Web App Attack Exploited Host
🇩🇪 Vegascosmetics	2026-06-01 12:35:29 (1 week ago)	Kingcopy(AI-IDS) Report: This IP is Banned after 3 Attacks automatically because Pattern: High Prior ... show more Kingcopy(AI-IDS) Report: This IP is Banned after 3 Attacks automatically because Pattern: High Priority: ChangeCountry - Vegascosmetics Security System show less	DDoS Attack Hacking Exploited Host
🇩🇪 SMARTNET	2026-05-27 06:03:53 (2 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 22ada211-5b5c-463a-b46f-60fd11dc639d	DDoS Attack
🇫🇷 Sklurk	2026-05-19 07:24:00 (3 weeks ago)	Web App Attack	Web App Attack
🇫🇷 Sklurk	2026-05-16 07:18:59 (3 weeks ago)	Web App Attack	Web App Attack
🇦🇺 MAGIC	2026-05-16 01:47:59 (3 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇨🇭 ALPHANET	2026-05-10 03:25:06 (1 month ago)	Botnet or web spider not respecting robots.txt	DDoS Attack Exploited Host
🇺🇸 TPI-Abuse	2026-05-05 10:30:20 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 103.170.173.34 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 103.170.173.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 06:30:15.384288 2026] [security2:error] [pid 11075:tid 11075] [client 103.170.173.34:54082] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|timezonespro.com\|F\|2"] [data ".lnk"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "timezonespro.com"] [uri "/!!!!imbnsjh5 - Acceso directo.lnk"] [unique_id "afnGtyF7RUOFgMF5S3o5owAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nodepile	2026-04-22 03:34:05 (1 month ago)	Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/catalogsearch/result/ ua='Mozilla/ ... show more Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/catalogsearch/result/ ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36') show less	Open Proxy VPN IP
🇫🇷 vtchost.com	2026-04-19 03:27:05 (1 month ago)	requested honeypot page - ignored robots.txt - possible botnet ...	Bad Web Bot
🇦🇺 MAGIC	2026-04-15 04:01:40 (1 month ago)	VM5 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot

Showing 1 to 15 of 85 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 72.255.18.68

🇺🇸 65.49.1.14

🇫🇷 51.68.111.242

🇺🇸 40.124.175.136

🇹🇭 8.213.228.15

🇦🇪 176.205.254.176

🇨🇳 125.75.110.72

🇺🇸 118.193.77.34

🇩🇪 103.14.32.224

🇳🇱 64.89.162.188

🇮🇷 2.180.202.118

🇰🇷 211.104.166.110

🇮🇩 103.185.53.93

🇨🇦 85.217.149.66

🇫🇷 51.68.34.131

🇯🇵 43.167.168.2

🇨🇳 223.151.251.242

🇩🇪 172.71.172.31

🇩🇪 151.243.11.35

🇫🇮 147.185.133.42