JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.133.27.237

103.133.27.237 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 63%: ?

63%

ISP	PT PHATRIA INTI PERSADA
Usage Type	Data Center/Web Hosting/Transit
ASN	AS138130
Domain Name	phatriasulung.net.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.133.27.237

Whois 103.133.27.237

IP Abuse Reports for 103.133.27.237:

This IP address has been reported a total of 43 times from 32 distinct sources. 103.133.27.237 was first reported on October 1st 2024, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Jimbocous	2026-06-04 04:47:00 (18 hours ago)	103.133.27.237 - - [03/Jun/2026:22:42:57 -0600] "POST /GponForm/diag_Form?images/ HTTP/1.1" 400 492 ... show more 103.133.27.237 - - [03/Jun/2026:22:42:57 -0600] "POST /GponForm/diag_Form?images/ HTTP/1.1" 400 492 "-" "terrabot-owned-you" show less	Bad Web Bot Web App Attack Hacking
🇭🇺 bcsaba	2026-06-04 04:23:27 (18 hours ago)	Suricata: Alert - ET EXPLOIT D-Link DSL-2750B - OS Command Injection	Web App Attack
🇹🇭 MWA SOC	2026-06-04 03:54:26 (18 hours ago)		Hacking
🇧🇾 stroytrest	2026-06-04 03:52:45 (18 hours ago)	2026-06-04T06:52:44.427593+03:00 gate kernel: [859763.594433] nftables: JAIL-MSS IN=wan OUT=enp2s0 M ... show more 2026-06-04T06:52:44.427593+03:00 gate kernel: [859763.594433] nftables: JAIL-MSS IN=wan OUT=enp2s0 MAC= SRC=103.133.27.237 DST=xxx.xxx.xxx.xxx LEN=44 TOS=0x00 PREC=0x00 TTL=47 ID=23179 PROTO=TCP SPT=55896 DPT=443 WINDOW=35072 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 LSPCCU	2026-06-02 09:03:54 (2 days ago)	TSEC Honeypot Network report. Threat score: 77/100. Categories: DDoS Attack, Port Scan, Hacking, Bru ... show more TSEC Honeypot Network report. Threat score: 77/100. Categories: DDoS Attack, Port Scan, Hacking, Brute-Force, Web App Attack, SSH. Honeypot: cowrie, ssh-telnet. Context: 103. show less	DDoS Attack Port Scan Hacking Brute-Force Web App Attack SSH
🇨🇿 antihack.anarchista.xyz	2026-06-01 01:42:27 (3 days ago)	Brute-force login: 5 fails in 10 min, last user "admin", URI /xmlrpc.php, UA Jetpack/13.0; WordPress ... show more Brute-force login: 5 fails in 10 min, last user "admin", URI /xmlrpc.php, UA Jetpack/13.0; WordPress/6.2; http://site74121560.com show less	Brute-Force Web App Attack Bad Web Bot
🇩🇪 SMARTNET	2026-05-27 06:03:53 (1 week ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 1175168a-7e6d-467e-bb9a-dd1cdfa3fb9e	DDoS Attack
🇨🇿 vitex	2026-05-26 04:00:00 (1 week ago)	Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically cr ... show more Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically crawled git blame endpoints (/*/blame/commit/<hash>/file) across all commits of public repositories, causing server load of 17+ (normal: <2). Over 71,000 unique IPs involved. Attack window: 2026-05-26 03:30-06:37 UTC. Primary target: PureHTML/purezencart (9933 commits, 5065 files). Each blame request triggers expensive git operations; 30,000+ slow requests per hour. show less	DDoS Attack Bad Web Bot
🇫🇷 security.rdmc.fr	2026-05-23 03:02:18 (1 week ago)	Port Scan Attack proto:TCP src:39145 dst:23	Port Scan
🇺🇸 cybsecaoccol	2026-05-23 02:36:14 (1 week ago)	unauthorized connection or malicious port scan attempted on tcp port - corp	Port Scan Hacking
🇫🇮 danskefilm.dk	2026-05-20 16:15:01 (2 weeks ago)	IMAP password guessing	Brute-Force
🇮🇩 sockominfo	2026-05-02 02:00:39 (1 month ago)	Double URL encoding detection. Threat Score: 7.9/10 (HIGH). Confidence: 60%. CVSS v3.1: 7.3/10 (High ... show more Double URL encoding detection. Threat Score: 7.9/10 (HIGH). Confidence: 60%. CVSS v3.1: 7.3/10 (High). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L. Bayesian Probability: 87%. MITRE ATT&CK: T1110 (Brute Force). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇩🇪 EGP Abuse Dept	2026-05-02 01:14:53 (1 month ago)	Scraping webshop URLs (webshop.hofstede-optiek.nl), likely botnet drone	Bad Web Bot Exploited Host
🇮🇩 sockominfo	2026-05-02 00:00:39 (1 month ago)	Double URL encoding detection. Threat Score: 7.9/10 (HIGH). Confidence: 60%. CVSS v3.1: 7.3/10 (High ... show more Double URL encoding detection. Threat Score: 7.9/10 (HIGH). Confidence: 60%. CVSS v3.1: 7.3/10 (High). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L. Bayesian Probability: 87%. MITRE ATT&CK: T1110 (Brute Force). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-01 23:00:18 (1 month ago)	Double URL encoding detection. Threat Score: 6.3/10 (MEDIUM). Reported by TangerangKota-CSIRT	Hacking Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.56

🇧🇷 45.70.216.245

🇮🇳 4.240.107.214

🇭🇰 114.111.54.189

🇳🇱 93.123.109.62

🇮🇹 93.92.77.82

🇺🇸 50.116.60.230

🇨🇳 14.103.112.110

🇹🇭 203.170.192.251

🇸🇪 185.246.128.133

🇦🇱 130.49.189.41

🇨🇳 122.242.15.0

🇰🇷 115.93.19.12

🇨🇳 111.25.27.209

🇰🇷 106.240.29.98

🇺🇸 104.171.28.43

🇬🇧 2a06:4880:8000::97

🇬🇧 2a06:4880:2000::47

🇧🇷 205.210.31.133

🇨🇳 203.83.234.180