JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.135.224.158

103.135.224.158 was found in our database!

This IP was reported 128 times. Confidence of Abuse is 89%: ?

89%

ISP	PT. Trans Indonesia Superkoridor
Usage Type	Fixed Line ISP
ASN	AS138871
Hostname(s)	ip158-224-135-103.tis.net.id
Domain Name	tis.net.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.135.224.158

Whois 103.135.224.158

IP Abuse Reports for 103.135.224.158:

This IP address has been reported a total of 128 times from 60 distinct sources. 103.135.224.158 was first reported on July 21st 2022, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 micropedro	2026-06-22 00:02:51 (13 hours ago)	3 incidents: port scanning. First: 2026-06-08 20:24, Last: 2026-06-21 20:02 UTC. Triggers: non-publi ... show more 3 incidents: port scanning. First: 2026-06-08 20:24, Last: 2026-06-21 20:02 UTC. Triggers: non-public-port,firewall-tcp,ufw-repeater. show less	Port Scan
🇫🇷 Duggy_Tuxy🧱	2026-06-21 05:37:08 (1 day ago)	[DS-BLKS-PROD01] Blocked by SysWarden Firewall (Port Scan / Probing)	Port Scan
🇺🇸 Cyber Crusader	2026-06-16 17:02:20 (5 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇮🇪 RoboSOC	2026-06-16 02:29:57 (6 days ago)	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: ip158-224-135-103.tis.net.id.	Port Scan
🇮🇩 sockominfo	2026-06-15 07:00:53 (1 week ago)	User login to application from malicious IP 103.135.224.158.. Threat Score: 3.7/10 (LOW). Confidence ... show more User login to application from malicious IP 103.135.224.158.. Threat Score: 3.7/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-15 06:00:55 (1 week ago)	User login to application from malicious IP 103.135.224.158.. Threat Score: 3.8/10 (LOW). Confidence ... show more User login to application from malicious IP 103.135.224.158.. Threat Score: 3.8/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-15 04:00:53 (1 week ago)	User login to application from malicious IP 103.135.224.158.. Threat Score: 4.1/10 (MEDIUM). Confide ... show more User login to application from malicious IP 103.135.224.158.. Threat Score: 4.1/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 57%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-15 02:00:13 (1 week ago)	User login to application from malicious IP 103.135.224.158.. Threat Score: 0/10 (INFORMATIONAL). Re ... show more User login to application from malicious IP 103.135.224.158.. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇳🇱 StopAbuse	2026-06-14 16:21:57 (1 week ago)	tcp/5985	Port Scan
🇷🇴 abuse_IP_reporter	2026-06-14 10:45:01 (1 week ago)	Jun 14 12:58:52 server UFW BLOCK SRC=103.135.224.158 PROTO=TCP SPT=49253 DPT=5985	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-13 17:52:42 (1 week ago)	Honeypot hit: HTTP/1.1 request on 5985 POST /wsman User-Agent: Python WinRM client Accept: / Acce ... show more Honeypot hit: HTTP/1.1 request on 5985 POST /wsman User-Agent: Python WinRM client Accept: / Accept-Encoding: gzip, deflate; 5985 [1] TCP show less	Web App Attack
🇵🇱 sefinek.net	2026-06-13 01:39:40 (1 week ago)	Honeypot hit: HTTP/1.1 request on 5985 POST /wsman User-Agent: Python WinRM client Accept: / Acce ... show more Honeypot hit: HTTP/1.1 request on 5985 POST /wsman User-Agent: Python WinRM client Accept: / Accept-Encoding: gzip, deflate; 5985 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇮🇩 sockominfo	2026-06-12 13:00:57 (1 week ago)	User login to application from malicious IP 103.135.224.158.. Threat Score: 3.7/10 (LOW). Confidence ... show more User login to application from malicious IP 103.135.224.158.. Threat Score: 3.7/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-12 12:00:54 (1 week ago)	User login to application from malicious IP 103.135.224.158.. Threat Score: 3.8/10 (LOW). Confidence ... show more User login to application from malicious IP 103.135.224.158.. Threat Score: 3.8/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-12 11:00:09 (1 week ago)	User login to application from malicious IP 103.135.224.158.. Threat Score: 0/10 (INFORMATIONAL). Re ... show more User login to application from malicious IP 103.135.224.158.. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack

Showing 1 to 15 of 128 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 156.226.176.91

🇨🇳 101.126.30.240

🇺🇸 68.183.21.136

🇧🇷 50.7.34.74

🇺🇸 45.132.227.156

🇷🇴 2.57.121.25

🇷🇴 193.46.255.86

🇨🇳 180.102.110.164

🇲🇾 121.121.139.118

🇳🇱 45.156.87.204

🇺🇸 20.168.122.192

🇮🇷 5.190.158.6

🇰🇷 211.221.158.216

🇭🇰 199.45.154.183

🇸🇬 159.138.83.90

🇺🇸 143.244.164.76

🇨🇴 108.174.156.122

🇺🇸 104.23.245.178

🇺🇦 46.149.182.16

🇸🇳 41.214.49.74