JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.247.22.88

103.247.22.88 was found in our database!

This IP was reported 44 times. Confidence of Abuse is 22%: ?

22%

ISP	Asia Pacific Network Information Centre
Usage Type	Fixed Line ISP
ASN	AS58485
Hostname(s)	ip-sub-22-88.wifian.id
Domain Name	apnic.net
Country	🇮🇩 Indonesia
City	Cikarang, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.247.22.88

Whois 103.247.22.88

IP Abuse Reports for 103.247.22.88:

This IP address has been reported a total of 44 times from 25 distinct sources. 103.247.22.88 was first reported on March 5th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 leithzz	2026-06-06 13:08:22 (2 weeks ago)	Report by Cloudflare.Time: 2026-06-06T13:07:52Z	DDoS Attack
Anonymous	2026-06-02 11:40:38 (2 weeks ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇷🇴 Fn4ticHz	2026-05-29 02:48:11 (3 weeks ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇩🇪 SMARTNET	2026-05-27 06:03:53 (3 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 22ada211-5b5c-463a-b46f-60fd11dc639d	DDoS Attack
🇷🇴 Fn4ticHz	2026-05-09 14:15:29 (1 month ago)	Repeated DDoS targeted -- ZeroGuard X ManagedSRV	DDoS Attack Exploited Host
🇩🇪 NoaQT	2026-04-05 22:04:48 (2 months ago)	103.247.22.88 - - [05/Apr/2026:16:36:04 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinteres ... show more 103.247.22.88 - - [05/Apr/2026:16:36:04 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinterest.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.22.88 - - [05/Apr/2026:16:36:42 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.facebook.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.22.88 - - [05/Apr/2026:16:43:03 +0200] "GET /web/login HTTP/1.1" 499 0 "https://shop.PQgpxgH.ca/products" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.22.88 - - [05/Apr/2026:16:45:53 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.22.88 - - [05/Apr/2026:16:36:42 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.facebook.com/" "Mozill ... show less	DDoS Attack
🇩🇪 NoaQT	2026-04-05 14:45:59 (2 months ago)	103.247.22.88 - - [05/Apr/2026:16:36:04 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinteres ... show more 103.247.22.88 - - [05/Apr/2026:16:36:04 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinterest.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.22.88 - - [05/Apr/2026:16:36:42 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.facebook.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.22.88 - - [05/Apr/2026:16:36:42 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.facebook.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.22.88 - - [05/Apr/2026:16:43:03 +0200] "GET /web/login HTTP/1.1" 499 0 "https://shop.PQgpxgH.ca/products" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.22.88 - - [05/Apr/2026:16:43:03 +0200] "GET /web/login HTTP/1.1" 499 0 "https://shop.PQgpxgH.ca/products" "Moz ... show less	DDoS Attack
Anonymous	2026-03-23 05:10:23 (2 months ago)	\| [Dangerous/Indonesia] Aggressive IP 103.247.22.88 (~30 hits). Type: DoS Defender- Web server 400 e ... show more \| [Dangerous/Indonesia] Aggressive IP 103.247.22.88 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇮🇹 VHosting	2026-02-24 10:34:17 (3 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇮🇳 liveaspankaj	2026-02-20 23:35:20 (3 months ago)	DDoS attack: 53 requests in 5m (GET / or repair.php).	DDoS Attack
🇪🇸 cuscusero (FlexBacks, FlexChar, FlexAve, FlexCDNM, FlexTudy, ColdHosting SL)	2026-01-16 01:06:20 (5 months ago)	[CPD ESP-BCN02-FW11-394] Suspicious connection detected on port 21. DDoS detected	DDoS Attack FTP Brute-Force Brute-Force
🇨🇭 Modules	2025-12-24 01:46:35 (5 months ago)	Open proxy http://103.247.22.88:4317 (RT:1016ms,Loc:Indonesia,ASN:AS58485)	Open Proxy
🇺🇸 SuperEvilLuke	2025-12-14 13:36:40 (6 months ago)	Malicious activity detected from 58485 WIFIAN-AS-ID WIFIAN towards host panel.embotic.xyz (GET HTTP/ ... show more Malicious activity detected from 58485 WIFIAN-AS-ID WIFIAN towards host panel.embotic.xyz (GET HTTP/2) @ 2025-12-14T13:36:40Z (5 occurrences) show less	DDoS Attack Exploited Host
🇺🇸 SuperEvilLuke	2025-12-13 12:16:06 (6 months ago)	Malicious activity detected from 58485 WIFIAN-AS-ID WIFIAN towards host panel.embotic.xyz (GET HTTP/ ... show more Malicious activity detected from 58485 WIFIAN-AS-ID WIFIAN towards host panel.embotic.xyz (GET HTTP/2) @ 2025-12-13T12:16:06Z (7 occurrences) show less	DDoS Attack Exploited Host
🇺🇸 TPI-Abuse	2025-12-11 13:45:20 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 103.247.22.88 (ip-sub-22-88.wifian.id): 1 in th ... show more (mod_security) mod_security (id:210730) triggered by 103.247.22.88 (ip-sub-22-88.wifian.id): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 11 08:45:11.521076 2025] [security2:error] [pid 15002:tid 15002] [client 103.247.22.88:35396] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|benjaminshaw.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "benjaminshaw.com"] [uri "/baggywrinkle/WS_FTP.LOG"] [unique_id "aTrK52Gdm03dAjedB5WdbQAAADY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 44 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇱 194.180.48.34

🇺🇸 209.141.41.212

🇨🇴 186.146.235.58

🇫🇮 147.185.133.42

🇵🇱 95.214.52.228

🇺🇸 64.53.7.231

🇩🇪 45.117.55.112

🇦🇹 45.38.114.52

🇺🇸 18.225.249.75

🇺🇦 213.111.150.241

🇲🇽 187.190.35.163

🇺🇸 166.88.155.71

🇱🇹 141.98.11.83

🇨🇭 104.244.79.113

🇮🇳 103.161.98.158

🇳🇱 94.102.49.193

🇺🇸 75.138.40.135

🇺🇸 47.254.50.3

🇨🇭 191.101.121.188

🇻🇳 180.93.245.203