JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.247.23.140

103.247.23.140 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 22%: ?

22%

ISP	Asia Pacific Network Information Centre
Usage Type	Fixed Line ISP
ASN	AS58485
Hostname(s)	ip-sub-23-140.wifian.id
Domain Name	apnic.net
Country	🇮🇩 Indonesia
City	Ngawi, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.247.23.140

Whois 103.247.23.140

IP Abuse Reports for 103.247.23.140:

This IP address has been reported a total of 20 times from 11 distinct sources. 103.247.23.140 was first reported on July 31st 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-10 03:51:46 (1 week ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
🇮🇩 sockominfo	2026-05-29 02:00:38 (3 weeks ago)	User login to application from malicious IP 103.247.23.140.. Threat Score: 3.8/10 (LOW). Confidence: ... show more User login to application from malicious IP 103.247.23.140.. Threat Score: 3.8/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-29 01:00:41 (3 weeks ago)	User login to application from malicious IP 103.247.23.140.. Threat Score: 4/10 (MEDIUM). Confidence ... show more User login to application from malicious IP 103.247.23.140.. Threat Score: 4/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Very Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-28 15:00:12 (3 weeks ago)	User login to application from malicious IP 103.247.23.140.. Threat Score: 0/10 (INFORMATIONAL). Rep ... show more User login to application from malicious IP 103.247.23.140.. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-26 05:00:12 (4 weeks ago)	User login to application from malicious IP 103.247.23.140.. Threat Score: 0/10 (INFORMATIONAL). Rep ... show more User login to application from malicious IP 103.247.23.140.. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-25 15:00:38 (4 weeks ago)	User login to application from malicious IP 103.247.23.140.. Threat Score: 4.5/10 (MEDIUM). Confiden ... show more User login to application from malicious IP 103.247.23.140.. Threat Score: 4.5/10 (MEDIUM). Confidence: 55%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 84%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-25 14:08:10 (4 weeks ago)	Honeypot hit: MSSQL traffic (on 1433) with username sa and empty password	Brute-Force
🇮🇩 sockominfo	2026-05-25 12:00:46 (4 weeks ago)	User login to application from malicious IP 103.247.23.140.. Threat Score: 3.6/10 (LOW). Confidence: ... show more User login to application from malicious IP 103.247.23.140.. Threat Score: 3.6/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-25 11:00:38 (4 weeks ago)	User login to application from malicious IP 103.247.23.140.. Threat Score: 3.7/10 (LOW). Confidence: ... show more User login to application from malicious IP 103.247.23.140.. Threat Score: 3.7/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-25 10:00:44 (4 weeks ago)	User login to application from malicious IP 103.247.23.140.. Threat Score: 3.8/10 (LOW). Confidence: ... show more User login to application from malicious IP 103.247.23.140.. Threat Score: 3.8/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-25 07:00:39 (4 weeks ago)	User login to application from malicious IP 103.247.23.140.. Threat Score: 4.5/10 (MEDIUM). Confiden ... show more User login to application from malicious IP 103.247.23.140.. Threat Score: 4.5/10 (MEDIUM). Confidence: 55%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 88%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-25 04:00:11 (4 weeks ago)	User login to application from malicious IP 103.247.23.140.. Threat Score: 0/10 (INFORMATIONAL). Rep ... show more User login to application from malicious IP 103.247.23.140.. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇹🇷 SeczarSecureOps	2026-05-24 07:56:03 (4 weeks ago)	Seczar SecureOps — Database Service Brute Force (8 events) — quarantined 43200m on fgdcapi	Brute-Force SSH
🇩🇪 filstal.org	2026-04-27 12:34:03 (1 month ago)	Bad web bot: Spoofed/obsolete UA (Mozilla/5.0 (compatible; MSIE 7.0; Windows NT 10.0; Trident/3.1)). ... show more Bad web bot: Spoofed/obsolete UA (Mozilla/5.0 (compatible; MSIE 7.0; Windows NT 10.0; Trident/3.1)). Mass-scanning WordPress plugin. Coordinated large-scale bot attack. show less	Bad Web Bot Web App Attack
🇫🇮 6kilowatti	2026-04-09 15:39:13 (2 months ago)	2026-04-09T18:39:12.401292+03:00 mummo kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:d6:a5:bc:00: ... show more 2026-04-09T18:39:12.401292+03:00 mummo kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:d6:a5:bc:00:00:5e:00:01:58:08:00 SRC=103.247.23.140 DST=83.148.240.21 LEN=52 TOS=0x00 PREC=0x00 TTL=111 ID=6670 DF PROTO=TCP SPT=63257 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 103.143.72.165

🇲🇻 43.247.143.223

🇷🇴 2.57.121.112

🇮🇩 202.145.0.61

🇬🇧 193.176.29.28

🇧🇷 189.15.10.179

🇨🇴 179.33.186.150

🇩🇪 167.94.146.60

🇺🇸 147.185.132.18

🇸🇬 142.91.102.186

🇩🇪 134.122.93.100

🇨🇳 116.179.32.36

🇮🇳 103.91.246.73

🇬🇧 92.41.231.154

🇷🇴 80.94.92.171

🇺🇸 64.62.156.224

🇷🇴 2.57.122.238

🇳🇱 212.8.242.38

🇨🇳 180.76.179.77

🇰🇷 121.169.119.154