JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.247.23.215

103.247.23.215 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 21%: ?

21%

ISP	Asia Pacific Network Information Centre
Usage Type	Fixed Line ISP
ASN	AS58485
Hostname(s)	ip-sub-23-215.wifian.id
Domain Name	apnic.net
Country	🇮🇩 Indonesia
City	Ngawi, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.247.23.215

Whois 103.247.23.215

IP Abuse Reports for 103.247.23.215:

This IP address has been reported a total of 39 times from 24 distinct sources. 103.247.23.215 was first reported on October 2nd 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 volcaryx	2026-06-01 08:06:11 (3 weeks ago)	Cloudflare detected an L7 DDoS attack (l7ddos) from ID. Action: BLOCK \| Protocol: HTTP/2 (GET) \| End ... show more Cloudflare detected an L7 DDoS attack (l7ddos) from ID. Action: BLOCK \| Protocol: HTTP/2 (GET) \| Endpoint: / \| UA: Browser69/79.0 (Device41; Solaris) Engine65/72.0 (KHTML, like Gecko) Feature42/41.0 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	DDoS Attack Bad Web Bot
🇷🇴 Fn4ticHz	2026-05-29 02:45:57 (4 weeks ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇩🇪 SMARTNET	2026-05-27 06:03:53 (1 month ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 1175168a-7e6d-467e-bb9a-dd1cdfa3fb9e	DDoS Attack
🇮🇩 sockominfo	2026-05-14 10:00:40 (1 month ago)	User login to application from malicious IP 103.247.23.215.. Threat Score: 3.2/10 (LOW). Confidence: ... show more User login to application from malicious IP 103.247.23.215.. Threat Score: 3.2/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-14 09:00:42 (1 month ago)	User login to application from malicious IP 103.247.23.215.. Threat Score: 3.3/10 (LOW). Confidence: ... show more User login to application from malicious IP 103.247.23.215.. Threat Score: 3.3/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-14 08:00:40 (1 month ago)	User login to application from malicious IP 103.247.23.215.. Threat Score: 3.4/10 (LOW). Confidence: ... show more User login to application from malicious IP 103.247.23.215.. Threat Score: 3.4/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-14 07:00:44 (1 month ago)	User login to application from malicious IP 103.247.23.215.. Threat Score: 3.5/10 (LOW). Confidence: ... show more User login to application from malicious IP 103.247.23.215.. Threat Score: 3.5/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-14 03:00:13 (1 month ago)	User login to application from malicious IP 103.247.23.215.. Threat Score: 0/10 (INFORMATIONAL). Rep ... show more User login to application from malicious IP 103.247.23.215.. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇫🇷 Petre 21_ip	2026-05-07 13:46:07 (1 month ago)	2026-05-07T15:46:06.092629+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-05-07T15:46:06.092629+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=103.247.23.215 DST=155.133.26.57 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=18681 DF PROTO=TCP SPT=48794 DPT=23 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 cybsecaoccol	2026-05-05 15:31:27 (1 month ago)	unauthorized connection or malicious port scan attempted on tcp port 23 - dr	Port Scan Hacking
🇩🇪 NoaQT	2026-04-05 22:03:11 (2 months ago)	103.247.23.215 - - [05/Apr/2026:16:33:05 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.instagr ... show more 103.247.23.215 - - [05/Apr/2026:16:33:05 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.instagram.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.23.215 - - [05/Apr/2026:16:35:03 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.23.215 - - [05/Apr/2026:16:38:10 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.23.215 - - [05/Apr/2026:16:39:30 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.instagram.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.23.215 - - [05/Apr/2026:16:35:03 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (Wind ... show less	DDoS Attack
🇩🇪 NoaQT	2026-04-05 14:39:35 (2 months ago)	103.247.23.215 - - [05/Apr/2026:16:33:05 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.instagr ... show more 103.247.23.215 - - [05/Apr/2026:16:33:05 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.instagram.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.23.215 - - [05/Apr/2026:16:35:03 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.23.215 - - [05/Apr/2026:16:35:03 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.23.215 - - [05/Apr/2026:16:38:10 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.247.23.215 - - [05/Apr/2026:16:38:10 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (X11; Li ... show less	DDoS Attack
Anonymous	2026-03-23 06:30:43 (3 months ago)	\| [Dangerous/Indonesia] Aggressive IP 103.247.23.215 (~30 hits). Type: DoS Defender- Web server 400 ... show more \| [Dangerous/Indonesia] Aggressive IP 103.247.23.215 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇷🇺 ago.su	2026-02-09 03:20:05 (4 months ago)	F2B blocked nginx activity control ddos v1 [otd]	DDoS Attack
🇺🇸 COMPLEX	2026-01-26 01:07:23 (5 months ago)	Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: undefined (undefined) Protocol: ... show more Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: undefined (undefined) Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0 show less	DDoS Attack Bad Web Bot

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 211.72.129.212

🇮🇳 202.53.80.29

🇺🇸 198.20.231.232

🇪🇹 196.189.80.114

🇬🇪 178.217.74.104

🇱🇹 45.227.254.170

🇳🇱 45.198.224.46

🇬🇧 31.14.254.100

🇺🇸 20.169.107.128

🇺🇸 18.237.93.221

🇨🇳 14.103.114.89

🇫🇷 199.247.11.119

🇬🇧 195.96.139.207

🇺🇸 192.155.81.124

🇧🇷 191.32.177.250

🇵🇭 115.84.230.124

🇺🇸 91.230.168.249

🇳🇱 45.142.193.144

🇨🇦 20.151.217.82

🇮🇳 2401:4900:1c7a:2280:5989:6e8f:744a:1abe