JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.247.23.33

103.247.23.33 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 29%: ?

29%

ISP	Asia Pacific Network Information Centre
Usage Type	Fixed Line ISP
ASN	AS58485
Hostname(s)	ip-sub-23-33.wifian.id
Domain Name	apnic.net
Country	🇮🇩 Indonesia
City	Rawaseser, Central Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.247.23.33

Whois 103.247.23.33

IP Abuse Reports for 103.247.23.33:

This IP address has been reported a total of 35 times from 21 distinct sources. 103.247.23.33 was first reported on December 22nd 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-14 13:06:20 (1 week ago)	[Sun Jun 14 20:06:19.608213 2026] [security2:error] [pid 112162:tid 139672891070144] [client 103.247 ... show more [Sun Jun 14 20:06:19.608213 2026] [security2:error] [pid 112162:tid 139672891070144] [client 103.247.23.33:53584] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.baidu.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.baidu.go.id found within REQUEST_HEADERS:Referer: http://www.baidu.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-bulanan/infografis-bulanan-iklim-ekstrim HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-bulanan/infografis-bulanan-iklim-ekstrim"] [unique_id "ai6nSxvEy1wc45aLI4XVcQABEhY"], referer http://www.baidu.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[112215] [vAk0YLZTs0E] [ai6nSxvEy1wc45aLI4XVcQABEhY] keep_alive=[1] [2026-06-14 20:06:19.608219] [R:ai6nSxvEy1wc45aLI ... show less	Email Spam Hacking
🇩🇪 Vegascosmetics	2026-06-09 23:51:37 (2 weeks ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
🇮🇩 hermawan	2026-06-05 19:27:28 (3 weeks ago)	[Sat Jun 06 02:27:24.405981 2026] [authz_core:error] [pid 1217751:tid 140021460833984] [client 103.2 ... show more [Sat Jun 06 02:27:24.405981 2026] [authz_core:error] [pid 1217751:tid 140021460833984] [client 103.247.23.33:52675] AH01630: client denied by server configuration: /var/www/index.php [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1217765] [dp17psaA03g] [aiMjHEOeAC5KwtGMDHn56AAAzA0] keep_alive=[1] [2026-06-06 02:27:24.405985] [R:aiMjHEOeAC5KwtGMDHn56AAAzA0] UA:'Mozilla/5.0 (Linux; Android 14; Pixel 6 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.119 Mobile Safari/537.36 OPR/81.2.4292.78581' Host:'staklim-jatim.bmkg.go.id:443' ACCEPT:'/' Accept-Encoding:'gzip, deflate, br Accept-Language:'en-US,en;q=0.8 ... show less	Email Spam Hacking
🇪🇸 el-brujo	2026-06-03 10:33:00 (3 weeks ago)	Cloudflare WAF: Request Path: /multimedia/tutorial-descargar-audio-desde-videos-de-youtube/ Request ... show more Cloudflare WAF: Request Path: /multimedia/tutorial-descargar-audio-desde-videos-de-youtube/ Request Query: ?PHPSESSID=jaqhk0hccrph8b8in29sl4l759 Host: forum.elhacker.net userAgent: Mozilla/5.0 (compatible; MSIE 6.0; Windows NT 5.0; Trident/3.1) Action: log Source: firewallManaged ASN Description: WIFIAN ID Country: ID Method: GET Timestamp: 2026-06-03T10:33:00Z ruleId: 017d4edd6754438087991348543c4667. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇫🇷 Sklurk	2026-05-27 03:35:59 (4 weeks ago)	Web App Attack	Web App Attack
🇨🇭 ALPHANET	2026-05-24 16:30:05 (1 month ago)	Botnet or web spider not respecting robots.txt	DDoS Attack Exploited Host
🇩🇪 EGP Abuse Dept	2026-05-15 08:04:11 (1 month ago)	Scraping webshop URLs (www.creall.com), likely botnet drone	Bad Web Bot Exploited Host
🇨🇭 ALPHANET	2026-05-09 07:35:03 (1 month ago)	Botnet or web spider not respecting robots.txt	DDoS Attack Exploited Host
🇩🇪 filstal.org	2026-04-30 11:53:55 (1 month ago)	Bad web bot: Spoofed/obsolete UA (Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_10_8; rv:1.9.4.20) Ge ... show more Bad web bot: Spoofed/obsolete UA (Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_10_8; rv:1.9.4.20) Gecko/8960-07-07 17:49:29.609680 Firefox/7.0). Mass-scanning WordPress plugin. Coordinated large-scale bot attack. show less	Bad Web Bot Web App Attack
🇦🇺 MAGIC	2026-03-30 01:13:48 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇮🇹 VHosting	2026-03-01 14:26:02 (3 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇷🇺 DZBOT	2026-02-17 19:56:59 (4 months ago)	SMTP. NO LOGIN / auth failed	Port Scan Brute-Force
🇺🇸 gui-ying233	2026-01-14 09:42:42 (5 months ago)	Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari ... show more Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 show less	Bad Web Bot
🇲🇹 Malta	2024-09-19 01:03:21 (1 year ago)	103.247.23.33 - - [19/Sep/2024:03:03:20 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux ... show more 103.247.23.33 - - [19/Sep/2024:03:03:20 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.6613.138 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack
🇩🇪 Packets-Decreaser.NET	2024-08-20 13:23:54 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2a03:2880:10ff:59::

🇬🇹 190.151.130.5

🇧🇩 172.71.92.149

🇺🇸 162.216.150.11

🇭🇰 162.158.193.149

🇸🇪 162.158.183.24

🇳🇱 160.119.76.45

🇯🇵 139.162.75.64

🇫🇷 91.163.146.155

🇳🇱 91.92.40.6

🇧🇬 78.128.114.46

🇯🇵 61.126.17.97

🇺🇸 54.86.115.253

🇺🇸 47.88.89.31

🇧🇷 43.157.163.155

🇬🇧 35.203.210.26

🇺🇸 2a03:2880:10ff:58::

🇺🇸 193.37.33.140

🇲🇽 177.225.250.42

🇧🇷 172.68.114.136