JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.68.233.142

103.68.233.142 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 20%: ?

20%

ISP	PT Oren Abadi Sakti
Usage Type	Fixed Line ISP
ASN	AS150541
Domain Name	orenabadisakti.com
Country	🇮🇩 Indonesia
City	Bogor, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.68.233.142

Whois 103.68.233.142

IP Abuse Reports for 103.68.233.142:

This IP address has been reported a total of 29 times from 17 distinct sources. 103.68.233.142 was first reported on June 2nd 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 leithzz	2026-05-31 19:19:26 (1 week ago)	Report by Cloudflare.Time: 2026-05-31T19:18:50Z	DDoS Attack
🇷🇴 Fn4ticHz	2026-05-30 15:41:20 (1 week ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇮🇩 sockominfo	2026-05-12 06:00:39 (3 weeks ago)	User login to application from malicious IP 103.68.233.142.. Threat Score: 3.5/10 (LOW). Confidence: ... show more User login to application from malicious IP 103.68.233.142.. Threat Score: 3.5/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 38%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-12 05:00:43 (3 weeks ago)	User login to application from malicious IP 103.68.233.142.. Threat Score: 3.6/10 (LOW). Confidence: ... show more User login to application from malicious IP 103.68.233.142.. Threat Score: 3.6/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 38%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-12 04:00:41 (3 weeks ago)	User login to application from malicious IP 103.68.233.142.. Threat Score: 3.7/10 (LOW). Confidence: ... show more User login to application from malicious IP 103.68.233.142.. Threat Score: 3.7/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 39%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇷🇴 Fn4ticHz	2026-05-09 14:01:38 (4 weeks ago)	Repeated DDoS targeted -- ZeroGuard X ManagedSRV	DDoS Attack Exploited Host
🇮🇩 sockominfo	2026-04-13 02:00:43 (1 month ago)	Late night login (22:00-05:30) - High risk Jakarta timezone (WIB), Deep night login (00:00-05:30) - ... show more Late night login (22:00-05:30) - High risk Jakarta timezone (WIB), Deep night login (00:00-05:30) - Maximum risk Jakarta timezone (WIB). Threat Score: 8.8/10 (CRITICAL). Confidence: 70%. CVSS v3.1: 9.9/10 (Critical). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H. Bayesian Probability: 93%. MITRE ATT&CK: T1566 (Phishing). Tactic: TA0001. Freshness: Moderate. Source Reputation: KNOWN_MALICIOUS. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-04-13 01:00:51 (1 month ago)	Late night login (22:00-05:30) - High risk Jakarta timezone (WIB), Deep night login (00:00-05:30) - ... show more Late night login (22:00-05:30) - High risk Jakarta timezone (WIB), Deep night login (00:00-05:30) - Maximum risk Jakarta timezone (WIB). Threat Score: 8.8/10 (CRITICAL). Confidence: 70%. CVSS v3.1: 9.9/10 (Critical). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H. Bayesian Probability: 93%. MITRE ATT&CK: T1566 (Phishing). Tactic: TA0001. Freshness: Fresh. Source Reputation: KNOWN_MALICIOUS. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-04-13 00:00:14 (1 month ago)	Late night login (22:00-05:30) - High risk Jakarta timezone (WIB). Threat Score: 6.8/10 (MEDIUM). Re ... show more Late night login (22:00-05:30) - High risk Jakarta timezone (WIB). Threat Score: 6.8/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-04-12 23:00:17 (1 month ago)	Late night login (22:00-05:30) - High risk Jakarta timezone (WIB). Threat Score: 7/10 (MEDIUM). Repo ... show more Late night login (22:00-05:30) - High risk Jakarta timezone (WIB). Threat Score: 7/10 (MEDIUM). Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇺🇸 SuperCores Hosting	2026-04-12 21:42:40 (1 month ago)	[2026-04-12 21:42:40.370167] SSH/22 Unautorized connection. Suspicious SSH Brute-force.	SSH Exploited Host Brute-Force Hacking Port Scan
🇩🇪 NoaQT	2026-04-05 22:05:34 (2 months ago)	103.68.233.142 - - [05/Apr/2026:16:40:11 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.bing.co ... show more 103.68.233.142 - - [05/Apr/2026:16:40:11 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.bing.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.68.233.142 - - [05/Apr/2026:16:42:58 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.linkedin.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.68.233.142 - - [05/Apr/2026:16:57:44 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.google.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.68.233.142 - - [05/Apr/2026:16:58:26 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinterest.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.68.233.142 - - [05/Apr/2026:16:59:39 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.HtMMRH.com/services" "Mozilla/5.0 ... show less	DDoS Attack
🇩🇪 NoaQT	2026-04-05 14:59:47 (2 months ago)	103.68.233.142 - - [05/Apr/2026:16:57:44 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.google. ... show more 103.68.233.142 - - [05/Apr/2026:16:57:44 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.google.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.68.233.142 - - [05/Apr/2026:16:58:26 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinterest.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.68.233.142 - - [05/Apr/2026:16:58:26 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.pinterest.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.68.233.142 - - [05/Apr/2026:16:59:39 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.HtMMRH.com/services" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 103.68.233.142 - - [05/Apr/2026:16:59:39 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.HtMMRH.com/services" "Mozil ... show less	DDoS Attack
🇮🇩 sockominfo	2026-03-18 21:00:30 (2 months ago)	Deep night login (00:00-05:30) - Maximum risk Jakarta timezone (WIB). Threat Score: 9/10 (CRITICAL). ... show more Deep night login (00:00-05:30) - Maximum risk Jakarta timezone (WIB). Threat Score: 9/10 (CRITICAL). Confidence: 70%. CVSS v3.1: 9.9/10 (Critical). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H. Bayesian Probability: 87%. MITRE ATT&CK: T1566 (Phishing). Tactic: TA0001. Freshness: Very Fresh. Source Reputation: KNOWN_MALICIOUS. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-03-07 21:00:09 (3 months ago)	Reported by TangerangKota-CSIRT. Status: MALICIOUS	Hacking Web App Attack

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 165.22.233.0

🇻🇳 116.98.249.60

🇩🇪 69.5.169.202

🇺🇸 45.33.14.5

🇵🇰 39.35.75.206

🇧🇷 205.210.31.155

🇩🇪 193.124.20.245

🇲🇽 189.217.130.86

🇫🇷 141.101.96.52

🇺🇸 107.150.103.12

🇸🇬 104.239.46.65

🇩🇪 69.5.169.182

🇭🇰 223.197.178.95

🇻🇳 113.179.76.71

🇳🇱 89.21.67.185

🇫🇮 77.83.26.118

🇩🇪 69.5.169.195

🇩🇪 69.5.169.185

🇺🇸 54.156.248.117

🇮🇳 27.60.20.198