JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 114.10.42.19

114.10.42.19 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 34%: ?

34%

ISP	IOH B2B
Usage Type	Fixed Line ISP
ASN	AS4761
Domain Name	ioh.co.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 114.10.42.19

Whois 114.10.42.19

IP Abuse Reports for 114.10.42.19:

This IP address has been reported a total of 14 times from 11 distinct sources. 114.10.42.19 was first reported on January 29th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 EGP Abuse Dept	2026-06-13 00:19:54 (4 days ago)	Scraping webshop URLs (www.badgehouder.nl), likely botnet drone	Bad Web Bot Exploited Host
🇨🇭 backslash	2026-06-06 19:21:01 (1 week ago)	block ruleset DA4A07AEE48B136A3922182BE8AA8BFBC1840803	Bad Web Bot
🇮🇩 hermawan	2026-06-02 01:07:10 (2 weeks ago)	[Tue Jun 02 08:07:07.141029 2026] [security2:error] [pid 3250:tid 139858212259520] [client 114.10.42 ... show more [Tue Jun 02 08:07:07.141029 2026] [security2:error] [pid 3250:tid 139858212259520] [client 114.10.42.19:10105] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.yahoo.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.yahoo.go.id found within REQUEST_HEADERS:Referer: https://www.yahoo.go.id/ request_line = GET /script-v188.js HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/script-v188.js"] [unique_id "ah4suwv_cGKZCslqHZ6fqwAAkQo"], referer https://www.yahoo.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[3298] [7wkH7npX9WU] [ah4suwv_cGKZCslqHZ6fqwAAkQo] keep_alive=[1] [2026-06-02 08:07:07.141035] [R:ah4suwv_cGKZCslqHZ6fqwAAkQo] UA:'Mozilla/5.0 (iPhone; CPU iPhone OS 18_1_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) GSA/385.0.802777482 Mobile/15E148 Safari/604.1' H ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-28 03:01:24 (2 weeks ago)	[Thu May 28 10:01:23.728179 2026] [security2:error] [pid 308075:tid 139852306695872] [client 114.10. ... show more [Thu May 28 10:01:23.728179 2026] [security2:error] [pid 308075:tid 139852306695872] [client 114.10.42.19:32938] ModSecurity: Access denied with code 403 (phase 1). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "815"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: GET found within REQUEST_HEADERS: 1 request_line = GET /index.php/profil/meteorologi/list-all-categories/551-klimatologi/prakiraan-klimatologi/peringatan-dini/555562843-press-release-kewaspadaan-cuaca-ekstrim-di-jawa-timur-11-20-maret-2026 HTTP/2.0 Request URI RAW = /index.php/profil/meteorologi/list-all-categories/551-klimatologi/prakiraan-klimatologi/peringatan-dini/555562843-press-release-kewaspad..."] [severity "CRITICAL"] [ver "OWASP_CRS/4.26.0"] [tag "application-multi"] [t ... show less	Email Spam Hacking
🇸🇪 vaia.cloud	2026-05-13 12:04:06 (1 month ago)	trying wp-login.php/xmlrpc.php 35 times in 1 minutes	Brute-Force Web App Attack
🇺🇸 Lee Daniel	2026-05-13 08:29:53 (1 month ago)	114.10.42.19 - - [13/May/2026:04:29:50 -0400] "GET /sites/default/files/imagecache/GalleryImages/dsc ... show more 114.10.42.19 - - [13/May/2026:04:29:50 -0400] "GET /sites/default/files/imagecache/GalleryImages/dsc_0014.jpg HTTP/1.0" 404 3666 "https://harrymanning.com/apt-109-condominiums-palm-beach-christ-church-barbados-beachfront?bedrooms_max=All&bedrooms_min=All&ipp=5&page=72&pr_class=4&property_class=3&property_subtype=73&sort=basc" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.2723.1714 Safari/537.36" 114.10.42.19 - - [13/May/2026:04:29:52 -0400] "GET /sites/default/files/imagecache/GalleryImages/dsc_0008.jpg HTTP/1.0" 404 3666 "https://harrymanning.com/apt-109-condominiums-palm-beach-christ-church-barbados-beachfront?bedrooms_max=All&bedrooms_min=All&ipp=5&page=72&pr_class=4&property_class=3&property_subtype=73&sort=basc" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.2723.1714 Safari/537.36" 114.10.42.19 - - [13/May/2026:04:29:51 -0400] "GET /sites/default/files/imagecache/GalleryImag ... show less	DDoS Attack Web Spam Email Spam Port Scan Brute-Force Bad Web Bot Web App Attack
🇫🇷 security.rdmc.fr	2026-05-10 10:45:12 (1 month ago)	Port Scan Attack proto:TCP src:5429 dst:23	Port Scan
Anonymous	2026-05-02 12:26:33 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-04-29 14:59:57 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 centurion	2026-04-23 13:18:38 (1 month ago)	Blocked by UFW on ns02 [6036/tcp] Source port: 60197 TTL: 48 Packet length: 60 TOS: 0x00 This repor ... show more Blocked by UFW on ns02 [6036/tcp] Source port: 60197 TTL: 48 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 EGP Abuse Dept	2026-03-03 16:26:13 (3 months ago)	Scanning for port/service exploits on tpc-005.mach3builders.nl	Port Scan Hacking
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (6 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
Anonymous	2025-12-09 11:39:18 (6 months ago)	Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ... show more Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in printer-friendly.asp show less	Bad Web Bot Exploited Host
🇫🇷 oonux.net	2025-01-29 08:41:41 (1 year ago)	RouterOS: Scanning detected TCP 114.10.42.19:45200 > x.x.x.x:445	Port Scan

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 217.160.212.27

🇳🇱 172.94.9.55

🇺🇸 172.71.155.126

🇻🇳 171.231.176.175

🇸🇬 165.245.176.219

🇰🇷 125.143.209.68

🇻🇳 113.173.234.176

🇩🇪 88.214.26.194

🇫🇷 51.77.152.49

🇺🇸 24.23.53.165

🇺🇸 23.129.64.188

🇺🇸 13.219.1.233

🇺🇸 216.218.206.120

🇨🇳 211.149.134.60

🇳🇱 158.94.210.44

🇮🇩 103.146.169.30

🇱🇻 91.203.69.239

🇧🇬 79.124.60.146

🇺🇸 76.126.103.218

🇩🇪 69.5.169.252