๐บ๐ธ
xmission.com
2026-06-29 05:25:30
(4 days ago)
Blocked by UFW (TCP on 51413)
Source port: 27144
TTL: 111
Packet length: 52
TOS: 0x08
This report ( ...
show more
Blocked by UFW (TCP on 51413)
Source port: 27144
TTL: 111
Packet length: 52
TOS: 0x08
This report (for 114.10.44.237) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐ฉ๐ช
EGP Abuse Dept
2026-04-27 08:31:08
(2 months ago)
Scanning for port/service exploits on tpc-012.mach3builders.nl
Port Scan
Hacking
๐ฎ๐ฉ
hermawan
2026-04-17 02:52:57
(2 months ago)
[Fri Apr 17 09:52:56.701797 2026] [security2:error] [pid 222801:tid 140256847607488] [client 114.10. ...
show more
[Fri Apr 17 09:52:56.701797 2026] [security2:error] [pid 222801:tid 140256847607488] [client 114.10.44.237:39404] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "image/heif" at REQUEST_HEADERS:Accept. [file "/etc/modsecurity/coreruleset-4.25.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "463"] [id "440009"] [msg " Image Heif"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: text/html found within REQUEST_HEADERS:Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/heif,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 request_line = GET /index.php/prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan/3936-prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-tahun-2019/555556930-prakiraan-cuaca-daerah-malang-dan-batu-..."] [hostname "staklim-malang.info"] [uri "/index.php/prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan/3936-prakiraan
...
show less
Email Spam
Hacking
๐บ๐ธ
stechusa
2026-03-20 00:32:16
(3 months ago)
[Askari] ELEVATED_THREAT | country=ID | ASN=INDOSAT Internet Network Provider | AbuseIPDB=4% | 66 IP ...
show more
[Askari] ELEVATED_THREAT | country=ID | ASN=INDOSAT Internet Network Provider | AbuseIPDB=4% | 66 IPs targeting /brand/satco-products-inc/satco-light-bulbs.html | Facet request during elevated threat (facet_ratio=0.95, unique_ips=484) | URL template shared by 87 IPs: /brand.html?bulb_shape=*&bulb_shape_type=*&bulb_type=*&mode=list&p=* | Signals: non_target_geo, http1_on_tls, facet_param_template, concurrent_facet_load, path_concentration
show less
Web App Attack
Hacking
Web Spam
๐บ๐ธ
stechusa
2026-03-20 00:32:15
(3 months ago)
ELEVATED_THREAT | country=ID | ASN=INDOSAT Internet Network Provider | AbuseIPDB=4% | 66 IPs targeti ...
show more
ELEVATED_THREAT | country=ID | ASN=INDOSAT Internet Network Provider | AbuseIPDB=4% | 66 IPs targeting /brand/satco-products-inc/satco-light-bulbs.html | Facet request during elevated threat (facet_ratio=0.95, unique_ips=484) | URL template shared by 87 IPs: /brand.html?bulb_shape=*&bulb_shape_type=*&bulb_type=*&mode=list&p=*
show less
Web App Attack
Hacking
Web Spam
๐บ๐ธ
TPI-Abuse
2026-03-17 15:26:12
(3 months ago)
(mod_security) mod_security (id:210730) triggered by 114.10.44.237 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 114.10.44.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 17 11:26:05.227560 2026] [security2:error] [pid 13916:tid 13916] [client 114.10.44.237:23016] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||asbechiro.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "asbechiro.com"] [uri "/yahoo.com"] [unique_id "ablyjc-o5lY80pOAjXzbOwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ท
hostseries
2025-12-09 16:17:43
(6 months ago)
Trigger: LF_DISTATTACK
Brute-Force
๐ฉ๐ช
botreporter
2025-05-23 06:52:15
(1 year ago)
botnet ignoring robots.txt
Bad Web Bot