JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 114.10.44.96

114.10.44.96 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 48%: ?

48%

ISP	IOH B2B
Usage Type	Fixed Line ISP
ASN	AS4761
Domain Name	ioh.co.id
Country	🇮🇩 Indonesia
City	Semarang, Central Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 114.10.44.96

Whois 114.10.44.96

IP Abuse Reports for 114.10.44.96:

This IP address has been reported a total of 26 times from 23 distinct sources. 114.10.44.96 was first reported on August 2nd 2024, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-06-29 02:15:16 (19 hours ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 22:42:49 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 114.10.44.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 114.10.44.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 18:42:38.736032 2026] [security2:error] [pid 19054:tid 19054] [client 114.10.44.96:58740] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|budgetbyron.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "budgetbyron.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akBR3sb3awxce58tPTmK4wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 FireGuard Server	2026-06-27 15:45:10 (2 days ago)	Blocked by os-abuseipdb; 3 hits, proto=tcp, ports=443	Port Scan Hacking
🇩🇪 stinpriza	2026-06-27 03:55:06 (2 days ago)	Web App Attack	Web App Attack
🇩🇪 big-cloud.nl	2026-06-27 03:51:46 (2 days ago)	Try to access /xmlrpc.php	Web App Attack
🇨🇭 4server	2026-06-27 02:22:30 (2 days ago)	[SatJun2704:22:19.7402142026][security2:error][pid2183280:tid2183319][client114.10.44.96:0]ModSecuri ... show more [SatJun2704:22:19.7402142026][security2:error][pid2183280:tid2183319][client114.10.44.96:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"368\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"ch-garantie.ch\"][uri\"/xmlrpc.php\"][unique_id\"aj8z24N2HvlrzjKfL4GXLQAAAIY\"] show less	Hacking Web App Attack
🇩🇪 Vegascosmetics	2026-06-15 04:41:09 (2 weeks ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
🇮🇩 hermawan	2026-04-09 06:30:42 (2 months ago)	Captured JA4H: ge20n_5c65385abe46 \| Log: 114.10.44.96 - - [09/Apr/2026:13:07:47 +0700] "GET /index.p ... show more Captured JA4H: ge20n_5c65385abe46 \| Log: 114.10.44.96 - - [09/Apr/2026:13:07:47 +0700] "GET /index.php/profil/alamat-kantor/list-all-categories/555556811-mengakses-halaman-web-https-karangploso-jatim-bmkg-go-id-secara-offline-dan-menginstallnya-di-hp-android-atau-di-komputer HTTP/2.0" 403 16973 "https://www.bing.go.id/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Mobile/15E148 Safari/604.1" ge20n_accept,accept-encoding,accept-language,referer,sec-fetch-dest,sec-fetch-mode,sec-fetch-site,user-agent,host... ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-04-09 06:07:56 (2 months ago)	[Thu Apr 09 13:07:47.737370 2026] [security2:error] [pid 417705:tid 140481771312832] [client 114.10. ... show more [Thu Apr 09 13:07:47.737370 2026] [security2:error] [pid 417705:tid 140481771312832] [client 114.10.44.96:65232] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bing.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.25.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "618"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bing.go.id found within REQUEST_HEADERS:Referer: https://www.bing.go.id/ request_line = GET /index.php/profil/alamat-kantor/list-all-categories/555556811-mengakses-halaman-web-https-karangploso-jatim-bmkg-go-id-secara-offline-dan-menginstallnya-di-hp-android-atau-di-komputer HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/alamat-kantor/list-all-categories/555556811-mengakses-halaman-web-https-karangploso-jatim-bmkg-go-id-secara-offline-dan-menginstallnya-di-hp-android-atau-di-komputer"] [unique_id "addCM9pAvPkQnS4E1n03dQABCwE"], referer https://www.bing.go.id/ [s ... show less	Email Spam Hacking
🇺🇸 kosada.com	2026-03-11 16:49:29 (3 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 RAP	2026-01-16 00:42:51 (5 months ago)	2026-01-16 00:42:51 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
Anonymous	2026-01-15 08:56:49 (5 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 xmission.com	2026-01-15 02:55:44 (5 months ago)	Blocked by UFW (TCP on 23) Source port: 52676 TTL: 48 Packet length: 60 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 52676 TTL: 48 Packet length: 60 TOS: 0x00 This report (for 114.10.44.96) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇩🇪 KPS	2026-01-15 02:01:06 (5 months ago)	PortscanM	Port Scan
🇩🇪 SMARTNET	2025-11-30 18:38:00 (6 months ago)	Aisuru(Mirai variant) DDoS	DDoS Attack

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇿 213.230.93.25

🇺🇸 198.98.56.205

🇿🇦 169.1.144.115

🇺🇸 162.216.150.189

🇭🇰 152.32.131.245

🇺🇸 147.185.132.38

🇻🇳 103.98.149.87

🇫🇷 91.231.89.235

🇧🇬 79.124.56.146

🇸🇳 41.214.10.178

🇺🇸 23.234.107.192

🇺🇸 23.234.72.107

🇺🇸 20.171.8.156

🇺🇸 18.237.208.224

🇹🇭 223.204.250.46

🇹🇭 223.204.90.252

🇨🇳 223.199.184.105

🇧🇷 200.203.143.154

🇲🇿 197.219.37.221

🇪🇸 196.196.150.99