JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 114.10.45.95

114.10.45.95 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 68%: ?

68%

ISP	IOH B2B
Usage Type	Fixed Line ISP
ASN	AS4761
Domain Name	ioh.co.id
Country	🇮🇩 Indonesia
City	Bandung, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 114.10.45.95

Whois 114.10.45.95

IP Abuse Reports for 114.10.45.95:

This IP address has been reported a total of 35 times from 17 distinct sources. 114.10.45.95 was first reported on March 22nd 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 konseptit	2026-06-17 07:04:42 (1 day ago)	(wordpress) Failed wordpress login from 114.10.45.95 (ID/Indonesia/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-16 06:55:27 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 02:55:15.121989 2026] [security2:error] [pid 6536:tid 6536] [client 114.10.45.95:56508] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 114.10.45.95 (+1 hits since last alert)\|greatwesternfirearms.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "greatwesternfirearms.com"] [uri "/xmlrpc.php"] [unique_id "ajDzU4zlLceO8kKTQvmUNAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 17:22:35 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 13:22:21.888096 2026] [security2:error] [pid 16310:tid 16310] [client 114.10.45.95:30424] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 114.10.45.95 (+1 hits since last alert)\|eye7graphics.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "eye7graphics.com"] [uri "/xmlrpc.php"] [unique_id "ajA0zQYrbt_Cwr_tQItMRAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 00:26:37 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 20:26:24.167118 2026] [security2:error] [pid 16719:tid 16719] [client 114.10.45.95:48441] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 114.10.45.95 (+1 hits since last alert)\|bigislandhawaiicoffee.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "bigislandhawaiicoffee.com"] [uri "/xmlrpc.php"] [unique_id "ai9GsOrmkrgs3aRCNV2kwgAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 15:53:08 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 11:52:57.093779 2026] [security2:error] [pid 4794:tid 4794] [client 114.10.45.95:32551] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 114.10.45.95 (+1 hits since last alert)\|mccompu.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "mccompu.com"] [uri "/xmlrpc.php"] [unique_id "ai7OWeKjgOZKDaHNIBrjZwAAAEE"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Apache	2026-06-14 10:41:05 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 114.10.45.95 (ID/Indonesia/-): 5 in the last 30 ... show more (mod_security) mod_security (id:240335) triggered by 114.10.45.95 (ID/Indonesia/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇩🇪 konseptit	2026-06-14 06:25:40 (4 days ago)	(wordpress) Failed wordpress login from 114.10.45.95 (ID/Indonesia/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-14 06:24:48 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 02:24:36.072077 2026] [security2:error] [pid 13705:tid 13705] [client 114.10.45.95:5852] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 114.10.45.95 (+1 hits since last alert)\|ohanameetup.party\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ohanameetup.party"] [uri "/xmlrpc.php"] [unique_id "ai5JJL5lU1h3DEXFNmhXAQAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 11:16:26 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 07:16:16.150849 2026] [security2:error] [pid 1443:tid 1443] [client 114.10.45.95:10610] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 114.10.45.95 (+1 hits since last alert)\|geckoturner.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "geckoturner.com"] [uri "/xmlrpc.php"] [unique_id "ai08ABWLknn4m2OY8RDpCwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 rh24	2026-06-12 17:47:45 (5 days ago)	(wordpress) Failed wordpress login from 114.10.45.95 (ID/Indonesia/-): (CF_ENABLE)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-12 16:38:00 (5 days ago)	(mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 114.10.45.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 12:37:51.051290 2026] [security2:error] [pid 16278:tid 16278] [client 114.10.45.95:9420] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 114.10.45.95 (+1 hits since last alert)\|lambert-heating-and-air.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "lambert-heating-and-air.com"] [uri "/xmlrpc.php"] [unique_id "aiw134Pmwuev79HNWbc8yAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-12 13:46:03 (5 days ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
Anonymous	2026-06-12 12:59:23 (5 days ago)	[redacted] 114.10.45.95 - - [12/Jun/2026:14:58:40 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Wo ... show more [redacted] 114.10.45.95 - - [12/Jun/2026:14:58:40 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 114.10.45.95 - - [12/Jun/2026:14:58:50 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.0; WordPress/6.1; http://site99772831.com" [redacted] 114.10.45.95 - - [12/Jun/2026:14:59:01 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 114.10.45.95 - - [12/Jun/2026:14:59:11 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 114.10.45.95 - - [12/Jun/2026:14:59:22 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" ... show less	Hacking Web App Attack
🇫🇷 dynamix	2026-06-12 12:13:27 (5 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-12 11:58:38 (5 days ago)	[redacted] 114.10.45.95 - - [12/Jun/2026:13:57:50 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Je ... show more [redacted] 114.10.45.95 - - [12/Jun/2026:13:57:50 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.2)" [redacted] 114.10.45.95 - - [12/Jun/2026:13:57:56 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 114.10.45.95 - - [12/Jun/2026:13:58:16 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.1; WordPress/6.1; http://site60138717.com" [redacted] 114.10.45.95 - - [12/Jun/2026:13:58:27 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.2)" [redacted] 114.10.45.95 - - [12/Jun/2026:13:58:37 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.3)" ... show less	Hacking Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 158.180.87.26

🇩🇪 141.95.54.157

🇺🇸 103.203.57.22

🇺🇸 43.159.152.187

🇬🇧 35.203.211.194

🇬🇧 35.203.210.113

🇫🇷 2a01:240:b03::196

🇲🇾 202.165.15.132

🇨🇭 179.43.171.234

🇺🇸 162.216.150.236

🇫🇮 147.185.133.215

🇮🇳 142.93.218.50

🇨🇳 115.191.64.149

🇸🇬 114.119.130.237

🇮🇳 103.132.243.250

🇨🇳 101.96.197.182

🇩🇪 85.214.133.120

🇫🇷 78.153.241.196

🇧🇬 62.133.47.13

🇷🇺 46.147.195.11