This IP address has been reported a total of
10
times from
7 distinct
sources.
118.99.73.117 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Blocked by UFW (TCP on 5555)
Source port: 5584
TTL: 51
Packet length: 40
TOS: 0x00
This report (for ...
show moreBlocked by UFW (TCP on 5555)
Source port: 5584
TTL: 51
Packet length: 40
TOS: 0x00
This report (for 118.99.73.117) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
[Fri Jun 26 22:09:03.328677 2026] [security2:error] [pid 264716:tid 139695299180224] [client 118.99. ...
show more[Fri Jun 26 22:09:03.328677 2026] [security2:error] [pid 264716:tid 139695299180224] [client 118.99.73.117:20666] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:[\\"'`](?:\\\\s*?(?:(?:between|x?or|and|div)[\\\\w\\\\s-]+\\\\s*?[+<>=(),-]\\\\s*?[\\\\d\\"'`]|like(?:[\\\\w\\\\s-]+\\\\s*?[+<>=(),-]\\\\s*?[\\\\d\\"'`]|\\\\W+[\\\\w\\"'`(])|[!=|](?:[\\\\d\\\\s!=+-]+.*?[\\"'`(].*?|[\\\\d\\\\s!=]+.*?\\\\d+)$|[^\\\\w\\\\s]?=\\\\s*?[\\"'`])|(?:\\\\W*?[+=]+\\\\W*?|[<>~] ..." at ARGS:_cvar. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "1838"] [id "942182"] [msg "Detects basic SQL authentication bypass attempts 1/3"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: \\x22| Prakiraan - Bulanan | Curah Hujan di Propinsi Jawa Timur Tahun 2020\\x22],\\x229\\x22:[\\x22Downlink\\x22,\\x22Downlink: 4.45Mb/s\\x22],\\x2211\\x22:[\\x22DownlinkMax\\x22,\\x22DownlinkMax: und
...
show less