AbuseIPDB » 118.99.80.199
118.99.80.199 was found in our database!
This IP was reported 5 times. Confidence of
Abuse
is 0%: ?
| ISP |
Biznet Prepaid
|
| Usage Type |
Fixed Line ISP
|
| ASN |
AS17451
|
| Domain Name |
biznetnetworks.com
|
| Country |
๐ฎ๐ฉ
Indonesia
|
| City |
Jakarta, Jakarta
|
IP info including ISP, Usage Type, and Location provided
by IPInfo. Updated weekly.
IP Abuse Reports for 118.99.80.199:
This IP address has been reported a total of
5
times from
3 distinct
sources.
118.99.80.199 was first reported on
, and the most recent report was
.
Old Reports:
The most recent abuse report for this IP address is from
. It is possible that this IP is no longer involved in abusive activities.
| Reporter |
IoA Timestamp (UTC)
|
Comment |
Categories |
|
|
๐ฎ๐ฉ
sockominfo
|
|
SQL injection detection in GET requests, Multi-vector SQL injection attack campaign. Threat Score: 9 ...
show more
SQL injection detection in GET requests, Multi-vector SQL injection attack campaign. Threat Score: 9.2/10 (CRITICAL). Confidence: 85%. CVSS v3.1: 10/10 (Critical). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H. Bayesian Probability: 98%. MITRE ATT&CK: T1190 (Exploit Public-Facing Application). Tactic: TA0001. Freshness: Fresh. Source Reputation: KNOWN_MALICIOUS. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS
show less
|
Hacking
Brute-Force
|
|
|
๐ฎ๐ฉ
sockominfo
|
|
Reported by TangerangKota-CSIRT. Status: MALICIOUS
|
Hacking
Brute-Force
|
|
|
๐ฎ๐ฉ
sockominfo
|
|
TheHive Threat Scoring assessment: 118.99.80.199
CVSS v3.1: 0/10 (None)
CVSS Vector: CVSS:3.1/AV:und ...
show more
TheHive Threat Scoring assessment: 118.99.80.199
CVSS v3.1: 0/10 (None)
CVSS Vector: CVSS:3.1/AV:undefined/AC:undefined/PR:undefined/UI:undefined/S:undefined/C:undefined/I:undefined/A:undefined
Bayesian Probability: 80%
MITRE ATT&CK: Exploit Public-Facing Application, Valid Accounts, Command and Scripting Interpreter, Application Layer Protocol, Brute Force, Account Manipulation
OWASP Risk: High (L:8, I:6)
Combined Score: 4.92/10
Confidence Interval: ยฑ0.01
Status: Reported by TangerangKota-CSIRT. Status: MALICIOUS
show less
|
Hacking
Brute-Force
|
|
|
Anonymous
|
|
Unauthorized connection attempt
|
Port Scan
Hacking
Exploited Host
|
|
|
๐ฎ๐ฉ
hermawan
|
|
[Wed Apr 09 07:29:35.111484 2025] [security2:error] [pid 474601:tid 140066349356736] [client 118.99. ...
show more
[Wed Apr 09 07:29:35.111484 2025] [security2:error] [pid 474601:tid 140066349356736] [client 118.99.80.199:13641] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/var" at REQUEST_FILENAME. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "52"] [id "448101"] [msg "BAD REQUEST FILENAME - Detected and Blocked"] [data "Matched Data: /var found within REQUEST_FILENAME: /var/www/index.php/informasi-iklim/analisis-dinamika-atmosfer-laut-analisis-dan-prediksi-curah-hujan/555560716-analisis-dan-prediksi-dasarian-dinamika-atmosfer-laut-dan-prediksi-curah-hujan-pemutakhiran-dasarian-iii-januari-2024 request_line = GET /var/www/index.php/informasi-iklim/analisis-dinamika-atmosfer-laut-analisis-dan-prediksi-curah-hujan/555560716-analisis-dan-prediksi-dasarian-dinamika-atmosfer-laut-dan-prediksi-curah-hujan-pemutakhiran-dasarian..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/var/www/index.php/informasi-iklim/ana
...
show less
|
Hacking
Web App Attack
|
|
Showing 1 to
5
of 5 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: