AbuseIPDB » 206.237.102.28
206.237.102.28
This IP was reported 10 times. Confidence of
Abuse
is 1% : ?
ISP
Herza Cloud
Usage Type
Data Center/Web Hosting/Transit
ASN
AS140443
Hostname(s)
28.102.237.206.in-addr.arpa.herza.id
Domain Name
herza.id
Country
๐ธ๐ฌ
Singapore
City
Singapore
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 206.237.102.28 :
This IP address has been reported a total of
10
times from
8 distinct
sources.
206.237.102.28 was first reported on
February 1st 2026 , and the most recent report was
3 weeks ago
Old Reports:
The most recent abuse report for this IP address is from
3 weeks ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
2026-06-04 20:31:59
(3 weeks ago)
*Port Scan* detected from 206.237.102.28 (SG/Singapore/28.102.237.206.in-addr.arpa.herza.id). 5 hits ...
show more
*Port Scan* detected from 206.237.102.28 (SG/Singapore/28.102.237.206.in-addr.arpa.herza.id). 5 hits in the last 40 seconds
show less
Brute-Force
Port Scan
๐ณ๐ฑ
homeshowdomain.nl
2026-03-16 23:00:48
(3 months ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-03-15.
show less
Web App Attack
SSH
Hacking
๐ฌ๐ง
OptimusGO
2026-03-10 07:14:04
(3 months ago)
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Time ...
show more
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Timestamp: 2026-03-10 07:14:03 UTC
Log evidence:
03/10/2026-07:14:03.121533 [**] [1:1000101:2] SECURITY Port Scan Detected - Multiple Unauthorized Ports [**] [Classification: Attempted Information Leak] [Priority: 1] {TCP} 206.237.102.28:43888 -> 185.127.18.66:3012
show less
Port Scan
Brute-Force
๐ญ๐บ
kranem
2026-03-09 12:00:41
(3 months ago)
Triggered Cloudflare WAF from SG.
Action taken: BLOCK
ASN: 140443 (IDNIC-HERZA-AS-ID PT Herza Digita ...
show more
Triggered Cloudflare WAF from SG.
Action taken: BLOCK
ASN: 140443 (IDNIC-HERZA-AS-ID PT Herza Digital Indonesia)
Protocol: HTTP/1.1 (GET method)
Endpoint: /file-manager/initialize
Timestamp: 2026-03-09T09:53:35Z
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
show less
Bad Web Bot
๐บ๐ธ
billyw0nka
2026-03-08 19:45:28
(3 months ago)
pattern: admindev
Hacking
๐ญ๐บ
kranem
2026-03-08 18:00:25
(3 months ago)
Triggered Cloudflare WAF from SG.
Action taken: BLOCK
ASN: 140443 (IDNIC-HERZA-AS-ID PT Herza Digita ...
show more
Triggered Cloudflare WAF from SG.
Action taken: BLOCK
ASN: 140443 (IDNIC-HERZA-AS-ID PT Herza Digital Indonesia)
Protocol: HTTP/1.1 (GET method)
Endpoint: /file-manager
Timestamp: 2026-03-08T16:52:34Z
User-Agent: python-requests/2.32.3
show less
Bad Web Bot
๐ณ๐ฑ
Savvii
2026-02-11 11:51:59
(4 months ago)
20 attempts against mh_ha-misbehave-ban on hosting
Brute-Force
Bad Web Bot
Web App Attack
๐ฑ๐ป
garmtech.com
2026-02-02 07:24:54
(4 months ago)
IM360 WAF: Attempt to upload malware
Hacking
๐ณ๐ฑ
Savvii
2026-02-02 02:17:40
(4 months ago)
20 attempts against mh_ha-misbehave-ban on hosting
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
timon.kuik
2026-02-01 20:31:00
(4 months ago)
Web Spam
Hacking
Web App Attack
Showing 1 to
10
of 10 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: