JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 210.247.252.6

210.247.252.6 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 0%: ?

ISP	Asia Pacific Network Information Centre
Usage Type	Data Center/Web Hosting/Transit
ASN	AS131745
Domain Name	apnic.net
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 210.247.252.6

Whois 210.247.252.6

IP Abuse Reports for 210.247.252.6:

This IP address has been reported a total of 5 times from 4 distinct sources. 210.247.252.6 was first reported on July 24th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2024-07-29 14:02:47 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2024-07-29 07:39:44 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 DJ	2024-07-26 16:22:00 (1 year ago)	web attack	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-07-24 23:45:38 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 210.247.252.6 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 210.247.252.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 24 19:45:32.582216 2024] [security2:error] [pid 29882:tid 29882] [client 210.247.252.6:54818] [client 210.247.252.6] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 210.247.252.6 (+1 hits since last alert)\|hendersonhomes.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "hendersonhomes.com"] [uri "/xmlrpc.php"] [unique_id "ZqGSHC8acz_YrP1oPc3RugAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-07-24 19:23:31 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 210.247.252.6 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 210.247.252.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 24 15:23:27.029135 2024] [security2:error] [pid 29781:tid 29781] [client 210.247.252.6:58012] [client 210.247.252.6] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 210.247.252.6 (+1 hits since last alert)\|www.gasoilliquidsdaily.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.gasoilliquidsdaily.com"] [uri "/xmlrpc.php"] [unique_id "ZqFUr_kCIQGBrVILzpjJPwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:400e:c0a::12d

🇺🇸 172.185.40.47

🇷🇺 91.78.2.204

🇺🇸 69.12.64.60

🇳🇱 45.156.128.68

🇳🇱 45.142.193.161

🇺🇸 45.33.42.25

🇨🇦 34.130.201.168

🇹🇷 31.145.131.202

🇰🇷 14.206.12.13

🇰🇷 211.180.105.241

🇺🇸 162.243.160.109

🇺🇸 161.35.121.46

🇺🇸 134.199.210.130

🇹🇯 109.75.49.162

🇭🇰 101.36.121.72

🇺🇸 91.230.168.199

🇺🇸 89.117.21.133

🇺🇸 66.249.92.11

🇩🇪 64.226.70.199