JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.94.219.82

138.94.219.82 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 4%: ?

ISP	Philadelphia PA
Usage Type	Data Center/Web Hosting/Transit
ASN	AS263744
Domain Name	udasha.com
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.94.219.82

Whois 138.94.219.82

IP Abuse Reports for 138.94.219.82:

This IP address has been reported a total of 5 times from 2 distinct sources. 138.94.219.82 was first reported on April 14th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-19 20:19:37 (3 days ago)	[Sat Jun 20 03:19:34.081976 2026] [security2:error] [pid 1441652:tid 140501124683456] [client 138.94 ... show more [Sat Jun 20 03:19:34.081976 2026] [security2:error] [pid 1441652:tid 140501124683456] [client 138.94.219.82:36356] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bing.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bing.go.id found within REQUEST_HEADERS:Referer: https://www.bing.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-tahunan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-tahunan"] [unique_id "ajWkVlcDV4DDbzfFuQKL3gADDBg"], referer https://www.bing.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1441677] [hPjHAiFj1lE] [ajWkVlcDV4DDbzfFuQKL3gADDBg] keep_alive=[1] [2026-06-20 03:19:34.081995] [R:ajWkVlcDV4DDbzfFuQKL3gADDBg] UA:'Mozilla/5.0 (Linux; U; Android 10; SM-N960F Build/ ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-06-17 11:03:18 (5 days ago)	[Wed Jun 17 18:03:17.888808 2026] [security2:error] [pid 1652580:tid 139898046379712] [client 138.94 ... show more [Wed Jun 17 18:03:17.888808 2026] [security2:error] [pid 1652580:tid 139898046379712] [client 138.94.219.82:22776] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.baidu.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.baidu.go.id found within REQUEST_HEADERS:Referer: http://www.baidu.go.id/ request_line = GET / HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/"] [unique_id "ajJ-9brlG6ugyOZrxWZ0OQAACQE"], referer http://www.baidu.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1652582] [yiu+AbEzFY4] [ajJ-9brlG6ugyOZrxWZ0OQAACQE] keep_alive=[1] [2026-06-17 18:03:17.888815] [R:ajJ-9brlG6ugyOZrxWZ0OQAACQE] UA:'Mozilla/5.0 (Linux; Android 14; Pixel 6 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.119 Mobile Safari/537.36 OPR/81.2.4292.78581' Host:'staklim-jatim.bm ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-30 00:59:13 (3 weeks ago)	[Sat May 30 07:59:10.255140 2026] [security2:error] [pid 410828:tid 140229955503808] [client 138.94. ... show more [Sat May 30 07:59:10.255140 2026] [security2:error] [pid 410828:tid 140229955503808] [client 138.94.219.82:50098] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /images/Klimatologi/Infografis/Infografis-Iklim/Info/2024/3_Dampak_La_Nina-01-600.webp HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Infografis/Infografis-Iklim/Info/2024/3_Dampak_La_Nina-01-600.webp"] [unique_id "aho2Xjy3GR1D15b4QYxebgAA1go"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[410839] [5XQSeH7J4fU] [aho2Xjy3GR1D15b4QYxebgAA1go] keep_alive=[1] [2026-05-30 07:59:10.255144] [R:aho2Xjy3GR1D15b4QYxebgAA1go] UA:'Mozi ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-27 10:18:20 (3 weeks ago)	[Wed May 27 17:18:20.340002 2026] [security2:error] [pid 743340:tid 139875617728192] [client 138.94. ... show more [Wed May 27 17:18:20.340002 2026] [security2:error] [pid 743340:tid 139875617728192] [client 138.94.219.82:61798] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.yahoo.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.yahoo.go.id found within REQUEST_HEADERS:Referer: https://www.yahoo.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561581-mengenal-fenomena-la-nina-si-pembawa-hujan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561581-mengenal-fenomena-la-nina-si-pembawa-hujan"] [unique_id "ahbE7IZ4OzcjAeo_8bSsJAABiQM"], referer https://www.yahoo.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[743344] [+fFJ7gktj3c] [ahbE7IZ4OzcjAeo_8bSsJAABiQM] keep_alive=[ ... show less	Email Spam Hacking
🇮🇩 securejdprop	2026-04-14 18:56:11 (2 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET DROP Spamhaus D ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET DROP Spamhaus DROP Listed Traffic Inbound group 26). Ip 138.94.219.82 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-04-14 18:56:09.413583034 +0000 UTC show less	Hacking Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 118.193.59.194

🇮🇳 2a02:4780:12:69a3::1

🇸🇬 194.5.82.15

🇮🇳 193.203.162.166

🇭🇳 190.242.27.119

🇨🇳 183.221.173.90

🇨🇳 180.158.76.80

🇺🇸 172.212.174.123

🇨🇳 171.15.131.165

🇺🇸 145.223.7.54

🇭🇰 118.193.39.117

🇺🇸 107.155.88.70

🇺🇸 104.152.52.119

🇵🇹 81.193.183.191

🇪🇸 80.102.218.187

🇺🇸 66.132.195.57

🇮🇶 65.20.237.119

🇱🇹 62.60.130.59

🇨🇳 49.71.89.155

🇻🇪 38.150.94.3