JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.213.165.82

140.213.165.82 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 13%: ?

13%

ISP	PT XLSMART Telecom Sejahtera Tbk
Usage Type	Mobile ISP
ASN	AS24203
Domain Name	xl.co.id
Country	🇮🇩 Indonesia
City	Semarang, Central Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.213.165.82

Whois 140.213.165.82

IP Abuse Reports for 140.213.165.82:

This IP address has been reported a total of 4 times from 4 distinct sources. 140.213.165.82 was first reported on January 30th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-19 13:54:04 (3 days ago)	140.213.165.82 - - [19/Jun/2026:15:53:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by ... show more 140.213.165.82 - - [19/Jun/2026:15:53:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by WordPress.com" 140.213.165.82 - - [19/Jun/2026:15:53:47 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com" 140.213.165.82 - - [19/Jun/2026:15:53:52 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack/12.0; WordPress/6.2; http://site94172414.com" 140.213.165.82 - - [19/Jun/2026:15:53:53 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/12.0; WordPress/6.2; http://site94172414.com" 140.213.165.82 - - [19/Jun/2026:15:54:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.4)" ... show less	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-19 13:54:01 (3 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇮🇩 hermawan	2025-11-12 07:57:06 (7 months ago)	[Wed Nov 12 14:56:20.414132 2025] [security2:error] [pid 20801:tid 139967096796864] [client 140.213. ... show more [Wed Nov 12 14:56:20.414132 2025] [security2:error] [pid 20801:tid 139967096796864] [client 140.213.165.82:12280] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "utf-8" at REQUEST_HEADERS:Accept-Charset. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "352"] [id "440015"] [msg "Bot Accept-Charset utf-8"] [data "Matched Data: utf-8 found within REQUEST_HEADERS:Accept-Charset: UTF-8 request_line = GET /images/Klimatologi/Infografis/Infografis-Iklim/Musim/2025/Musim_Kemarau_2025/Infografis_Prediksi_Musim_Kemarau_Tahun_2025_Provinsi_Jawa_Timur.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Infografis/Infografis-Iklim/Musim/2025/Musim_Kemarau_2025/Infografis_Prediksi_Musim_Kemarau_Tahun_2025_Provinsi_Jawa_Timur.jpg"] [unique_id "aRQ9pMPxPPi-hcQwdwAXPQACggA"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[20802] [UfI+GaHDnaI] [aRQ9pMPxPPi-hcQwdwAXPQACggA] keep_al ... show less	Hacking Web App Attack
Anonymous	2025-01-30 02:58:39 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 220.88.220.59

🇫🇷 185.177.72.70

🇧🇷 177.174.119.229

🇧🇷 177.10.182.175

🇮🇳 122.183.48.12

🇭🇰 103.115.64.22

🇻🇳 103.3.247.5

🇫🇷 82.102.18.188

🇬🇧 79.135.126.13

🇺🇸 74.249.178.25

🇺🇸 52.180.156.198

🇺🇸 38.129.68.10

🇧🇪 34.156.129.119

🇿🇦 20.87.219.67

🇷🇴 2.57.121.112

🇨🇦 198.50.202.93

🇳🇱 192.142.28.77

🇷🇺 178.177.40.170

🇺🇸 162.243.147.237

🇺🇸 142.251.143.129