JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 175.106.8.18

175.106.8.18 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 0%: ?

ISP	PT Quantum Tera Network
Usage Type	Fixed Line ISP
ASN	AS46023
Hostname(s)	175-106-8-18.quantum.net.id
Domain Name	quantum.net.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 175.106.8.18

Whois 175.106.8.18

IP Abuse Reports for 175.106.8.18:

This IP address has been reported a total of 23 times from 15 distinct sources. 175.106.8.18 was first reported on July 25th 2023, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 sockominfo	2026-02-28 17:01:20 (3 months ago)	Encoded payload bypass detection {SQLI}. Threat Score: 7.9/10 (HIGH). Confidence: 60%. CVSS v3.1: 7. ... show more Encoded payload bypass detection {SQLI}. Threat Score: 7.9/10 (HIGH). Confidence: 60%. CVSS v3.1: 7.3/10 (High). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L. Bayesian Probability: 84%. MITRE ATT&CK: T1190 (Exploit Public-Facing Application). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Brute-Force
🇮🇩 sockominfo	2026-02-28 16:00:47 (3 months ago)	Encoded payload bypass detection {SQLI}. Threat Score: 6.6/10 (MEDIUM). Reported by TangerangKota-CS ... show more Encoded payload bypass detection {SQLI}. Threat Score: 6.6/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Brute-Force
🇮🇩 sockominfo	2026-02-28 15:00:49 (3 months ago)	Encoded payload bypass detection {SQLI}. Threat Score: 6.7/10 (MEDIUM). Reported by TangerangKota-CS ... show more Encoded payload bypass detection {SQLI}. Threat Score: 6.7/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Brute-Force
🇮🇩 sockominfo	2026-02-28 14:00:50 (3 months ago)	Encoded payload bypass detection {SQLI}. Threat Score: 6.8/10 (MEDIUM). Reported by TangerangKota-CS ... show more Encoded payload bypass detection {SQLI}. Threat Score: 6.8/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Brute-Force
🇮🇩 sockominfo	2026-02-28 13:01:33 (3 months ago)	Encoded payload bypass detection {SQLI}. Threat Score: 8/10 (CRITICAL). Confidence: 60%. CVSS v3.1: ... show more Encoded payload bypass detection {SQLI}. Threat Score: 8/10 (CRITICAL). Confidence: 60%. CVSS v3.1: 7.3/10 (High). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L. Bayesian Probability: 87%. MITRE ATT&CK: T1190 (Exploit Public-Facing Application). Tactic: TA0001. Freshness: Very Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (5 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
Anonymous	2025-07-21 15:01:26 (10 months ago)	Ports: 2077,2078,2082,2083,2086,2087,2095,2096; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
🇩🇪 stalker.to	2025-05-23 07:24:59 (1 year ago)	Datacenter Proxy	Web Spam
🇩🇪 stalker.to	2025-05-22 03:53:09 (1 year ago)	Datacenter Proxy	Web Spam
🇩🇪 stalker.to	2025-05-21 14:48:29 (1 year ago)	Datacenter Proxy	Web Spam
🇩🇪 stalker.to	2025-05-21 14:05:29 (1 year ago)	Datacenter Proxy	Web Spam
🇺🇸 VSM Networks	2024-01-04 17:09:59 (2 years ago)	Credential Stuffing	Brute-Force
🇮🇩 hermawan	2023-12-31 14:03:40 (2 years ago)	[Sun Dec 31 21:03:36.514574 2023] [security2:error] [pid 611572:tid 140014608422464] [client 175.106 ... show more [Sun Dec 31 21:03:36.514574 2023] [security2:error] [pid 611572:tid 140014608422464] [client 175.106.8.18:38205] [client 175.106.8.18] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "X-Forwarded-For" at REQUEST_HEADERS_NAMES:X-Forwarded-For. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "34"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: X-Forwarded-For found within REQUEST_HEADERS_NAMES:X-Forwarded-For: X-Forwarded-For request_line = GET /administrator/index.php HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/administrator/index.php"] [unique_id "ZZF0uK_ez65lGowXaNi5aQAAAo8"], referer https://www.google.com/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[611719] [5yE5u8b3hFg] [ZZF0uK_ez65lGowXaNi5aQAAAo8] keep_alive=[0] [2023-12-31 21:03:36.514578] [R:ZZF0uK_ez65lGowXaNi5aQAAAo8] UA:'Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:109.0) ... show less	Hacking Web App Attack
🇩🇪 lf-abuse-1	2023-11-07 15:42:56 (2 years ago)	<comment>	Brute-Force
🇵🇱 SEL	2023-10-09 07:40:00 (2 years ago)	SEXTORTION	Phishing Email Spam Spoofing

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c24::122

🇮🇩 115.85.80.12

🇷🇺 87.250.224.129

🇨🇦 51.222.240.178

🇨🇳 42.48.38.188

🇫🇷 185.2.101.67

🇮🇳 182.95.47.70

🇧🇷 177.73.103.63

🇩🇪 167.94.146.67

🇺🇸 64.62.197.200

🇱🇹 62.60.130.59

🇮🇱 46.210.15.65

🇪🇬 41.38.21.168

🇸🇬 35.240.202.244

🇳🇱 2a00:1450:4013:c02::125

🇻🇳 222.252.35.233

🇳🇱 178.231.127.120

🇦🇷 170.155.12.2

🇻🇳 123.27.148.24

🇷🇴 92.118.39.236