JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.10.131.59

182.10.131.59 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 32%: ?

32%

ISP	PT. Telekomunikasi Selular (Telkomsel) Indonesia
Usage Type	Fixed Line ISP
ASN	AS23693
Domain Name	telkomsel.co.id
Country	🇮🇩 Indonesia
City	Banjar, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.10.131.59

Whois 182.10.131.59

IP Abuse Reports for 182.10.131.59:

This IP address has been reported a total of 16 times from 11 distinct sources. 182.10.131.59 was first reported on November 29th 2025, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 EDSL	2026-06-05 10:18:24 (8 hours ago)	[SRV-VPN1] Blocked by SysWarden Firewall (Port Scan / Probing)	Port Scan
Anonymous	2026-06-05 00:19:25 (18 hours ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-06-04 11:49:40 (1 day ago)	tcp/80	Port Scan
🇬🇧 PeravixGroup	2026-06-04 08:39:48 (1 day ago)	Honeypot detection: Android Debug Bridge (ADB) unauthorized access attempt on port 5555. Severity: M ... show more Honeypot detection: Android Debug Bridge (ADB) unauthorized access attempt on port 5555. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇺🇸 COMPLEX	2025-12-04 05:18:05 (6 months ago)	Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 23693 (TELKOMSEL-ASN-ID PT. Tele ... show more Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 23693 (TELKOMSEL-ASN-ID PT. Telekomunikasi Selular) Protocol: HTTP/2 (GET method) Endpoint: / show less	DDoS Attack Bad Web Bot
🇮🇹 VHosting	2025-11-30 19:30:06 (6 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
Anonymous	2025-11-30 16:30:56 (6 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2025-11-30 16:07:27 (6 months ago)	(mod_security) mod_security (id:225170) triggered by 182.10.131.59 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 182.10.131.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 30 11:07:20.486107 2025] [security2:error] [pid 1954:tid 1954] [client 182.10.131.59:40210] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|romancewritersfoundation.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "romancewritersfoundation.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aSxruIbiqzq0XjOUkmkAVgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-30 10:56:01 (6 months ago)	(mod_security) mod_security (id:225170) triggered by 182.10.131.59 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 182.10.131.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 30 05:55:56.995147 2025] [security2:error] [pid 24828:tid 24828] [client 182.10.131.59:26737] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|rollinchassis.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rollinchassis.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aSwivHVVER3qAa43PKG0SAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-30 09:01:33 (6 months ago)	Web Probe / Attack	Web App Attack
🇺🇸 TPI-Abuse	2025-11-30 05:01:18 (6 months ago)	(mod_security) mod_security (id:225170) triggered by 182.10.131.59 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 182.10.131.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 30 00:01:11.116050 2025] [security2:error] [pid 22089:tid 22089] [client 182.10.131.59:28066] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|rokket.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rokket.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aSvPlwC6mUfSkUTwndd5MgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-30 03:14:43 (6 months ago)	(mod_security) mod_security (id:225170) triggered by 182.10.131.59 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 182.10.131.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 29 22:14:36.458250 2025] [security2:error] [pid 12871:tid 12871] [client 182.10.131.59:1662] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|roigcorporativo.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "roigcorporativo.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aSu2nFLAwQokQCS9tEVX9AAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-30 02:15:26 (6 months ago)	(mod_security) mod_security (id:225170) triggered by 182.10.131.59 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 182.10.131.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 29 21:15:19.956131 2025] [security2:error] [pid 29166:tid 29166] [client 182.10.131.59:40140] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|rohn.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rohn.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aSuot3Pd9HsYjqKlzMGvdAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-30 01:29:18 (6 months ago)	(mod_security) mod_security (id:225170) triggered by 182.10.131.59 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 182.10.131.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 29 20:29:13.262566 2025] [security2:error] [pid 3374967:tid 3374967] [client 182.10.131.59:9899] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|rogerproperties.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rogerproperties.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aSud6Rf3TME-fRkFAcErpQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2025-11-29 03:24:05 (6 months ago)	18.067 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.110.238.50

🇹🇼 122.116.145.26

🇫🇷 109.218.245.9

🇫🇮 65.21.127.46

🇧🇷 45.237.246.26

🇳🇱 45.148.10.151

🇧🇷 205.210.31.141

🇧🇷 186.239.41.74

🇧🇷 186.235.193.170

🇬🇧 172.237.126.189

🇨🇳 123.121.254.10

🇨🇳 118.145.144.95

🇨🇳 58.34.152.146

🇻🇳 27.79.46.13

🇻🇳 27.79.2.165

🇹🇼 198.235.24.112

🇧🇷 186.233.118.22

🇧🇷 186.215.107.189

🇨🇷 186.177.88.123

🇺🇦 178.54.155.48