JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.189.50.84

182.189.50.84 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 31%: ?

31%

ISP	Soft-X
Usage Type	Fixed Line ISP
ASN	AS17557
Domain Name	ptcl.net.pk
Country	🇵🇰 Pakistan
City	Lahore, Punjab

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.189.50.84

Whois 182.189.50.84

IP Abuse Reports for 182.189.50.84:

This IP address has been reported a total of 8 times from 4 distinct sources. 182.189.50.84 was first reported on June 25th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-25 16:03:56 (5 hours ago)	(mod_security) mod_security (id:240335) triggered by 182.189.50.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.189.50.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 12:03:53.096380 2026] [security2:error] [pid 3575:tid 3579] [client 182.189.50.84:50796] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.189.50.84 (+1 hits since last alert)\|peterhansenranch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "peterhansenranch.com"] [uri "/xmlrpc.php"] [unique_id "aj1RaRfVWaKB3QMfqr7i8QAAAEI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-25 16:02:45 (5 hours ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇺🇸 TPI-Abuse	2026-06-25 14:53:43 (6 hours ago)	(mod_security) mod_security (id:240335) triggered by 182.189.50.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.189.50.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 10:53:36.954043 2026] [security2:error] [pid 14287:tid 14287] [client 182.189.50.84:65331] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.189.50.84 (+1 hits since last alert)\|godcanuseyou.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "godcanuseyou.com"] [uri "/xmlrpc.php"] [unique_id "aj1A8MNlBXXs0TdqqZdWBgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 14:21:27 (6 hours ago)	(mod_security) mod_security (id:240335) triggered by 182.189.50.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.189.50.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 10:21:20.036958 2026] [security2:error] [pid 29329:tid 29329] [client 182.189.50.84:50035] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.189.50.84 (+1 hits since last alert)\|oakvillenaturopathicclinic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "oakvillenaturopathicclinic.com"] [uri "/xmlrpc.php"] [unique_id "aj05YPMvgPYMkZE530SLtQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 09:10:29 (11 hours ago)	(mod_security) mod_security (id:240335) triggered by 182.189.50.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.189.50.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 05:10:24.154787 2026] [security2:error] [pid 17192:tid 17192] [client 182.189.50.84:55705] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.189.50.84 (+1 hits since last alert)\|frogdesignmexico.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "frogdesignmexico.com"] [uri "/xmlrpc.php"] [unique_id "ajzwgEX9GbEjTzNk22yfkwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Apache	2026-06-25 08:42:13 (12 hours ago)	(mod_security) mod_security (id:240335) triggered by 182.189.50.84 (PK/Pakistan/-): 5 in the last 30 ... show more (mod_security) mod_security (id:240335) triggered by 182.189.50.84 (PK/Pakistan/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 06:37:22 (14 hours ago)	(mod_security) mod_security (id:240335) triggered by 182.189.50.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.189.50.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 02:37:18.477986 2026] [security2:error] [pid 3011:tid 3011] [client 182.189.50.84:63807] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.189.50.84 (+1 hits since last alert)\|kaylamaclaincounseling.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kaylamaclaincounseling.com"] [uri "/xmlrpc.php"] [unique_id "ajzMnpiwQwFrCO6AgRrq4wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 WeekendWeb	2026-06-25 06:34:32 (14 hours ago)	Wordpress Vunerability attack	Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 2804:1b3:9801:55cf:686d:1165:15e0:e9d4

🇰🇷 210.104.222.189

🇨🇳 171.104.143.176

🇩🇪 167.94.146.71

🇻🇳 103.167.89.222

🇧🇩 103.119.177.43

🇺🇸 91.230.168.121

🇱🇹 45.227.254.170

🇮🇩 163.7.11.155

🇳🇬 103.97.91.27

🇨🇳 223.101.72.136

🇨🇳 220.181.108.166

🇺🇸 213.201.243.200

🇪🇨 186.68.83.104

🇧🇷 177.75.137.163

🇺🇸 136.144.33.229

🇨🇳 116.179.32.165

🇳🇱 91.92.40.7

🇫🇷 85.217.140.39

🇨🇳 223.108.185.218