JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.253.124.118

182.253.124.118 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 60%: ?

60%

ISP	PREPAID-BIZNET-HOME
Usage Type	Fixed Line ISP
ASN	AS17451
Domain Name	biznetnetworks.com
Country	🇮🇩 Indonesia
City	Bandung, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.253.124.118

Whois 182.253.124.118

IP Abuse Reports for 182.253.124.118:

This IP address has been reported a total of 20 times from 14 distinct sources. 182.253.124.118 was first reported on May 2nd 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-15 07:06:59 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 182.253.124.118 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 182.253.124.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 03:06:54.331278 2026] [security2:error] [pid 2740:tid 2740] [client 182.253.124.118:17264] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.253.124.118 (+1 hits since last alert)\|pixelspective.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pixelspective.com"] [uri "/xmlrpc.php"] [unique_id "ai-kji5thigt9bCYMa4NJgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-15 05:33:10 (2 days ago)	Attac	Brute-Force
🇩🇪 strxmpp	2026-06-15 04:50:13 (2 days ago)	182.253.124.118 - - [15/Jun/2026:06:50:12 +0200] "POST /xmlrpc.php HTTP/1.1" 404 4279 "-" "Jetpack b ... show more 182.253.124.118 - - [15/Jun/2026:06:50:12 +0200] "POST /xmlrpc.php HTTP/1.1" 404 4279 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)" ... show less	Bad Web Bot
🇫🇷 applemooz	2026-06-15 01:35:12 (2 days ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇺🇸 WeekendWeb	2026-06-15 01:04:01 (2 days ago)	Wordpress Vunerability attack	Web App Attack
Anonymous	2026-06-12 12:55:31 (5 days ago)	[redacted] 182.253.124.118 - - [12/Jun/2026:14:54:45 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" ... show more [redacted] 182.253.124.118 - - [12/Jun/2026:14:54:45 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.1; WordPress/6.1; http://site61829989.com" [redacted] 182.253.124.118 - - [12/Jun/2026:14:54:55 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 182.253.124.118 - - [12/Jun/2026:14:55:08 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.1)" [redacted] 182.253.124.118 - - [12/Jun/2026:14:55:19 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.5; WordPress/6.4; http://site57001677.com" [redacted] 182.253.124.118 - - [12/Jun/2026:14:55:30 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" ... show less	Hacking Web App Attack
🇬🇧 Apache	2026-06-12 08:43:20 (5 days ago)	(mod_security) mod_security (id:240335) triggered by 182.253.124.118 (ID/Indonesia/-): 5 in the last ... show more (mod_security) mod_security (id:240335) triggered by 182.253.124.118 (ID/Indonesia/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 08:09:23 (5 days ago)	(mod_security) mod_security (id:240335) triggered by 182.253.124.118 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 182.253.124.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 04:09:16.279877 2026] [security2:error] [pid 15775:tid 15775] [client 182.253.124.118:2278] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.253.124.118 (+1 hits since last alert)\|souldata.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "souldata.com"] [uri "/xmlrpc.php"] [unique_id "aiu-rNVmYr8vmDobIjjGoAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-12 07:38:43 (5 days ago)	Attac	Brute-Force
🇩🇪 Marc	2026-06-12 04:00:19 (5 days ago)	182.253.124.118 - - [12/Jun/2026:05:59:58 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3467 "-" "Jetpack b ... show more 182.253.124.118 - - [12/Jun/2026:05:59:58 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3467 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.2)" 182.253.124.118 - - [12/Jun/2026:06:00:07 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3466 "-" "Jetpack by WordPress.com" 182.253.124.118 - - [12/Jun/2026:06:00:18 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3466 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.4)" show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 03:31:39 (5 days ago)	(mod_security) mod_security (id:240335) triggered by 182.253.124.118 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 182.253.124.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 23:31:31.586537 2026] [security2:error] [pid 13581:tid 13581] [client 182.253.124.118:18827] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.253.124.118 (+1 hits since last alert)\|primemanagementmn.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "primemanagementmn.com"] [uri "/xmlrpc.php"] [unique_id "ait9k3UWKykF1Ft8mG6iywAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 vaia.cloud	2026-06-12 02:24:06 (5 days ago)	trying wp-login.php/xmlrpc.php 30 times in 1 minutes	Brute-Force Web App Attack
🇲🇾 Rizzy	2026-06-12 01:58:33 (5 days ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 09:20:23 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 182.253.124.118 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 182.253.124.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 05:20:16.427983 2026] [security2:error] [pid 24333:tid 24333] [client 182.253.124.118:17853] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.253.124.118 (+1 hits since last alert)\|globalweb123.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "globalweb123.com"] [uri "/xmlrpc.php"] [unique_id "aiksUHE9PdGAF6oFxrQ3QwAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 08:49:23 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 182.253.124.118 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 182.253.124.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 04:49:15.279562 2026] [security2:error] [pid 6573:tid 6573] [client 182.253.124.118:23987] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.253.124.118 (+1 hits since last alert)\|calvaryadminservices.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "calvaryadminservices.com"] [uri "/xmlrpc.php"] [unique_id "aiklC-9zIyjtTgVZ4EUIMgAAAC4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.78.70.98

🇳🇱 176.65.139.92

🇯🇵 8.216.16.150

🇨🇳 223.74.51.20

🇮🇩 202.145.0.18

🇺🇸 172.203.224.88

🇷🇴 80.94.92.186

🇸🇬 45.78.198.199

🇬🇧 35.203.211.55

🇮🇳 103.84.236.242

🇬🇧 35.203.211.104

🇺🇸 35.95.117.117

🇨🇳 222.246.63.111

🇧🇪 198.235.24.238

🇮🇩 163.7.0.179

🇺🇸 147.185.132.148

🇺🇸 108.181.23.81

🇿🇲 102.23.122.235

🇺🇸 74.196.34.137

🇺🇸 74.7.243.224