JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.253.126.7

182.253.126.7 was found in our database!

This IP was reported 65 times. Confidence of Abuse is 44%: ?

44%

ISP	Biznet Networks
Usage Type	Fixed Line ISP
ASN	AS17451
Domain Name	biznetnetworks.com
Country	🇮🇩 Indonesia
City	Magelang, Central Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.253.126.7

Whois 182.253.126.7

IP Abuse Reports for 182.253.126.7:

This IP address has been reported a total of 65 times from 38 distinct sources. 182.253.126.7 was first reported on March 15th 2023, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-14 21:57:56 (3 days ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-06-06 05:31:28 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 182.253.126.7 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.253.126.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 01:31:25.350542 2026] [security2:error] [pid 5673:tid 5673] [client 182.253.126.7:53893] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.253.126.7 (+1 hits since last alert)\|guarinofurnituredesigns.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "guarinofurnituredesigns.com"] [uri "/xmlrpc.php"] [unique_id "aiOwrfXhnGjxDsz7lSJ0fQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 17:54:41 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 182.253.126.7 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.253.126.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 13:54:36.437622 2026] [security2:error] [pid 19958:tid 19958] [client 182.253.126.7:37446] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.253.126.7 (+1 hits since last alert)\|varnadorefamily.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "varnadorefamily.com"] [uri "/xmlrpc.php"] [unique_id "aiMNXGqy2m15gHRSacPSiAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-05 10:43:19 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 09:33:48 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 182.253.126.7 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.253.126.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 05:33:44.554875 2026] [security2:error] [pid 15679:tid 15679] [client 182.253.126.7:6830] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.253.126.7 (+1 hits since last alert)\|adonamusic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "adonamusic.com"] [uri "/xmlrpc.php"] [unique_id "aiKX-AUxVXl5O3nGT1fFcQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Apache	2026-06-05 08:53:01 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 182.253.126.7 (ID/Indonesia/-): 5 in the last 3 ... show more (mod_security) mod_security (id:240335) triggered by 182.253.126.7 (ID/Indonesia/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇩🇪 dbmwebdesign	2026-06-04 09:20:08 (2 weeks ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
Anonymous	2026-06-03 16:18:56 (2 weeks ago)	(wordpress) Failed wordpress login from 182.253.126.7 (ID/Indonesia/-)	Brute-Force
Anonymous	2026-06-02 09:54:16 (2 weeks ago)	Blocked by ModSec and CSF	Port Scan
🇺🇸 TPI-Abuse	2026-06-02 09:06:26 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 182.253.126.7 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.253.126.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 05:06:20.143314 2026] [security2:error] [pid 28136:tid 28136] [client 182.253.126.7:36527] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.253.126.7 (+1 hits since last alert)\|crcponcha.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "crcponcha.com"] [uri "/xmlrpc.php"] [unique_id "ah6dDCzNhxvWwSqWSD4irAAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 02:11:54 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 182.253.126.7 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.253.126.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 22:11:47.317669 2026] [security2:error] [pid 397:tid 397] [client 182.253.126.7:16917] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.253.126.7 (+1 hits since last alert)\|warpedweed.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "warpedweed.com"] [uri "/xmlrpc.php"] [unique_id "ah4740tq2o4QPHmHLaQNRAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-02 00:47:55 (2 weeks ago)	182.253.126.7 - - [02/Jun/2026:02:47:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack/12.0 ... show more 182.253.126.7 - - [02/Jun/2026:02:47:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack/12.0; WordPress/6.1; http://site93086936.com" 182.253.126.7 - - [02/Jun/2026:02:47:37 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/12.0; WordPress/6.1; http://site93086936.com" 182.253.126.7 - - [02/Jun/2026:02:47:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com" 182.253.126.7 - - [02/Jun/2026:02:47:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com" 182.253.126.7 - - [02/Jun/2026:02:47:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com" ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 23:27:57 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 182.253.126.7 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.253.126.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 19:27:53.304941 2026] [security2:error] [pid 26860:tid 26860] [client 182.253.126.7:5532] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.253.126.7 (+1 hits since last alert)\|gellertdealers.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "gellertdealers.com"] [uri "/xmlrpc.php"] [unique_id "ah4VeRjME6DmH0lloA0xfQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-01 09:30:40 (2 weeks ago)	Attac	Brute-Force
🇮🇩 David Koswari	2026-03-16 06:15:00 (3 months ago)	REQ_BLOCKED_SECURITY	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted

Showing 1 to 15 of 65 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇹 172.253.228.147

🇺🇸 159.65.169.96

🇺🇸 128.203.201.254

🇭🇰 118.193.43.158

🇻🇳 116.99.173.91

🇲🇦 102.98.99.10

🇨🇳 39.96.197.8

🇩🇪 213.209.159.227

🇨🇱 200.50.45.196

🇪🇸 196.196.150.5

🇺🇦 185.166.217.96

🇷🇴 141.98.83.240

🇩🇪 85.208.139.110

🇺🇸 23.30.86.197

🇧🇷 187.20.28.147

🇷🇺 176.15.15.70

🇸🇬 165.154.200.48

🇰🇷 121.166.47.94

🇻🇳 58.186.20.101

🇷🇴 2.57.122.238