JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.253.133.185

182.253.133.185 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 74%: ?

74%

ISP	Biznet Home
Usage Type	Fixed Line ISP
ASN	AS17451
Domain Name	biznetnetworks.com
Country	🇮🇩 Indonesia
City	Palembang, South Sumatra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.253.133.185

Whois 182.253.133.185

IP Abuse Reports for 182.253.133.185:

This IP address has been reported a total of 15 times from 12 distinct sources. 182.253.133.185 was first reported on June 9th 2026, and the most recent report was 49 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-06-13 07:18:59 (49 minutes ago)	Known malicious PHP file or CMS probe	Web App Attack
🇩🇪 rh24	2026-06-13 06:17:15 (1 hour ago)	(wordpress) Failed wordpress login from 182.253.133.185 (ID/Indonesia/-): (CF_ENABLE)	Brute-Force
🇳🇱 wlt-blocker	2026-06-13 03:49:20 (4 hours ago)	Unauthorized access to webpage admin	Web App Attack
🇳🇱 BlueWire Hosting	2026-06-13 03:43:12 (4 hours ago)	Probing websites for vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 11:33:04 (20 hours ago)	(mod_security) mod_security (id:225170) triggered by 182.253.133.185 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 182.253.133.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 07:32:56.124594 2026] [security2:error] [pid 30701:tid 30715] [client 182.253.133.185:35134] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|peterhansenranch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "peterhansenranch.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aivuaK_hjXeKXsJruvP6CQAAAcw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Tripwire	2026-06-12 11:28:32 (20 hours ago)	Probing for Wordpress - /xmlrpc.php	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 04:58:34 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 182.253.133.185 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 182.253.133.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 00:58:26.803084 2026] [security2:error] [pid 16728:tid 16728] [client 182.253.133.185:56005] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fundingangelinvestors.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fundingangelinvestors.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiuR8u8H1iIJ55WE4vYlRwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-11 23:24:19 (1 day ago)	(wordpress) Failed wordpress login from 182.253.133.185 (ID/Indonesia/-)	Brute-Force
Anonymous	2026-06-11 22:49:16 (1 day ago)	182.253.133.185 - - [12/Jun/2026:06:49:16 +0800] "POST /xmlrpc.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 ... show more 182.253.133.185 - - [12/Jun/2026:06:49:16 +0800] "POST /xmlrpc.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 10.0; x86) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-11 20:44:59 (1 day ago)	[ThuJun1122:44:54.6681772026][security2:error][pid829805:tid830202][client182.253.133.185:0]ModSecur ... show more [ThuJun1122:44:54.6681772026][security2:error][pid829805:tid830202][client182.253.133.185:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"367\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"annunci-ticino.ch\"][uri\"/xmlrpc.php\"][unique_id\"aiseRhP527rv9RcvI5NGdQAAARY\"] show less	Hacking Web App Attack
🇩🇪 grassau.com	2026-06-11 17:17:13 (1 day ago)	(wordpress) Failed wordpress login from 182.253.133.185 (ID/Indonesia/West Java/Bekasi/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-11 11:17:34 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 182.253.133.185 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 182.253.133.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 07:17:30.507760 2026] [security2:error] [pid 2845:tid 2873] [client 182.253.133.185:8170] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kettlehill.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kettlehill.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiqZStoYbzbC7XRbABsrjwAAAVg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 10:18:30 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 182.253.133.185 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 182.253.133.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 06:18:26.488713 2026] [security2:error] [pid 27430:tid 27430] [client 182.253.133.185:36743] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ideaofauniversity.website\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ideaofauniversity.website"] [uri "/wp-json/wp/v2/users"] [unique_id "aiqLcqkg1DNIX_0N0KhENgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 diego	2026-06-11 06:59:28 (2 days ago)	[rede-164-29] 06/11/2026-03:59:28.559243, 182.253.133.185, Protocol: 6, ET SCAN Suspicious inbound t ... show more [rede-164-29] 06/11/2026-03:59:28.559243, 182.253.133.185, Protocol: 6, ET SCAN Suspicious inbound to MSSQL port 1433 show less	Hacking
🇹🇷 Threat.live	2026-06-09 08:55:05 (3 days ago)	Suspicious Connection Attempts	Brute-Force

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 2404:c0:a701:8214:a10a:d32c:4d8b:b76c

🇲🇺 197.227.8.186

🇪🇨 177.53.215.134

🇩🇪 162.19.243.145

🇷🇴 80.94.92.171

🇺🇸 66.132.172.114

🇳🇱 45.148.10.141

🇬🇧 45.82.76.133

🇺🇸 24.97.253.246

🇳🇱 185.177.238.75

🇳🇱 176.65.139.231

🇮🇳 103.25.47.94

🇮🇹 83.224.182.184

🇺🇸 65.49.1.174

🇲🇾 47.250.136.200

🇵🇰 39.38.193.155

🇺🇸 34.139.244.63

🇳🇱 34.12.164.162

🇧🇷 206.0.10.206

🇲🇺 197.225.146.23