JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.253.50.110

182.253.50.110 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 4%: ?

ISP	Biznet Prepaid
Usage Type	Fixed Line ISP
ASN	AS17451
Domain Name	biznetnetworks.com
Country	🇮🇩 Indonesia
City	Surabaya, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.253.50.110

Whois 182.253.50.110

IP Abuse Reports for 182.253.50.110:

This IP address has been reported a total of 7 times from 6 distinct sources. 182.253.50.110 was first reported on February 16th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-28 15:27:28 (1 day ago)	[Sun Jun 28 22:27:27.483923 2026] [security2:error] [pid 495353:tid 140332026021568] [client 182.253 ... show more [Sun Jun 28 22:27:27.483923 2026] [security2:error] [pid 495353:tid 140332026021568] [client 182.253.50.110:31205] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i)(?:^\|b[\\"'\\\\)\\\\[\\\\x5c](?:(?:(?:\\\\\|\\\\\|\|&&)[\\\\s\\\\x0b])?\\\\$[!#\\\$\\\\\\\\-0-9\\\\?@_a-\\\\{])?\\\\x5c?u[\\"'\\\$\\\\[\\\\x5c](?:(?:(?:\\\\\|\\\\\|\|&&)[\\\\s\\\\x0b])?\\\\$[!#\\\$\\\\\\\\-0-9\\\\?@_a-\\\\{])?\\\\x5c?s[\\"'\\\$\\\\[\\\\x5c](?:(?:(?:\\\\\|\\\\\|\|&&)[\\\\s\\\\x0b])?\\\\$[!#\\\\(\\\\*\\\\-0- ..." at ARGS_NAMES:id. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf"] [line "3256"] [id "932350"] [msg "Remote Command Execution: Direct Unix Command Execution (No Arguments)"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: id found within ARGS_NAMES:id: id request_line = GET /index.php/component/search/?Itemid=1975&catid=4362&id=555563120&format=opensearch HTTP/2.0 Reque ... show less	Email Spam Hacking
🇩🇪 london2038.com	2025-01-08 03:19:22 (1 year ago)	Connection atttempts against closed TCP ports Jan 8 04:18:47 BLOCK SRC=182.253.50.110 LEN=48 TOS=0x ... show more Connection atttempts against closed TCP ports Jan 8 04:18:47 BLOCK SRC=182.253.50.110 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=21171 DF PROTO=TCP SPT=26942 DPT=1433 WINDOW=8192 RES=0x00 SYN Jan 8 04:18:49 BLOCK SRC=182.253.50.110 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=23491 DF PROTO=TCP SPT=26942 DPT=1433 WINDOW=8192 RES=0x00 SYN Jan 8 04:19:09 BLOCK SRC=182.253.50.110 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=3865 DF PROTO=TCP SPT=25751 DPT=3306 WINDOW=8192 RES=0x00 SYN show less	Port Scan
🇧🇷 diego	2024-12-27 17:35:59 (1 year ago)	[rede-164-29] 12/27/2024-14:35:58.854116, 182.253.50.110, Protocol: 6, ET SCAN Suspicious inbound to ... show more [rede-164-29] 12/27/2024-14:35:58.854116, 182.253.50.110, Protocol: 6, ET SCAN Suspicious inbound to mySQL port 3306 show less	Hacking
Anonymous	2024-12-25 04:12:16 (1 year ago)	2024-12-25T05:12:08.132247+01:00 metalsrv dovecot: auth-worker(1171857): conn unix:auth-worker (pid= ... show more 2024-12-25T05:12:08.132247+01:00 metalsrv dovecot: auth-worker(1171857): conn unix:auth-worker (pid=1171856,uid=102): auth-worker<27>: shadow(laci,182.253.50.110,<TujWbhAqLR62/TJu>): Password mismatch (given password: 69robi02) 2024-12-25T05:12:10.579578+01:00 metalsrv dovecot: pop3-login: Disconnected: Connection closed (auth failed, 1 attempts in 3 secs): user=<laci>, method=PLAIN, rip=182.253.50.110, lip=192.168.1.253, TLS, session=<TujWbhAqLR62/TJu> 2024-12-25T05:12:16.441479+01:00 metalsrv dovecot: auth-worker(1171857): conn unix:auth-worker (pid=1171856,uid=102): auth-worker<28>: shadow(laci,182.253.50.110,<AJwYbxAqxwq2/TJu>): Password mismatch (given password: 69robi02) ... show less	Hacking Brute-Force
Anonymous	2024-09-19 11:57:14 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-09-18 05:27:10 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-02-16 08:35:34 (2 years ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 212.3.155.8

🇨🇳 182.242.168.9

🇧🇷 179.191.82.115

🇳🇱 160.119.76.41

🇮🇳 117.255.244.252

🇹🇭 110.171.151.27

🇬🇪 91.239.206.123

🇷🇺 91.133.6.3

🇬🇧 81.19.219.196

🇸🇬 47.128.61.186

🇫🇮 45.87.249.146

🇨🇳 14.103.111.13

🇺🇸 195.184.76.13

🇦🇷 186.122.177.140

🇨🇳 183.150.204.230

🇧🇷 179.184.0.32

🇩🇪 167.94.145.26

🇺🇸 155.103.69.40

🇯🇵 133.18.181.51

🇰🇷 122.153.193.187