JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.66.96.106

182.66.96.106 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 69%: ?

69%

ISP	METALS AND MINERALS CORPORATION
Usage Type	Fixed Line ISP
ASN	AS9498
Hostname(s)	abts-north-dynamic-106.96.66.182.airtelbroadband.in
Domain Name	airtel.in
Country	🇮🇳 India
City	Delhi, Delhi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.66.96.106

Whois 182.66.96.106

IP Abuse Reports for 182.66.96.106:

This IP address has been reported a total of 24 times from 13 distinct sources. 182.66.96.106 was first reported on June 2nd 2026, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-16 08:33:03 (7 hours ago)	(mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182 ... show more (mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 04:32:59.407713 2026] [security2:error] [pid 11110:tid 11110] [client 182.66.96.106:55404] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.66.96.106 (+1 hits since last alert)\|gemco-mfg.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "gemco-mfg.com"] [uri "/xmlrpc.php"] [unique_id "ajEKO2qDDKkxACbDZ310xQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-15 11:46:13 (1 day ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-06-15 06:58:23 (1 day ago)	(xmlrpc) Failed xmlrpc access from 182.66.96.106 (IN/India/abts-north-dynamic-106.96.66.182.airtelbr ... show more (xmlrpc) Failed xmlrpc access from 182.66.96.106 (IN/India/abts-north-dynamic-106.96.66.182.airtelbroadband.in): 5 in the last 3600 secs (0-122) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-15 06:25:29 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182 ... show more (mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 02:25:22.757367 2026] [security2:error] [pid 21202:tid 21202] [client 182.66.96.106:63809] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.66.96.106 (+1 hits since last alert)\|coolerboxes.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "coolerboxes.com"] [uri "/xmlrpc.php"] [unique_id "ai-a0oDRTixbOPlDa5wKxQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-12 09:58:56 (4 days ago)	[ns41.kdns.gr] httpd-xmlrpc-post: sites=medisto.gr; logs=/var/log/httpd/domains/medisto.gr.log; samp ... show more [ns41.kdns.gr] httpd-xmlrpc-post: sites=medisto.gr; logs=/var/log/httpd/domains/medisto.gr.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
Anonymous	2026-06-12 08:24:10 (4 days ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-06-11 12:18:18 (5 days ago)	(mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182 ... show more (mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 08:18:12.288165 2026] [security2:error] [pid 27595:tid 27595] [client 182.66.96.106:51228] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.66.96.106 (+1 hits since last alert)\|matt-bechtel.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "matt-bechtel.com"] [uri "/xmlrpc.php"] [unique_id "aiqnhHJHTTUdqh0LnVzlCwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 11:19:37 (5 days ago)	(mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182 ... show more (mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 07:19:29.622381 2026] [security2:error] [pid 8466:tid 8466] [client 182.66.96.106:62315] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.66.96.106 (+1 hits since last alert)\|eta-mct.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "eta-mct.com"] [uri "/xmlrpc.php"] [unique_id "aiqZwZUIcUYQJ_9yzzqHTAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 07:44:35 (5 days ago)	(mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182 ... show more (mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 03:44:27.509723 2026] [security2:error] [pid 20910:tid 20910] [client 182.66.96.106:49329] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.66.96.106 (+1 hits since last alert)\|adonamusic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "adonamusic.com"] [uri "/xmlrpc.php"] [unique_id "aipnW19tN2aqJUV-tNc2SgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 11:44:46 (6 days ago)	(mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182 ... show more (mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 07:44:38.558663 2026] [security2:error] [pid 32124:tid 32124] [client 182.66.96.106:51358] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.66.96.106 (+1 hits since last alert)\|advantagept.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "advantagept.org"] [uri "/xmlrpc.php"] [unique_id "ailOJulo0dSKFXMpLJx-WwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 WeekendWeb	2026-06-10 09:58:42 (6 days ago)	Wordpress Vunerability attack	Web App Attack
🇮🇹 Progetto1	2026-06-09 08:10:27 (1 week ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 08:06:18 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182 ... show more (mod_security) mod_security (id:240335) triggered by 182.66.96.106 (abts-north-dynamic-106.96.66.182.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:06:09.605930 2026] [security2:error] [pid 26209:tid 26217] [client 182.66.96.106:64262] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.66.96.106 (+1 hits since last alert)\|strengthsmatter.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "strengthsmatter.com"] [uri "/xmlrpc.php"] [unique_id "aifJcVw1popyi7--oRzwvwAAAMU"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-09 06:21:39 (1 week ago)	Blocked by CSF 13 firewall - Rule: XMLRPC IN/India/abts-north-dynamic-106.96.66.182.airtelbroadband. ... show more Blocked by CSF 13 firewall - Rule: XMLRPC IN/India/abts-north-dynamic-106.96.66.182.airtelbroadband.in show less	Web App Attack
🇫🇷 dynamix	2026-06-09 04:49:16 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.223.235.43

🇺🇸 73.36.177.174

🇺🇸 72.18.80.230

🇮🇳 49.205.183.78

🇭🇰 46.20.109.223

🇺🇸 45.33.96.214

🇨🇳 36.32.104.89

🇹🇯 85.9.141.25

🇺🇸 66.132.172.209

🇭🇰 43.254.216.229

🇨🇳 112.86.225.186

🇸🇬 97.74.87.152

🇺🇸 45.33.96.174

🇨🇳 218.13.26.42

🇺🇸 216.218.206.91

🇸🇳 213.154.80.51

🇭🇰 199.45.154.118

🇸🇬 161.118.247.181

🇩🇪 77.110.107.31

🇵🇱 57.128.214.238