JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.69.133.215

182.69.133.215 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 36%: ?

36%

ISP	ABTS DELHI, Bharti Airtel Ltd.,224, Okhla industrial Area Phase III New Delhi
Usage Type	Fixed Line ISP
ASN	AS24560
Hostname(s)	abts-north-dynamic-215.133.69.182.airtelbroadband.in
Domain Name	airtel.in
Country	🇮🇳 India
City	Gurugram, Haryana

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.69.133.215

Whois 182.69.133.215

IP Abuse Reports for 182.69.133.215:

This IP address has been reported a total of 10 times from 6 distinct sources. 182.69.133.215 was first reported on June 2nd 2026, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 WeekendWeb	2026-06-25 12:02:12 (8 hours ago)	Wordpress Vunerability attack	Web App Attack
🇪🇸 masterguru	2026-06-25 06:59:12 (14 hours ago)	(xmlrpc) Failed xmlrpc access from 182.69.133.215 (IN/India/abts-north-dynamic-215.133.69.182.airtel ... show more (xmlrpc) Failed xmlrpc access from 182.69.133.215 (IN/India/abts-north-dynamic-215.133.69.182.airtelbroadband.in): 5 in the last 3600 secs (0-122) show less	Hacking
🇺🇸 ambor	2026-06-19 11:06:15 (6 days ago)	Honeypot access: WordPress XML-RPC attack attempt. Path: /xmlrpc.php	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 06:21:23 (6 days ago)	(mod_security) mod_security (id:240335) triggered by 182.69.133.215 (abts-north-dynamic-215.133.69.1 ... show more (mod_security) mod_security (id:240335) triggered by 182.69.133.215 (abts-north-dynamic-215.133.69.182.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 02:21:14.438225 2026] [security2:error] [pid 19430:tid 19430] [client 182.69.133.215:48322] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.69.133.215 (+1 hits since last alert)\|seabreezeculvert.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "seabreezeculvert.com"] [uri "/xmlrpc.php"] [unique_id "ajTf2kzTb0JiSnFOY4Ml1QAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 11:32:51 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 182.69.133.215 (abts-north-dynamic-215.133.69.1 ... show more (mod_security) mod_security (id:240335) triggered by 182.69.133.215 (abts-north-dynamic-215.133.69.182.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 07:32:44.842367 2026] [security2:error] [pid 22515:tid 22515] [client 182.69.133.215:43436] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.69.133.215 (+1 hits since last alert)\|pcga.golf\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pcga.golf"] [uri "/xmlrpc.php"] [unique_id "ajKF3PhPe2ocKYcKNy_k0gAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 10:42:24 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 182.69.133.215 (abts-north-dynamic-215.133.69.1 ... show more (mod_security) mod_security (id:240335) triggered by 182.69.133.215 (abts-north-dynamic-215.133.69.182.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 06:42:19.705899 2026] [security2:error] [pid 16559:tid 16559] [client 182.69.133.215:45922] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.69.133.215 (+1 hits since last alert)\|timetemple.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "timetemple.org"] [uri "/xmlrpc.php"] [unique_id "ai_XC17gJRfvJbjFNEneYQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 11:18:05 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 182.69.133.215 (abts-north-dynamic-215.133.69.1 ... show more (mod_security) mod_security (id:240335) triggered by 182.69.133.215 (abts-north-dynamic-215.133.69.182.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 07:17:59.933437 2026] [security2:error] [pid 12703:tid 12703] [client 182.69.133.215:49846] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.69.133.215 (+1 hits since last alert)\|ixd.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ixd.net"] [uri "/xmlrpc.php"] [unique_id "aiFe57orDWo9d9AqEHxQygAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 10:34:08 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 182.69.133.215 (abts-north-dynamic-215.133.69.1 ... show more (mod_security) mod_security (id:240335) triggered by 182.69.133.215 (abts-north-dynamic-215.133.69.182.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 06:34:01.548592 2026] [security2:error] [pid 25523:tid 25523] [client 182.69.133.215:40734] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.69.133.215 (+1 hits since last alert)\|usaenquirer.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "usaenquirer.com"] [uri "/xmlrpc.php"] [unique_id "aiFUmZljzUGqXQv8INCAlAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 stinpriza	2026-06-04 05:36:41 (3 weeks ago)	Web App Attack	Web App Attack
🇮🇹 sssrit	2026-06-02 12:16:20 (3 weeks ago)	182.69.133.215 - - [02/Jun/2026:14:16:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 477 "-" "WordPress.c ... show more 182.69.133.215 - - [02/Jun/2026:14:16:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 477 "-" "WordPress.com; https://wordpress.com" 182.69.133.215 - - [02/Jun/2026:14:16:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 477 "-" "Jetpack by WordPress.com" ... show less	Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.205

🇲🇽 187.202.180.185

🇫🇷 185.182.186.243

🇳🇱 204.76.203.219

🇸🇪 195.178.191.5

🇧🇩 103.112.62.144

🇫🇷 91.196.152.124

🇳🇱 91.92.42.243

🇫🇷 85.217.140.52

🇺🇸 66.132.172.238

🇰🇷 210.114.22.126

🇨🇴 200.118.199.210

🇬🇧 193.176.29.4

🇸🇪 172.232.153.52

🇭🇰 154.201.65.94

🇮🇩 103.78.104.80

🇨🇳 81.70.28.26

🇫🇮 80.223.198.246

🇺🇸 66.132.186.218

🇨🇳 222.195.92.204