JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.8.183.118

182.8.183.118 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 77%: ?

77%

ISP	PT. Telekomunikasi Selular (Telkomsel) Indonesia
Usage Type	Fixed Line ISP
ASN	AS23693
Domain Name	telkomsel.co.id
Country	🇮🇩 Indonesia
City	Balikpapan, East Kalimantan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.8.183.118

Whois 182.8.183.118

IP Abuse Reports for 182.8.183.118:

This IP address has been reported a total of 32 times from 19 distinct sources. 182.8.183.118 was first reported on December 23rd 2025, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SpaceHost-Server	2026-06-17 22:28:07 (6 days ago)		Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2026-06-16 22:27:26 (1 week ago)		Brute-Force Web App Attack
🇺🇸 WeekendWeb	2026-06-16 06:05:19 (1 week ago)	Wordpress Vunerability attack	Web App Attack
Anonymous	2026-06-16 04:32:30 (1 week ago)	182.8.183.118 - - [16/Jun/2026:06:32:18 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 182.8.183.118 - - ... show more 182.8.183.118 - - [16/Jun/2026:06:32:18 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 182.8.183.118 - - [16/Jun/2026:06:32:29 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 ... show less	Brute-Force Bad Web Bot
Anonymous	2026-06-15 15:10:05 (1 week ago)	182.8.183.118 - - [15/Jun/2026:17:09:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by W ... show more 182.8.183.118 - - [15/Jun/2026:17:09:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com" 182.8.183.118 - - [15/Jun/2026:17:09:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com" 182.8.183.118 - - [15/Jun/2026:17:09:52 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com" 182.8.183.118 - - [15/Jun/2026:17:09:53 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com" 182.8.183.118 - - [15/Jun/2026:17:10:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com" ... show less	Brute-Force Web App Attack
Anonymous	2026-06-15 11:55:03 (1 week ago)	(wordpress) Failed wordpress login from 182.8.183.118 (ID/Indonesia/-)	Brute-Force
Anonymous	2026-06-15 11:24:40 (1 week ago)	Attac	Brute-Force
Anonymous	2026-06-15 08:18:10 (1 week ago)	[redacted] 182.8.183.118 - - [15/Jun/2026:10:17:24 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "W ... show more [redacted] 182.8.183.118 - - [15/Jun/2026:10:17:24 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 182.8.183.118 - - [15/Jun/2026:10:17:34 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.0; WordPress/6.4; http://site11382855.com" [redacted] 182.8.183.118 - - [15/Jun/2026:10:17:45 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 182.8.183.118 - - [15/Jun/2026:10:17:56 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 182.8.183.118 - - [15/Jun/2026:10:18:06 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 06:46:51 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 182.8.183.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.8.183.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 02:46:45.844429 2026] [security2:error] [pid 23208:tid 23208] [client 182.8.183.118:29470] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.8.183.118 (+1 hits since last alert)\|pcga.golf\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pcga.golf"] [uri "/xmlrpc.php"] [unique_id "ai-f1d0WBt289m3VMrgBKgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 03:01:47 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 182.8.183.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.8.183.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 23:01:42.237601 2026] [security2:error] [pid 22552:tid 22552] [client 182.8.183.118:25256] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.8.183.118 (+1 hits since last alert)\|gegkal.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "gegkal.com"] [uri "/xmlrpc.php"] [unique_id "ai9rFnMbh13vTKlI9m-fTgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-14 16:47:01 (1 week ago)	[redacted] 182.8.183.118 - - [14/Jun/2026:18:46:18 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "J ... show more [redacted] 182.8.183.118 - - [14/Jun/2026:18:46:18 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/13.0; WordPress/6.3; http://site58272026.com" [redacted] 182.8.183.118 - - [14/Jun/2026:18:46:29 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 182.8.183.118 - - [14/Jun/2026:18:46:39 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 182.8.183.118 - - [14/Jun/2026:18:46:50 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.3)" [redacted] 182.8.183.118 - - [14/Jun/2026:18:47:01 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" ... show less	Hacking Web App Attack
🇫🇷 dynamix	2026-06-14 13:58:08 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-14 11:24:37 (1 week ago)		Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 06:17:44 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 182.8.183.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.8.183.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 02:17:40.399478 2026] [security2:error] [pid 1030:tid 1052] [client 182.8.183.118:12456] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.8.183.118 (+1 hits since last alert)\|theyogicat.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "theyogicat.com"] [uri "/xmlrpc.php"] [unique_id "ai5HhEZL6_k-earW4jvhIAAAANM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 05:46:43 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 182.8.183.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 182.8.183.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 01:46:38.482960 2026] [security2:error] [pid 2077:tid 2077] [client 182.8.183.118:5745] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.8.183.118 (+1 hits since last alert)\|jessicalevant.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "jessicalevant.com"] [uri "/xmlrpc.php"] [unique_id "ai5APhD2ivNU8z3qj0Q0LQAAAC0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 107.155.88.70

🇩🇪 213.209.159.227

🇬🇧 195.140.214.19

🇭🇰 165.154.6.75

🇷🇴 141.98.83.240

🇺🇸 69.74.29.21

🇺🇸 3.131.220.121

🇷🇴 2.57.121.112

🇮🇩 2406:da19:776:6e01:d3f9:d13:5690:2a27

🇧🇪 198.235.24.129

🇹🇭 118.194.251.101

🇨🇳 113.56.35.44

🇦🇹 109.70.100.8

🇨🇦 85.217.149.42

🇱🇹 62.60.130.169

🇭🇰 20.24.219.233

🇺🇸 8.228.103.71

🇺🇸 195.184.76.92

🇳🇱 176.65.139.181

🇦🇷 170.210.136.58