JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.8.195.50

182.8.195.50 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 3%: ?

ISP	PT. Telekomunikasi Selular (Telkomsel) Indonesia
Usage Type	Fixed Line ISP
ASN	AS23693
Domain Name	telkomsel.co.id
Country	🇮🇩 Indonesia
City	Semarang, Central Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.8.195.50

Whois 182.8.195.50

IP Abuse Reports for 182.8.195.50:

This IP address has been reported a total of 5 times from 5 distinct sources. 182.8.195.50 was first reported on October 18th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 securejdprop	2026-06-10 07:28:26 (4 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(🐾 - 🚨 Network 🕵 sc ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(🐾 - 🚨 Network 🕵 scan 🎩 Nuclei 👨‍💻). Ip 182.8.195.50 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-10 07:28:24.68100832 +0000 UTC show less	Hacking Web App Attack
🇺🇸 rjdefrancisco	2026-01-17 08:14:57 (4 months ago)	Unwanted traffic detected by honeypot on January 16, 2026: port scans (1 port 23 scan).	Port Scan Brute-Force SSH
🇩🇪 403veli	2025-12-30 08:26:00 (5 months ago)	Confirmed malicious activity observed via T-Pot honeypot Observed 53 events on port 445 (unknown) fr ... show more Confirmed malicious activity observed via T-Pot honeypot Observed 53 events on port 445 (unknown) from 2025-12-30T08:26:00+00:00 to 2025-12-30T09:35:43.574000+00:00. Sample: {"event_type": "flow", "dest_port": 445, "src_port": 31888, "src_ip": "182.8.195.50"} show less	Brute-Force
🇵🇱 nfsec.pl	2025-12-29 03:52:57 (5 months ago)	Detected: TCP scan on port: 445 with flags: SYN	Port Scan
🇮🇩 hermawan	2025-10-18 06:34:05 (7 months ago)	[Sat Oct 18 13:33:20.082750 2025] [security2:error] [pid 3867324:tid 140268687820480] [client 182.8. ... show more [Sat Oct 18 13:33:20.082750 2025] [security2:error] [pid 3867324:tid 140268687820480] [client 182.8.195.50:46016] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i),.?[\\"'\\\\)0-9`-f][\\"'`](?:[\\"'`].?[\\"'`]\|(?:\\\\r?\\\\n)?\\\\z\|[^\\"'`]+)\|[^0-9A-Z_a-z]select.+[^0-9A-Z_a-z]?from\|(?:alter\|(?:(?:cre\|trunc\|upd)at\|renam)e\|d(?:e(?:lete\|sc)\|rop)\|(?:inser\|selec)t\|load)[\\\\s\\\\x0b]?\\\\([\\\\s\\\\x0b]?space[\\\\s\\\\x0b]?\\\\(" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "2129"] [id "942200"] [msg "Detects MySQL comment-/space-obfuscated injections and backtick termination"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: , like Gecko) Version/4.0 Chrome/140.0.7339.207 Mobile Safari/537.36 OcIdWebView ({\\x22os\\x22:\\x22Android\\x22, found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 12; CPH2127 ... show less	Hacking Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 164.92.129.176

🇳🇱 45.148.10.147

🇧🇷 34.151.194.112

🇺🇸 20.245.71.147

🇧🇷 2400:cb00:1233:1000:85df:48e0:9e06:f3eb

🇸🇬 178.128.118.215

🇬🇧 165.232.101.51

🇺🇸 137.184.144.132

🇮🇳 118.185.147.226

🇧🇷 104.22.10.77

🇺🇸 74.249.207.185

🇺🇸 66.132.195.40

🇩🇪 46.225.192.181

🇳🇱 45.148.10.152

🇳🇱 45.91.169.93

🇴🇲 37.40.90.89

🇮🇩 36.37.111.10

🇺🇸 17.253.23.206

🇯🇵 15.168.172.226

🇩🇪 194.88.98.115