JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.8.226.75

182.8.226.75 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 29%: ?

29%

ISP	PT. Telekomunikasi Selular (Telkomsel) Indonesia
Usage Type	Fixed Line ISP
ASN	AS23693
Domain Name	telkomsel.co.id
Country	🇮🇩 Indonesia
City	Yogyakarta, Yogyakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.8.226.75

Whois 182.8.226.75

IP Abuse Reports for 182.8.226.75:

This IP address has been reported a total of 15 times from 11 distinct sources. 182.8.226.75 was first reported on July 27th 2025, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Birdo	2026-06-09 02:25:50 (7 hours ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇩🇪 ghostwarriors	2026-06-08 01:50:34 (1 day ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇮🇩 hermawan	2026-06-02 15:01:47 (6 days ago)	[Tue Jun 02 22:01:46.779722 2026] [security2:error] [pid 13747:tid 139947248883392] [client 182.8.22 ... show more [Tue Jun 02 22:01:46.779722 2026] [security2:error] [pid 13747:tid 139947248883392] [client 182.8.226.75:34498] ModSecurity: Access denied with code 403 (phase 1). Match of "pm www.office.com powerpoint.officeapps.live.com /offline-service-worker-19-02-2025.js /offline-service-worker-27-01-2024-v5-0-1.js /offline-service-worker-01-08-2023-v4-5-1.js /OneSignalSDKWorker.js /worker-analytic-helper-27-11-2022.js/ /worker-analyti ..." against "REQUEST_HEADERS:Referer" required. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "580"] [id "440067"] [msg "BAD Referer"] [data "Matched Data: staklim-jatim.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.perplexity.ai/ request_line = GET /images/Klimatologi/Prakiraan/Peringatan_Dini/2025/03_Maret_2025/24_MARET%E2%80%9302_APRIL_2025/Press_Release_Kewaspadaan_Peningkatan_Cuaca_Ekstrem_Di_Jawa_Timur_Pada_Tanggal_24_Maret-02_April_2025.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jat ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-31 11:29:04 (1 week ago)	[Sun May 31 18:28:59.853891 2026] [security2:error] [pid 1095544:tid 140573594859200] [client 182.8. ... show more [Sun May 31 18:28:59.853891 2026] [security2:error] [pid 1095544:tid 140573594859200] [client 182.8.226.75:1024] ModSecurity: Access denied with code 403 (phase 1). Match of "pm www.office.com powerpoint.officeapps.live.com /offline-service-worker-19-02-2025.js /offline-service-worker-27-01-2024-v5-0-1.js /offline-service-worker-01-08-2023-v4-5-1.js /OneSignalSDKWorker.js /worker-analytic-helper-27-11-2022.js/ /worker-analyti ..." against "REQUEST_HEADERS:Referer" required. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "580"] [id "440067"] [msg "BAD Referer"] [data "Matched Data: staklim-jatim.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.perplexity.ai/ request_line = GET /images/Klimatologi/Prakiraan/Peringatan_Dini/2025/03_Maret_2025/24_MARET%E2%80%9302_APRIL_2025/Press_Release_Kewaspadaan_Peningkatan_Cuaca_Ekstrem_Di_Jawa_Timur_Pada_Tanggal_24_Maret-02_April_2025.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-ja ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-29 01:05:30 (1 week ago)	[Fri May 29 08:05:27.654418 2026] [security2:error] [pid 1180378:tid 139852146259648] [client 182.8. ... show more [Fri May 29 08:05:27.654418 2026] [security2:error] [pid 1180378:tid 139852146259648] [client 182.8.226.75:6071] ModSecurity: Access denied with code 403 (phase 1). Match of "pm www.office.com powerpoint.officeapps.live.com /offline-service-worker-19-02-2025.js /offline-service-worker-27-01-2024-v5-0-1.js /offline-service-worker-01-08-2023-v4-5-1.js /OneSignalSDKWorker.js /worker-analytic-helper-27-11-2022.js/ /worker-analyti ..." against "REQUEST_HEADERS:Referer" required. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "580"] [id "440067"] [msg "BAD Referer"] [data "Matched Data: staklim-jatim.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.perplexity.ai/ request_line = GET /images/Klimatologi/Prakiraan/Peringatan_Dini/2025/03_Maret_2025/24_MARET%E2%80%9302_APRIL_2025/Press_Release_Kewaspadaan_Peningkatan_Cuaca_Ekstrem_Di_Jawa_Timur_Pada_Tanggal_24_Maret-02_April_2025.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-ja ... show less	Email Spam Hacking
🇫🇷 ingroscart.it	2026-05-21 09:27:06 (2 weeks ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted] from 182.8.226.75 (ID/Ind ... show more (apache-useragents) Failed apache-useragents trigger with match [redacted] from 182.8.226.75 (ID/Indonesia/-) show less	Bad Web Bot
🇺🇸 matt	2026-03-02 21:51:39 (3 months ago)	DDOS attack with query parameters attempting to overload WordPress site.	DDoS Attack
🇮🇹 VHosting	2025-12-23 16:15:18 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇪🇸 el-brujo	2025-12-23 05:10:00 (5 months ago)	DDoS Attack Layer 7	DDoS Attack
🇮🇩 Burayot	2025-11-25 14:47:32 (6 months ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 182.8.226.75 (ID/Indonesia/-): 2 in ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 182.8.226.75 (ID/Indonesia/-): 2 in the last 3600 secs show less	Web App Attack
🇹🇷 rtbh.com.tr	2025-11-14 04:09:54 (6 months ago)	list.rtbh.com.tr report: tcp/445	Brute-Force
🇵🇱 nfsec.pl	2025-10-02 06:05:48 (8 months ago)	Detected: TCP scan on port: 445 with flags: SYN	Port Scan
🇨🇭 backslash	2025-09-03 19:51:54 (9 months ago)		Bad Web Bot
🇮🇩 hermawan	2025-08-05 07:50:13 (10 months ago)	[Tue Aug 05 14:48:50.359106 2025] [security2:error] [pid 416250:tid 139996143974080] [client 182.8.2 ... show more [Tue Aug 05 14:48:50.359106 2025] [security2:error] [pid 416250:tid 139996143974080] [client 182.8.226.75:17140] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i),.?[\\"'\\\\)0-9`-f][\\"'`](?:[\\"'`].?[\\"'`]\|(?:\\\\r?\\\\n)?\\\\z\|[^\\"'`]+)\|[^0-9A-Z_a-z]select.+[^0-9A-Z_a-z]?from\|(?:alter\|(?:(?:cre\|trunc\|upd)at\|renam)e\|d(?:e(?:lete\|sc)\|rop)\|(?:inser\|selec)t\|load)[\\\\s\\\\x0b]?\\\\([\\\\s\\\\x0b]?space[\\\\s\\\\x0b]?\\\\(" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "2129"] [id "942200"] [msg "Detects MySQL comment-/space-obfuscated injections and backtick termination"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: , like Gecko) Version/4.0 Chrome/138.0.7204.169 Mobile Safari/537.36 OcIdWebView ({\\x22os\\x22:\\x22Android\\x22, found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 14; SM-A045F ... show less	Hacking Web App Attack
🇮🇹 VHosting	2025-07-27 16:50:49 (10 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 220.127.148.6

🇩🇪 167.94.146.61

🇨🇳 117.87.167.32

🇬🇧 35.203.211.143

🇱🇧 185.192.162.130

🇺🇸 164.92.82.91

🇱🇹 81.30.98.144

🇨🇳 60.10.50.90

🇰🇷 14.48.251.107

🇨🇦 13.71.185.109

🇷🇴 2.57.122.177

🇺🇸 216.55.146.55

🇹🇷 213.43.22.136

🇧🇪 198.235.24.227

🇺🇸 172.110.223.97

🇧🇷 128.201.9.152

🇰🇷 118.37.214.187

🇻🇳 113.160.219.252

🇬🇧 87.236.176.95

🇷🇺 81.211.72.167