JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.8.249.148

182.8.249.148 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 49%: ?

49%

ISP	PT. Telekomunikasi Selular (Telkomsel) Indonesia
Usage Type	Fixed Line ISP
ASN	AS23693
Domain Name	telkomsel.co.id
Country	🇮🇩 Indonesia
City	Yogyakarta, Yogyakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.8.249.148

Whois 182.8.249.148

IP Abuse Reports for 182.8.249.148:

This IP address has been reported a total of 13 times from 12 distinct sources. 182.8.249.148 was first reported on May 28th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 BlueWire Hosting	2026-06-25 07:57:10 (2 days ago)	Wordpress brute force attempt	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-24 08:45:19 (3 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇫🇷 Yepngo	2026-06-24 05:13:17 (3 days ago)	182.8.249.148 - - [24/Jun/2026:07:11:10 +0200] "POST /xmlrpc.php HTTP/2.0" 200 410 "-" "WordPress.co ... show more 182.8.249.148 - - [24/Jun/2026:07:11:10 +0200] "POST /xmlrpc.php HTTP/2.0" 200 410 "-" "WordPress.com; https://wordpress.com" 182.8.249.148 - - [24/Jun/2026:07:13:17 +0200] "POST /xmlrpc.php HTTP/2.0" 200 410 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.1)" ... show less	Brute-Force Web App Attack
Anonymous	2026-06-24 04:40:56 (3 days ago)	182.8.249.148 - - [24/Jun/2026:06:40:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by W ... show more 182.8.249.148 - - [24/Jun/2026:06:40:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.2)" 182.8.249.148 - - [24/Jun/2026:06:40:37 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.2)" 182.8.249.148 - - [24/Jun/2026:06:40:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack/12.5; WordPress/6.4; http://site56725717.com" 182.8.249.148 - - [24/Jun/2026:06:40:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/12.5; WordPress/6.4; http://site56725717.com" 182.8.249.148 - - [24/Jun/2026:06:40:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by WordPress.com" ... show less	Brute-Force Web App Attack
🇳🇱 javierin	2026-06-23 07:08:46 (4 days ago)	182.8.249.148 - regalo-personalizado.es - - [23/Jun/2026:07:07:03 +0000] "POST /xmlrpc.php HTTP/1.1" ... show more 182.8.249.148 - regalo-personalizado.es - - [23/Jun/2026:07:07:03 +0000] "POST /xmlrpc.php HTTP/1.1" 503 19310 "-" "Jetpack/12.1; WordPress/6.4; http://site46242448.com" 182.8.249.148 - regalo-personalizado.es - - [23/Jun/2026:07:07:13 +0000] "POST /xmlrpc.php HTTP/1.1" 503 18297 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.3)" 182.8.249.148 - regalo-personalizado.es - - [23/Jun/2026:07:07:26 +0000] "POST /xmlrpc.php HTTP/1.1" 503 18297 "-" "WordPress.com; https://wordpress.com" 182.8.249.148 - regalo-personalizado.es - - [23/Jun/2026:07:07:38 +0000] "POST /xmlrpc.php HTTP/1.1" 503 18269 "-" "Jetpack/12.0; WordPress/6.2; http://site50094358.com" 182.8.249.148 - regalo-personalizado.es - - [23/Jun/2026:07:07:49 +0000] "POST /xmlrpc.php HTTP/1.1" 503 18269 "-" "Jetpack by WordPress.com" 182.8.249.148 - regalo-personalizado.es - - [23/Jun/2026:07:08:01 +0000] "POST /xmlrpc.php HTTP/1.1" 503 18297 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.3)" 182.8.249.148 - rega ... show less	Brute-Force Web App Attack
🇫🇷 vtchost.com	2026-06-12 05:50:57 (2 weeks ago)	Jun 12 07:50:57 vtchost kernel: [49377.119052] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11 ... show more Jun 12 07:50:57 vtchost kernel: [49377.119052] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11:cd:2a:b3:08:00 SRC=182.8.249.148 DST=161.97.181.152 LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=14034 DF PROTO=TCP SPT=24421 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇩🇪 Vegascosmetics	2026-06-01 12:55:05 (3 weeks ago)	Kingcopy(AI-IDS) Report: This IP is Banned after 3 Attacks automatically because Pattern: High Prior ... show more Kingcopy(AI-IDS) Report: This IP is Banned after 3 Attacks automatically because Pattern: High Priority: ChangeCountry - Vegascosmetics Security System show less	DDoS Attack Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 19:59:16 (3 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 sthoyer.de	2026-05-31 13:57:18 (3 weeks ago)	May 31 15:57:17 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more May 31 15:57:17 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=182.8.249.148 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=11866 DF PROTO=TCP SPT=11002 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 sthoyer.de	2026-05-31 11:51:31 (3 weeks ago)	May 31 13:51:30 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more May 31 13:51:30 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=182.8.249.148 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=4897 DF PROTO=TCP SPT=6318 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 Birdo	2026-05-30 02:56:00 (4 weeks ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇦🇺 dyln	2026-05-29 17:27:49 (4 weeks ago)	Dyls honeypot brute-force: SMB (4 total hits)	Brute-Force
🇩🇪 check-the-sum.fr	2026-05-28 07:55:53 (4 weeks ago)	Port Scanning	Port Scan

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 213.171.208.62

🇧🇷 177.131.54.31

🇳🇱 45.148.10.141

🇺🇸 2607:f8b0:4001:c0a::12e

🇧🇷 187.50.194.182

🇫🇮 147.185.133.143

🇸🇬 43.160.200.19

🇷🇺 176.120.22.34

🇸🇪 171.25.158.74

🇺🇸 165.154.182.168

🇨🇳 115.190.248.214

🇺🇸 98.184.201.201

🇷🇺 81.23.173.32

🇳🇱 45.148.10.240

🇨🇦 24.212.56.34

🇪🇸 217.154.182.55

🇺🇸 165.232.61.133

🇮🇩 163.7.1.218

🇷🇴 141.98.83.240

🇮🇳 118.185.130.194