JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.57.25.82

202.57.25.82 was found in our database!

This IP was reported 76 times. Confidence of Abuse is 100%: ?

100%

ISP	PT Wahyu Adidaya Network
Usage Type	Fixed Line ISP
ASN	AS140469
Domain Name	wahyuadidaya.co.id
Country	🇮🇩 Indonesia
City	Semarang, Central Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.57.25.82

Whois 202.57.25.82

IP Abuse Reports for 202.57.25.82:

This IP address has been reported a total of 76 times from 38 distinct sources. 202.57.25.82 was first reported on June 12th 2025, and the most recent report was 23 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-26 03:01:26 (23 minutes ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇫🇷 Kenshin869	2026-06-25 02:09:28 (1 day ago)	Wordpress unauthorized access attempt	Brute-Force
Anonymous	2026-06-24 08:42:14 (1 day ago)	(wordpress) Failed wordpress login from 202.57.25.82 (ID/Indonesia/Central Java/Semarang/-/[redacted ... show more (wordpress) Failed wordpress login from 202.57.25.82 (ID/Indonesia/Central Java/Semarang/-/[redacted]) show less	Brute-Force
🇪🇸 alferez	2026-06-24 02:06:17 (2 days ago)	xmlrpc.php attack DOS	Hacking Exploited Host Web App Attack
🇫🇮 YF	2026-06-22 09:00:41 (3 days ago)	xmlrpc.php Potential DDoS or brute force	DDoS Attack Brute-Force
🇺🇸 TPI-Abuse	2026-06-22 06:11:52 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 202.57.25.82 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 202.57.25.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 02:11:45.370628 2026] [security2:error] [pid 19872:tid 19872] [client 202.57.25.82:56708] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 202.57.25.82 (+1 hits since last alert)\|customhumanrobots.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "customhumanrobots.com"] [uri "/xmlrpc.php"] [unique_id "ajjSIUFOVMbRUiNUtJoUrgAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 debestelapp	2026-06-22 05:10:05 (3 days ago)		Web App Attack
🇩🇪 rh24	2026-06-22 03:19:01 (4 days ago)	(wordpress) Failed wordpress login from 202.57.25.82 (ID/Indonesia/-): (CF_ENABLE)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-22 03:14:12 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 202.57.25.82 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 202.57.25.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 23:14:06.758633 2026] [security2:error] [pid 12984:tid 12984] [client 202.57.25.82:57737] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|modmove.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "modmove.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajiofp8Lf6hiQpsGyKteowAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 DocNetzwerk	2026-06-21 01:52:32 (5 days ago)	202.57.25.82 (ID/Indonesia/-), more than 7 Apache 403 hits	Hacking
🇪🇸 masterguru	2026-06-20 06:41:22 (5 days ago)	(xmlrpc) Failed xmlrpc access from 202.57.25.82 (ID/Indonesia/-): 5 in the last 3600 secs (0-122)	Hacking
🇳🇱 Site.eu	2026-06-10 05:30:50 (2 weeks ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇳🇱 Site.eu	2026-06-08 04:47:39 (2 weeks ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇩🇪 rh24	2026-06-07 08:02:43 (2 weeks ago)	(wordpress) Failed wordpress login from 202.57.25.82 (ID/Indonesia/-): (CF_ENABLE)	Brute-Force
🇺🇸 WellSpring	2026-06-07 07:23:36 (2 weeks ago)	xmlrpc exploit on 785.today/xmlrpc.php — WellSpr.ing/NetSentinel civic-AI security layer	Brute-Force Web App Attack

Showing 1 to 15 of 76 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.77

🇬🇧 185.127.70.5

🇮🇹 158.173.77.114

🇦🇫 149.54.40.222

🇬🇧 188.240.59.24

🇫🇮 185.148.3.161

🇳🇱 178.16.53.8

🇩🇪 176.116.22.132

🇺🇦 176.103.7.125

🇺🇸 172.202.49.251

🇵🇪 149.34.48.186

🇺🇸 144.172.106.24

🇳🇱 89.248.173.215

🇵🇱 87.251.64.145

🇧🇬 78.128.113.22

🇳🇱 45.148.10.152

🇭🇰 43.159.196.197

🇳🇱 35.204.134.146

🇬🇧 194.50.235.138

🇰🇷 175.212.33.174