JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 132.148.182.212

132.148.182.212 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 0%: ?

ISP	GoDaddy.com, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS398101
Hostname(s)	212.182.148.132.host.secureserver.net
Domain Name	godaddy.com
Country	🇺🇸 United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 132.148.182.212

Whois 132.148.182.212

IP Abuse Reports for 132.148.182.212:

This IP address has been reported a total of 15 times from 7 distinct sources. 132.148.182.212 was first reported on August 12th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Little Iguana	2024-12-02 19:47:23 (1 year ago)	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
🇩🇪 Little Iguana	2024-11-27 08:34:03 (1 year ago)	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
🇩🇪 Little Iguana	2024-11-23 17:34:58 (1 year ago)	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
🇭🇰 Little Iguana	2024-11-13 00:34:49 (1 year ago)	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
🇺🇸 TPI-Abuse	2024-09-19 03:05:18 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 132.148.182.212 (212.182.148.132.host.secureser ... show more (mod_security) mod_security (id:210492) triggered by 132.148.182.212 (212.182.148.132.host.secureserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 18 23:05:13.745761 2024] [security2:error] [pid 28023:tid 28023] [client 132.148.182.212:40330] [client 132.148.182.212] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.142"] [uri "/.env"] [unique_id "ZuuU6VthN48uQbueZRCQ2wAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-09-18 17:28:42 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 132.148.182.212 (212.182.148.132.host.secureser ... show more (mod_security) mod_security (id:210492) triggered by 132.148.182.212 (212.182.148.132.host.secureserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 18 13:28:37.777409 2024] [security2:error] [pid 2881:tid 2881] [client 132.148.182.212:51668] [client 132.148.182.212] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.27"] [uri "/.env"] [unique_id "ZusNxYQeDUMToGnN4kIfawAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 gu-alvareza	2024-08-31 07:05:14 (1 year ago)	WordPress.WooCommerce.Blocks.collection-data.SQL.Injection	SQL Injection Web App Attack
🇺🇸 gu-alvareza	2024-08-30 07:05:16 (1 year ago)	WordPress.WooCommerce.Blocks.collection-data.SQL.Injection	SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2024-08-20 22:23:32 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 132.148.182.212 (212.182.148.132.host.secureser ... show more (mod_security) mod_security (id:210730) triggered by 132.148.182.212 (212.182.148.132.host.secureserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 20 18:23:26.044811 2024] [security2:error] [pid 25371:tid 25371] [client 132.148.182.212:17284] [client 132.148.182.212] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|partiklezoo.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "partiklezoo.com"] [uri "/wp-content/backup-migration/complete_logs.log"] [unique_id "ZsUXXlL9j8cAehMGjVw9wwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Starburst SysOp Team	2024-08-16 16:52:00 (1 year ago)	[Fri Aug 16 16:52:37.346763 2024] [:error] [pid 288617:tid 288663] [client 132.148.182.212:48326] [c ... show more [Fri Aug 16 16:52:37.346763 2024] [:error] [pid 288617:tid 288663] [client 132.148.182.212:48326] [client 132.148.182.212] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:[\\\\x22'`](?:;? ?\\\\b(?:having\|select\|union)\\\\b ?[^\\\\s]\| ?! ?[\\\\x22'`\\\\w])\|\\\\b(?:c(?:onnection_id\|urrent_user)\|database)\\\\b ?\\\\(\|\\\\bunion\\\\b[\\\\w(\\\\s]*?select\\\\b\|\\\\buser ?\\\\(\|\\\\bschema ?\\\\(\|\\\\bselect.{0,399}?\\\\w?\\\\buser ?\\\\(\|\\\\binto[\\\\s+]+(?:dump\|o ..." at MATCHED_VAR. [file "/usr/local/apache/modsecurity-cwaf/rules/22_SQL_SQLi.conf"] [line "27"] [id "211650"] [rev "12"] [msg "COMODO WAF: Detects MSSQL code execution and information gathering attempts\|\|-\|F\|2"] [data "Matched Data: \\x22) union all select 1,option_value from wp_options where option_name like '%stripe%'; found within MATCHED_VAR: \\x22) union all select 1,option_value from wp_options where option_name like '%stripe%';"] [severity "CRITICAL"] [tag "CWAF"] [tag "SQLi"] [hostname "-" show less	Hacking Brute-Force Web App Attack
🇺🇸 mw	2024-08-16 13:23:00 (1 year ago)	nginx	Web App Attack
🇺🇸 gu-alvareza	2024-08-15 07:05:18 (1 year ago)	WordPress.WooCommerce.Blocks.collection-data.SQL.Injection	SQL Injection Web App Attack
🇺🇸 gu-alvareza	2024-08-14 07:05:24 (1 year ago)	WordPress.WooCommerce.Blocks.collection-data.SQL.Injection	SQL Injection Web App Attack
🇺🇸 C2c	2024-08-13 12:12:00 (1 year ago)	Attempted WEB-ATTACKS WordPress plugin WooCommerce SQL Injection. Hacking.	Hacking Web App Attack
🇺🇸 brantknudson.org	2024-08-12 09:16:32 (1 year ago)	Client attempted attack using request path '/wp-json/wc/store/products/collection-data' to honeypot.	Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 187.189.146.41

🇺🇸 162.214.159.200

🇺🇸 67.215.246.121

🇺🇸 66.132.195.36

🇺🇸 66.132.172.250

🇺🇸 64.62.156.191

🇧🇷 45.160.231.44

🇳🇱 45.148.10.151

🇨🇦 20.220.146.190

🇺🇸 20.168.123.252

🇺🇸 178.128.1.119

🇲🇴 125.31.2.160

🇻🇳 45.117.179.232

🇺🇸 44.31.200.245

🇳🇱 20.71.254.235

🇺🇸 20.55.223.208

🇺🇸 15.218.135.58

🇨🇳 124.117.228.98

🇺🇸 104.37.86.24

🇧🇩 103.183.68.3