JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 134.149.82.105

134.149.82.105 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇮🇪 Ireland
City	Dublin, Leinster

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 134.149.82.105

Whois 134.149.82.105

IP Abuse Reports for 134.149.82.105:

This IP address has been reported a total of 33 times from 21 distinct sources. 134.149.82.105 was first reported on May 14th 2025, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2025-05-14 20:02:32 (1 year ago)	VM5 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇫🇮 JimArchon72	2025-05-14 17:55:01 (1 year ago)	2025/05/14 17:51:16 "GET /wp-admin/autoload_classmap.php HTTP/1.1"	Web App Attack
🇺🇸 TPI-Abuse	2025-05-14 17:51:24 (1 year ago)	(mod_security) mod_security (id:240000) triggered by 134.149.82.105 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 134.149.82.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 14 13:51:19.921702 2025] [security2:error] [pid 307410:tid 307410] [client 134.149.82.105:7718] [client 134.149.82.105] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|multimediaperformances.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "multimediaperformances.com"] [uri "/images/stories/admin-post.php"] [unique_id "aCTYFy5A8D3dOV9JVfLtvQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 vaia.cloud	2025-05-14 17:29:02 (1 year ago)	trying wp-login.php/xmlrpc.php 75 times in 1 minutes	Brute-Force Web App Attack
Anonymous	2025-05-14 17:24:28 (1 year ago)	Inappropriate script execution attempts	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-05-14 17:19:05 (1 year ago)	(mod_security) mod_security (id:240000) triggered by 134.149.82.105 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 134.149.82.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 14 13:18:58.906233 2025] [security2:error] [pid 3396151:tid 3396151] [client 134.149.82.105:3085] [client 134.149.82.105] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|partybuswhistler.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "partybuswhistler.com"] [uri "/images/stories/admin-post.php"] [unique_id "aCTQgm1WMYqbNM5kOExrOAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 Rizzy	2025-05-14 17:10:29 (1 year ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-05-14 16:40:48 (1 year ago)	(mod_security) mod_security (id:240000) triggered by 134.149.82.105 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 134.149.82.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 14 12:40:44.850460 2025] [security2:error] [pid 1909656:tid 1909656] [client 134.149.82.105:3921] [client 134.149.82.105] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|sciencehumanitiespress.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "sciencehumanitiespress.com"] [uri "/images/stories/admin-post.php"] [unique_id "aCTHjDQsFohIQWfKhPNmSgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 saloniamatteo	2025-05-14 16:20:01 (1 year ago)	134.149.82.105 - - [14/May/2025:18:19:57 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.p ... show more 134.149.82.105 - - [14/May/2025:18:19:57 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "-" gz% "-" 134.149.82.105 - - [14/May/2025:18:19:57 +0200] "GET /wp-includes/Text/network.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "-" gz% "-" 134.149.82.105 - - [14/May/2025:18:19:57 +0200] "GET /wp-content/upgrade-temp-backup/wp-login.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "-" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇸🇬 pusathosting.com	2025-05-14 16:10:06 (1 year ago)	2ds22 bruteforce	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-05-14 16:00:51 (1 year ago)	(mod_security) mod_security (id:240000) triggered by 134.149.82.105 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 134.149.82.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 14 12:00:46.620786 2025] [security2:error] [pid 3308101:tid 3308101] [client 134.149.82.105:4000] [client 134.149.82.105] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|www.voodooshop.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "www.voodooshop.com"] [uri "/images/stories/admin-post.php"] [unique_id "aCS-LlRh6ROJFNUNG8W91wAAAC0"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Apache	2025-05-14 15:35:15 (1 year ago)	(mod_security) mod_security (id:20000010) triggered by 134.149.82.105 (GB/United Kingdom/-): 5 in th ... show more (mod_security) mod_security (id:20000010) triggered by 134.149.82.105 (GB/United Kingdom/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-05-14 15:30:11 (1 year ago)	(mod_security) mod_security (id:240000) triggered by 134.149.82.105 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 134.149.82.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 14 11:30:05.360003 2025] [security2:error] [pid 2340268:tid 2340268] [client 134.149.82.105:8894] [client 134.149.82.105] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|www.adj-tech.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "www.adj-tech.net"] [uri "/images/stories/admin-post.php"] [unique_id "aCS2_Rs6dDbdkIEYjeWTHQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-05-14 15:26:13 (1 year ago)	[16:26:11] 4: Exploit attempt against non-existent file - /wp-content/plugins/hellopress/wp_filemana ... show more [16:26:11] 4: Exploit attempt against non-existent file - /wp-content/plugins/hellopress/wp_filemanager.php show less	Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-14 15:14:07 (1 year ago)	(mod_security) mod_security (id:240000) triggered by 134.149.82.105 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 134.149.82.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 14 11:13:58.771197 2025] [security2:error] [pid 2284516:tid 2284516] [client 134.149.82.105:11256] [client 134.149.82.105] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|stbensbluesfest.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "stbensbluesfest.com"] [uri "/images/stories/admin-post.php"] [unique_id "aCSzNrvPZFjKvoZtj5FVWQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 2406:da18:1f0b:bc00:ec34:cb78:7a0d:2c2

🇺🇸 208.84.100.152

🇧🇪 207.175.80.97

🇺🇸 186.244.214.71

🇨🇳 180.165.29.129

🇹🇭 147.50.255.125

🇨🇳 124.117.195.35

🇺🇸 66.132.186.129

🇵🇦 45.237.184.38

🇬🇧 217.146.80.116

🇸🇾 213.178.225.106

🇧🇷 201.17.146.173

🇧🇪 198.235.24.171

🇧🇷 192.140.64.78

🇳🇱 185.136.15.10

🇩🇪 172.236.201.228

🇺🇸 147.182.225.86

🇯🇵 136.110.98.75

🇺🇸 132.196.82.2

🇮🇳 122.177.247.111