JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.48.213.119

182.48.213.119 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 46%: ?

46%

ISP	Dvois Broadband Pvt Ltd
Usage Type	Fixed Line ISP
ASN	AS45769
Hostname(s)	182.48.213.119.dvois.com
Domain Name	dvois.com
Country	🇮🇳 India
City	Panvel, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.48.213.119

Whois 182.48.213.119

IP Abuse Reports for 182.48.213.119:

This IP address has been reported a total of 14 times from 9 distinct sources. 182.48.213.119 was first reported on June 7th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-11 09:48:29 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 182.48.213.119 (182.48.213.119.dvois.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 182.48.213.119 (182.48.213.119.dvois.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 05:48:24.375039 2026] [security2:error] [pid 25624:tid 25624] [client 182.48.213.119:42091] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|havenlaneministries.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "havenlaneministries.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiqEaKqLcxfh0TT828SDQgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-10 20:10:28 (1 week ago)	182.48.213.119 - - [10/Jun/2026:20:10:28 +0000] "POST /xmlrpc.php HTTP/1.1" 404 5697 "-" "Mozilla/5. ... show more 182.48.213.119 - - [10/Jun/2026:20:10:28 +0000] "POST /xmlrpc.php HTTP/1.1" 404 5697 "-" "Mozilla/5.0 (Windows NT 6.2; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/82.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-10 09:08:24 (1 week ago)	[WedJun1011:08:18.6040002026][security2:error][pid121626:tid121703][client182.48.213.119:0]ModSecuri ... show more [WedJun1011:08:18.6040002026][security2:error][pid121626:tid121703][client182.48.213.119:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"cpfacilityservices.ch\"][uri\"/xmlrpc.php\"][unique_id\"aikpgjvA7WEtvLc_yBG07QAAAJA\"] show less	Port Scan Brute-Force Web App Attack
Anonymous	2026-06-10 07:27:09 (1 week ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇩🇪 big-cloud.nl	2026-06-09 20:16:48 (1 week ago)	Try to access /xmlrpc.php	Web App Attack
🇺🇸 lostswordfish.com	2026-06-09 14:34:06 (1 week ago)	Wordfence waf block on hope4scranton	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 13:59:51 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 182.48.213.119 (182.48.213.119.dvois.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 182.48.213.119 (182.48.213.119.dvois.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:59:43.454490 2026] [security2:error] [pid 28345:tid 28345] [client 182.48.213.119:41486] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|hookedupfishing.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "hookedupfishing.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aigcTzUa12kDNvRmCXLU4wAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TAY	2026-06-09 09:58:37 (1 week ago)	182.48.213.119 - - [09/Jun/2026:17:56:23 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6321 "-" "Mozilla/5. ... show more 182.48.213.119 - - [09/Jun/2026:17:56:23 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6321 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/81.0.0.0 Safari/537.36" 182.48.213.119 - - [09/Jun/2026:17:58:17 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6321 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/68.0.0.0 Safari/537.36" 182.48.213.119 - - [09/Jun/2026:17:58:36 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6321 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/81.0.0.0 Safari/537.36" ... show less	Brute-Force
🇩🇪 Dominik Lysiak	2026-06-09 09:14:15 (1 week ago)	182.48.213.119 - - [09/Jun/2026:11:14:08 +0200] "POST /xmlrpc.php HTTP/1.1" 404 150 "-" "Mozilla/5.0 ... show more 182.48.213.119 - - [09/Jun/2026:11:14:08 +0200] "POST /xmlrpc.php HTTP/1.1" 404 150 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/74.0.0.0 Safari/537.36" 182.48.213.119 - - [09/Jun/2026:11:14:12 +0200] "POST /xmlrpc.php HTTP/1.1" 404 150 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.0.0 Safari/537.36" 182.48.213.119 - - [09/Jun/2026:11:14:14 +0200] "POST /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/13.0.0.0 Safari/537.36" ... show less	Web App Attack
🇺🇸 TAY	2026-06-09 08:46:10 (1 week ago)	182.48.213.119 - - [09/Jun/2026:16:44:58 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6321 "-" "Mozilla/5. ... show more 182.48.213.119 - - [09/Jun/2026:16:44:58 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6321 "-" "Mozilla/5.0 (Windows NT 6.3; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36" 182.48.213.119 - - [09/Jun/2026:16:45:33 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6321 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/13.0.0.0 Safari/537.36" 182.48.213.119 - - [09/Jun/2026:16:46:09 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6321 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; x86) AppleWebKit/537.36 (KHTML, like Gecko) Safari/10.0.0.0 Safari/537.36" ... show less	Brute-Force
🇺🇸 TAY	2026-06-08 07:46:08 (2 weeks ago)	182.48.213.119 - - [08/Jun/2026:15:41:48 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6389 "-" "Mozilla/5. ... show more 182.48.213.119 - - [08/Jun/2026:15:41:48 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6389 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; x86) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36" 182.48.213.119 - - [08/Jun/2026:15:45:39 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6389 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x86) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/98.0.0.0 Safari/537.36" 182.48.213.119 - - [08/Jun/2026:15:46:07 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6389 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/85.0.0.0 Safari/537.36" ... show less	Brute-Force
🇳🇱 wlt-blocker	2026-06-07 19:36:26 (2 weeks ago)	Unauthorized access to webpage admin	Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 19:29:03 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 182.48.213.119 (182.48.213.119.dvois.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 182.48.213.119 (182.48.213.119.dvois.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 15:29:00.397081 2026] [security2:error] [pid 13921:tid 13921] [client 182.48.213.119:60970] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|realdoctorstories.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "realdoctorstories.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiXGfJz2zm65tIFOxQJL5wAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 17:27:28 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 182.48.213.119 (182.48.213.119.dvois.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 182.48.213.119 (182.48.213.119.dvois.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 13:27:24.663242 2026] [security2:error] [pid 2415:tid 2415] [client 182.48.213.119:21776] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ospectra.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ospectra.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiWp_Bv9S5hH22fxfvcElQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.253.221.16

🇱🇹 141.98.9.109

🇻🇳 118.71.172.106

🇧🇬 87.246.54.153

🇸🇦 87.237.225.35

🇳🇱 45.198.224.240

🇧🇩 43.224.117.118

🇳🇱 34.6.144.69

🇳🇱 5.255.104.228

🇺🇸 2001:470:1:fb5::1c0

🇺🇸 216.180.246.134

🇺🇸 192.178.115.211

🇫🇷 161.97.91.155

🇦🇪 94.205.179.95

🇧🇷 45.187.105.203

🇬🇧 193.176.29.21

🇧🇷 187.120.29.188

🇸🇬 45.78.198.199

🇮🇩 43.245.249.251

🇨🇳 27.8.44.168