JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.48.214.199

182.48.214.199 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 76%: ?

76%

ISP	Dvois Broadband Pvt Ltd
Usage Type	Fixed Line ISP
ASN	AS45769
Hostname(s)	182.48.214.199.dvois.com
Domain Name	dvois.com
Country	🇮🇳 India
City	Panvel, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.48.214.199

Whois 182.48.214.199

IP Abuse Reports for 182.48.214.199:

This IP address has been reported a total of 21 times from 14 distinct sources. 182.48.214.199 was first reported on January 17th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-13 17:27:37 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 182.48.214.199 (182.48.214.199.dvois.com): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 182.48.214.199 (182.48.214.199.dvois.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 13:27:31.231408 2026] [security2:error] [pid 10666:tid 10666] [client 182.48.214.199:46443] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.48.214.199 (+1 hits since last alert)\|danielbrower.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "danielbrower.com"] [uri "/xmlrpc.php"] [unique_id "ai2TAxjJRSwK_N2h5QhG8AAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-06-13 10:51:21 (2 days ago)	182.48.214.199 - - [13/Jun/2026:12:50:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Jetpack/13 ... show more 182.48.214.199 - - [13/Jun/2026:12:50:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Jetpack/13.0; WordPress/6.2; http://site43115195.com" 182.48.214.199 - - [13/Jun/2026:12:51:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Jetpack by WordPress.com" 182.48.214.199 - - [13/Jun/2026:12:51:20 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Jetpack/12.0; WordPress/6.2; http://site38918322.com" show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 10:41:25 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 182.48.214.199 (182.48.214.199.dvois.com): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 182.48.214.199 (182.48.214.199.dvois.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 06:41:19.291919 2026] [security2:error] [pid 14172:tid 14172] [client 182.48.214.199:28002] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.48.214.199 (+1 hits since last alert)\|mariettacaseyclub.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "mariettacaseyclub.org"] [uri "/xmlrpc.php"] [unique_id "ai0zz_aSBUB-gUFybN9yLQAAAD0"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-06-13 10:35:55 (2 days ago)	182.48.214.199 - - [13/Jun/2026:12:35:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Jetpack by ... show more 182.48.214.199 - - [13/Jun/2026:12:35:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.1)" 182.48.214.199 - - [13/Jun/2026:12:35:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.2)" 182.48.214.199 - - [13/Jun/2026:12:35:53 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6476 "-" "Jetpack/13.0; WordPress/6.2; http://site56518713.com" show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 09:40:59 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 182.48.214.199 (182.48.214.199.dvois.com): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 182.48.214.199 (182.48.214.199.dvois.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 05:40:55.507186 2026] [security2:error] [pid 22662:tid 22662] [client 182.48.214.199:27144] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.48.214.199 (+1 hits since last alert)\|hiidied.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "hiidied.com"] [uri "/xmlrpc.php"] [unique_id "ai0lp9xpRzjkEZM7Jo1xIwAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 09:11:54 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 182.48.214.199 (182.48.214.199.dvois.com): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 182.48.214.199 (182.48.214.199.dvois.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 05:11:48.226499 2026] [security2:error] [pid 8389:tid 8389] [client 182.48.214.199:48405] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.48.214.199 (+1 hits since last alert)\|morninginc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "morninginc.com"] [uri "/xmlrpc.php"] [unique_id "ai0e1LE3bYMTbrzAvfrDXgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-13 07:34:19 (2 days ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇩🇪 grassau.com	2026-06-13 07:02:29 (2 days ago)	(wordpress) Failed wordpress login from 182.48.214.199 (IN/India/Maharashtra/Navi Mumbai/182.48.214. ... show more (wordpress) Failed wordpress login from 182.48.214.199 (IN/India/Maharashtra/Navi Mumbai/182.48.214.199.dvois.com) show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-13 06:13:37 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 182.48.214.199 (182.48.214.199.dvois.com): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 182.48.214.199 (182.48.214.199.dvois.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 02:13:32.729398 2026] [security2:error] [pid 22130:tid 22130] [client 182.48.214.199:48837] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.48.214.199 (+1 hits since last alert)\|blacktieokc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "blacktieokc.com"] [uri "/xmlrpc.php"] [unique_id "aiz1DAjmC9TrLJvrALMkQAAAAGk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-13 06:08:46 (2 days ago)	182.48.214.199 - - [13/Jun/2026:08:08:25 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by ... show more 182.48.214.199 - - [13/Jun/2026:08:08:25 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.1)" 182.48.214.199 - - [13/Jun/2026:08:08:27 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.1)" 182.48.214.199 - - [13/Jun/2026:08:08:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com" 182.48.214.199 - - [13/Jun/2026:08:08:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com" 182.48.214.199 - - [13/Jun/2026:08:08:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com" ... show less	Brute-Force Web App Attack
Anonymous	2026-06-13 05:10:13 (3 days ago)	Attac	Brute-Force
Anonymous	2026-06-13 04:06:04 (3 days ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇫🇷 YF	2026-06-13 03:30:30 (3 days ago)	xmlrpc.php Potential DDoS or brute force	DDoS Attack Brute-Force
🇺🇸 TPI-Abuse	2026-06-13 02:56:35 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 182.48.214.199 (182.48.214.199.dvois.com): 1 in ... show more (mod_security) mod_security (id:240335) triggered by 182.48.214.199 (182.48.214.199.dvois.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 22:56:28.106926 2026] [security2:error] [pid 23213:tid 23213] [client 182.48.214.199:14178] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 182.48.214.199 (+1 hits since last alert)\|ultratecnologia.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ultratecnologia.com"] [uri "/xmlrpc.php"] [unique_id "aizG3Kr4-pw-Zzmz-eIl5gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 integrantservices.com	2026-06-12 23:58:58 (3 days ago)	(wordpress) Failed wordpress login from 182.48.214.199 (IN/India/182.48.214.199.dvois.com)	Brute-Force

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 209.71.70.120

🇺🇸 207.90.244.26

🇮🇳 122.187.235.148

🇷🇴 80.94.92.171

🇩🇪 43.165.3.187

🇺🇿 213.230.127.104

🇧🇷 205.210.31.162

🇷🇼 197.243.14.52

🇧🇷 177.118.189.11

🇺🇸 173.254.213.217

🇸🇬 167.71.195.101

🇪🇬 156.207.134.137

🇨🇳 125.122.36.17

🇻🇳 103.60.242.169

🇨🇦 24.157.90.252

🇮🇳 223.188.2.109

🇪🇨 186.3.186.131

🇮🇳 152.58.6.91

🇨🇳 144.52.249.177

🇭🇰 118.26.36.18