JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.132.186.49

185.132.186.49 was found in our database!

This IP was reported 51 times. Confidence of Abuse is 20%: ?

20%

ISP	Digital Resources Management S.L.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	digitalrm.es
Country	🇿🇦 South Africa
City	Johannesburg, Gauteng

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.132.186.49

Whois 185.132.186.49

IP Abuse Reports for 185.132.186.49:

This IP address has been reported a total of 51 times from 24 distinct sources. 185.132.186.49 was first reported on July 28th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇦 URAN Publishing Service	2026-06-09 17:53:25 (3 weeks ago)	185.132.186.49 - - [09/Jun/2026:20:53:24 +0300] "GET /wp-content/plugins/ubh/up.php HTTP/1.1" 404 70 ... show more 185.132.186.49 - - [09/Jun/2026:20:53:24 +0300] "GET /wp-content/plugins/ubh/up.php HTTP/1.1" 404 709 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 185.132.186.49 - - [09/Jun/2026:20:53:25 +0300] "GET /wp-admin/images/bootstrap.php HTTP/1.1" 404 709 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" ... show less	Web App Attack
Anonymous	2026-06-08 06:52:53 (3 weeks ago)	185.132.186.49 - - [08/Jun/2026:08:52:03 +0200] "GET /wp-includes/blocks/ HTTP/1.1" 404 479 "-" "Moz ... show more 185.132.186.49 - - [08/Jun/2026:08:52:03 +0200] "GET /wp-includes/blocks/ HTTP/1.1" 404 479 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 185.132.186.49 - - [08/Jun/2026:08:52:03 +0200] "GET /.bod/.ll/ HTTP/1.1" 404 479 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 185.132.186.49 - - [08/Jun/2026:08:52:04 +0200] "GET /wp-content/themes/twentytwentytwo/ HTTP/1.1" 404 479 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 185.132.186.49 - - [08/Jun/2026:08:52:04 +0200] "GET /wp-includes/html-api/ HTTP/1.1" 404 479 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 185.132.186.49 - - [08/Jun/2026:08:52:05 +0200] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 404 479 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0 ... show less	DDoS Attack
🇫🇷 Octopuce	2026-06-05 23:40:10 (3 weeks ago)	Aggressive web search of vulnerable pages: /lock.php /wp-admin/css/colors/blue/gold.php /wp-includes ... show more Aggressive web search of vulnerable pages: /lock.php /wp-admin/css/colors/blue/gold.php /wp-includes/atomlib.php /wp-includes/rest-api/index.ph ... show less	Web App Attack
🇷🇺 sms.ru	2026-06-05 23:35:41 (3 weeks ago)	/wp-admin/css/colors/modern/	Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 11:00:37 (4 months ago)	(mod_security) mod_security (id:240000) triggered by 185.132.186.49 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 185.132.186.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 06:00:29.718311 2026] [security2:error] [pid 5092:tid 5107] [client 185.132.186.49:39313] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|guitarprimer.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "guitarprimer.com"] [uri "/images/stories/themes.php"] [unique_id "aZwzTcltzFrfzzFf1iE1cQAAAQM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-02-18 08:42:26 (4 months ago)	185.132.186.49 - - [18/Feb/2026:10:42:23 +0200] "GET /wp-includes/images/media/ HTTP/1.1" 404 276 "- ... show more 185.132.186.49 - - [18/Feb/2026:10:42:23 +0200] "GET /wp-includes/images/media/ HTTP/1.1" 404 276 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 185.132.186.49 - - [18/Feb/2026:10:42:25 +0200] "GET /wp-includes/images/smilies/ HTTP/1.1" 404 276 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" ... show less	Web App Attack
🇫🇷 dynamix	2026-02-16 03:31:11 (4 months ago)	Multiple WAF Violations	Web App Attack
🇳🇿 Antinson	2026-02-08 01:30:40 (4 months ago)	Scraping with a high error ratio and request rate	Bad Web Bot
Anonymous	2026-02-06 14:00:47 (4 months ago)	wordpress-trap	Web App Attack
🇺🇸 mnsf	2026-01-22 09:05:47 (5 months ago)	Too many Status 40X (11)	Brute-Force Web App Attack
🇩🇪 findlab	2026-01-22 02:00:22 (5 months ago)	Backdrop CMS module - forbidden user agent	Bad Web Bot Web App Attack
Anonymous	2026-01-19 18:40:15 (5 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2026-01-16 18:35:14 (5 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2026-01-13 18:30:12 (5 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
🇫🇷 dynamix	2026-01-05 11:28:17 (5 months ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 15 of 51 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 198.244.240.141

🇫🇮 178.20.210.152

🇻🇳 123.31.20.162

🇻🇳 113.160.187.54

🇲🇽 104.243.245.100

🇺🇸 104.152.52.203

🇩🇪 69.5.169.76

🇫🇷 62.210.199.83

🇳🇱 45.148.10.157

🇬🇧 35.203.210.228

🇸🇬 4.194.18.173

🇲🇽 189.167.222.105

🇲🇽 187.193.181.203

🇨🇳 144.123.37.78

🇮🇩 115.124.73.145

🇮🇩 114.10.148.244

🇺🇸 104.234.32.65

🇺🇸 104.234.32.8

🇮🇳 103.206.147.57

🇮🇩 103.138.68.157