JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.132.186.73

185.132.186.73 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 47%: ?

47%

ISP	Digital Resources Management S.L.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	digitalrm.es
Country	🇿🇦 South Africa
City	Johannesburg, Gauteng

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.132.186.73

Whois 185.132.186.73

IP Abuse Reports for 185.132.186.73:

This IP address has been reported a total of 36 times from 27 distinct sources. 185.132.186.73 was first reported on July 6th 2024, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Octopuce	2026-06-28 19:55:08 (13 hours ago)	Aggressive web search of vulnerable pages: /wp-json/wp/v2/give_forms/ /wp-json/bricks/v1/render_elem ... show more Aggressive web search of vulnerable pages: /wp-json/wp/v2/give_forms/ /wp-json/bricks/v1/render_element/ /wp-admin/network/network.php /admin/u ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-28 18:34:05 (14 hours ago)	(mod_security) mod_security (id:240000) triggered by 185.132.186.73 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 185.132.186.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 14:34:01.157405 2026] [security2:error] [pid 2212:tid 2212] [client 185.132.186.73:56663] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|ebookthrillers.xyz\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "ebookthrillers.xyz"] [uri "/images/stories/themes.php"] [unique_id "akFpGcnf1k-c1NF7fv8RvgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Vegascosmetics	2026-06-26 13:48:38 (2 days ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after PHP/webshell probe. Vegas Security	Hacking Web App Attack
🇩🇪 reznekcs	2026-06-14 14:32:32 (2 weeks ago)	F2B wordpress ban. Logs: 185.132.186.73 - - [14/Jun/2026:16:30:07 +0200] "POST /xmlrpc.php HTTP/1.1" ... show more F2B wordpress ban. Logs: 185.132.186.73 - - [14/Jun/2026:16:30:07 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4246 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.1)" 185.132.186.73 - - [14/Jun/2026:16:32:30 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4246 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.2)" show less	Brute-Force Web App Attack
🇩🇪 Petros Stefanakis	2026-06-14 05:20:43 (2 weeks ago)	(wordpress) Failed wordpress login from 185.132.186.73 (-)	Brute-Force
Anonymous	2026-06-12 19:37:36 (2 weeks ago)	185.132.186.73 - - [12/Jun/2026:21:37:15 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.c ... show more 185.132.186.73 - - [12/Jun/2026:21:37:15 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com" 185.132.186.73 - - [12/Jun/2026:21:37:16 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com" 185.132.186.73 - - [12/Jun/2026:21:37:24 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.1)" 185.132.186.73 - - [12/Jun/2026:21:37:25 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.1)" 185.132.186.73 - - [12/Jun/2026:21:37:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com" ... show less	Brute-Force Web App Attack
🇷🇴 INTEQ	2026-06-12 09:53:27 (2 weeks ago)	Web attack from 185.132.186.73	Web App Attack
🇫🇷 dynamix	2026-06-10 13:27:26 (2 weeks ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇫🇮 bittiguru.fi	2026-05-31 20:43:12 (4 weeks ago)	185.132.186.73 - [31/May/2026:23:43:02 +0300] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "WordPress.com ... show more 185.132.186.73 - [31/May/2026:23:43:02 +0300] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "WordPress.com; https://wordpress.com" "-" 185.132.186.73 - [31/May/2026:23:43:11 +0300] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "Jetpack/12.0; WordPress/6.1; http://site72293049.com" "-" ... show less	Hacking Brute-Force Web App Attack
Anonymous	2026-05-31 18:45:10 (4 weeks ago)	Attac	Brute-Force
🇨🇭 blinx	2026-03-02 22:42:53 (3 months ago)	Suspicious activity detected by Modsecurity	Web Spam Port Scan Hacking Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-05 11:13:01 (4 months ago)	Blocking for trying to access an exploit file: ///vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php	Hacking
🇺🇸 myagent.site	2026-02-05 04:03:13 (4 months ago)	Blocking for trying to access an exploit file: //vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php	Hacking
🇨🇭 zynex	2026-01-05 18:59:28 (5 months ago)	URL Probing: /mah.php	Web App Attack
🇺🇸 mnsf	2026-01-05 03:05:12 (5 months ago)	Too many Status 50X (27)	Brute-Force Web App Attack

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 217.142.188.18

🇺🇸 172.253.210.92

🇭🇰 118.193.32.34

🇺🇸 20.168.6.22

🇧🇷 177.221.5.113

🇮🇳 168.144.95.137

🇮🇳 152.57.94.81

🇺🇸 139.144.239.72

🇩🇪 104.28.163.88

🇮🇩 103.148.100.146

🇹🇼 101.13.4.128

🇺🇸 65.49.1.217

🇺🇸 44.90.225.149

🇨🇳 40.162.82.213

🇭🇰 20.205.14.12

🇦🇺 203.12.14.201

🇭🇺 193.68.57.43

🇺🇸 167.99.10.203

🇹🇷 94.154.43.130

🇫🇷 91.231.89.64