JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.132.186.82

185.132.186.82 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 31%: ?

31%

ISP	Digital Resources Management S.L.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	digitalrm.es
Country	🇿🇦 South Africa
City	Johannesburg, Gauteng

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.132.186.82

Whois 185.132.186.82

IP Abuse Reports for 185.132.186.82:

This IP address has been reported a total of 28 times from 18 distinct sources. 185.132.186.82 was first reported on July 1st 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 WeekendWeb	2026-06-22 20:55:32 (3 days ago)	Wordpress Vunerability attack	Web App Attack
🇺🇸 TAY	2026-06-22 10:34:38 (3 days ago)	185.132.186.82 - - [22/Jun/2026:18:29:55 +0800] "POST /xmlrpc.php HTTP/1.1" 200 5979 "-" "Jetpack by ... show more 185.132.186.82 - - [22/Jun/2026:18:29:55 +0800] "POST /xmlrpc.php HTTP/1.1" 200 5979 "-" "Jetpack by WordPress.com" 185.132.186.82 - - [22/Jun/2026:18:33:23 +0800] "POST /xmlrpc.php HTTP/1.1" 200 5979 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.1)" 185.132.186.82 - - [22/Jun/2026:18:34:38 +0800] "POST /xmlrpc.php HTTP/1.1" 200 5979 "-" "WordPress.com; https://wordpress.com" ... show less	Brute-Force
🇩🇪 reznekcs	2026-06-14 14:20:02 (1 week ago)	F2B wordpress ban. Logs: 185.132.186.82 - - [14/Jun/2026:16:19:29 +0200] "POST /xmlrpc.php HTTP/1.1" ... show more F2B wordpress ban. Logs: 185.132.186.82 - - [14/Jun/2026:16:19:29 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4246 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)" 185.132.186.82 - - [14/Jun/2026:16:20:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4246 "-" "Jetpack by WordPress.com" show less	Brute-Force Web App Attack
Anonymous	2026-06-07 23:26:57 (2 weeks ago)	185.132.186.82 - - [08/Jun/2026:01:26:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by ... show more 185.132.186.82 - - [08/Jun/2026:01:26:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by WordPress.com" 185.132.186.82 - - [08/Jun/2026:01:26:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com" 185.132.186.82 - - [08/Jun/2026:01:26:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" 185.132.186.82 - - [08/Jun/2026:01:26:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" 185.132.186.82 - - [08/Jun/2026:01:26:56 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack/13.0; WordPress/6.4; http://site21461462.com" ... show less	Brute-Force Web App Attack
🇫🇮 bittiguru.fi	2026-05-31 20:40:22 (3 weeks ago)	185.132.186.82 - [31/May/2026:23:40:12 +0300] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "Jetpack by Wo ... show more 185.132.186.82 - [31/May/2026:23:40:12 +0300] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.3)" "-" 185.132.186.82 - [31/May/2026:23:40:22 +0300] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "Jetpack/12.5; WordPress/6.4; http://site68563631.com" "-" ... show less	Hacking Brute-Force Web App Attack
Anonymous	2026-05-31 18:42:43 (3 weeks ago)	Attac	Brute-Force
Anonymous	2026-05-27 20:34:17 (4 weeks ago)	Attac	Brute-Force
🇺🇸 myagent.site	2026-03-12 20:17:00 (3 months ago)	Blocking for trying to access an exploit file: //xmlrpc.php?rsd	Hacking
🇺🇸 myagent.site	2026-02-05 08:38:10 (4 months ago)	Blocking for trying to access an exploit file: ///vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php	Hacking
🇺🇸 myagent.site	2026-02-05 04:12:32 (4 months ago)	Blocking for trying to access an exploit file: //vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php	Hacking
Anonymous	2026-01-06 00:12:33 (5 months ago)	Bot / scanning and/or hacking attempts: GET /admin/uploads/images/ HTTP/1.1, GET /Admin/uploads/ HTT ... show more Bot / scanning and/or hacking attempts: GET /admin/uploads/images/ HTTP/1.1, GET /Admin/uploads/ HTTP/1.1, GET /administrator/ HTTP/1.1, GET /home/ HTTP/1.1, GET /admin/controller/extension/extension/ HTTP/1.1, GET /components/ HTTP/1.1, GET /admin/images/slider/ HTTP/1.1, GET /assets/ HTTP/1.1, GET /modules/ HTTP/1.1, GET /admin/editor/ HTTP/1.1, GET /ALFA_DATA/alfacgiapi/ HTTP/1.1, GET /cgi-bin/ HTTP/1.1, GET /upload/image/ HTTP/1.1, GET /admin/uploads/ HTTP/1.1, GET /include/ HTTP/1.1, GET /blog/wp-includes/ HTTP/1.1, GET /modules/mod_simplefileuploadv1.3/elements/ HTTP/1.1, GET /admin/tmp/ HTTP/1.1 show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-01-05 18:59:49 (5 months ago)	(mod_security) mod_security (id:240000) triggered by 185.132.186.82 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 185.132.186.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 05 13:59:42.075694 2026] [security2:error] [pid 23857:tid 23857] [client 185.132.186.82:55569] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|www.radionicships.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "www.radionicships.com"] [uri "/images/stories/themes.php"] [unique_id "aVwKHjby40c9CEDRlnM6HwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-05 04:41:04 (5 months ago)	(mod_security) mod_security (id:240000) triggered by 185.132.186.82 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 185.132.186.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 04 23:40:58.553735 2026] [security2:error] [pid 17531:tid 17531] [client 185.132.186.82:41077] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "87"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|topnotchupholstery.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "topnotchupholstery.com"] [uri "/images/stories/themes.php"] [unique_id "aVtA2vg4jdpzpAifRGZcvQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-01-05 00:17:38 (5 months ago)	Multiple WAF Violations	Web App Attack
Anonymous	2025-12-31 06:56:13 (5 months ago)	wordpress-trap	Web App Attack

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 210.212.136.3

🇳🇵 103.130.207.227

🇳🇱 91.92.40.231

🇨🇦 74.116.186.121

🇬🇧 51.68.200.137

🇳🇱 45.148.10.151

🇳🇱 45.148.10.141

🇪🇸 185.74.240.230

🇺🇸 173.255.223.143

🇨🇳 116.179.33.201

🇺🇸 104.28.219.190

🇸🇦 51.223.109.132

🇱🇹 45.227.254.170

🇸🇦 34.166.5.230

🇮🇩 182.8.227.196

🇺🇸 152.32.208.9

🇫🇮 147.185.133.162

🇵🇭 123.253.137.24

🇯🇵 118.193.61.179

🇨🇳 115.190.159.225