JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.238.231.48

185.238.231.48 was found in our database!

This IP was reported 239 times. Confidence of Abuse is 40%: ?

40%

ISP	Invermae Solutions SL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	intermanaged.com
Country	🇺🇸 United States of America
City	Denver, Colorado

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.238.231.48

Whois 185.238.231.48

IP Abuse Reports for 185.238.231.48:

This IP address has been reported a total of 239 times from 101 distinct sources. 185.238.231.48 was first reported on October 31st 2022, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-08 06:13:11 (1 week ago)	185.238.231.48 - - [08/Jun/2026:08:13:10 +0200] "GET /wp-content/security.php HTTP/1.1" 404 434 "-" ... show more 185.238.231.48 - - [08/Jun/2026:08:13:10 +0200] "GET /wp-content/security.php HTTP/1.1" 404 434 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 185.238.231.48 - - [08/Jun/2026:08:13:10 +0200] "GET /wp-content/security.php HTTP/1.1" 404 242 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 185.238.231.48 - - [08/Jun/2026:08:13:10 +0200] "GET /wp-includes/interactivity-api/interactivity-api-core.php HTTP/1.1" 404 434 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 185.238.231.48 - - [08/Jun/2026:08:13:10 +0200] "GET /wp-includes/interactivity-api/interactivity-api-core.php HTTP/1.1" 404 242 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 185.238.231.48 - - [08/Jun/2026:08:13:10 +0200] "GET /wp-includes/ ... show less	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-07 18:39:02 (1 week ago)	PHP execution attempt in wp-content/uploads blocked. Pattern match "(?i)/wp-content/uploads/.\\\\.p ... show more PHP execution attempt in wp-content/uploads blocked. Pattern match "(?i)/wp-content/uploads/.\\\\.php" at REQUEST_URI. (5100-195) show less	Hacking
🇿🇦 Tokolosh Hunters	2026-06-03 08:14:48 (2 weeks ago)	AutoBlockWindow-Known bad useragent query-2026-06-03 08:14:47	Bad Web Bot
🇫🇮 cleverest.eu	2026-06-03 05:29:51 (2 weeks ago)	MimirWAF has 1 incident from 1 distinct domain => {"bad_request_uri / script_kiddie_detection"}	Web App Attack
🇩🇪 LRob.fr	2026-05-26 01:45:14 (3 weeks ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 S.O.B.A. Dev.	2026-05-25 16:33:14 (3 weeks ago)	Threat Blocked by BeeHive from (ASN:206092) (Network:F.N.S. HOLDINGS LIMITED) (Host:soba.dev) (Metho ... show more Threat Blocked by BeeHive from (ASN:206092) (Network:F.N.S. HOLDINGS LIMITED) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2026-05-25T16:33:14Z) show less	Brute-Force Web Spam Web App Attack
🇯🇵 VXG-NET	2026-05-23 06:10:10 (4 weeks ago)	port=80, indicator_type=sql-injection	SQL Injection
🇺🇸 LSPCCU	2026-05-11 21:11:52 (1 month ago)	TSEC Honeypot Network report. Threat score: 74/100. Categories: Hacking, Brute-Force, Web App Attack ... show more TSEC Honeypot Network report. Threat score: 74/100. Categories: Hacking, Brute-Force, Web App Attack, SSH. Honeypot: cowrie, ssh-telnet. Context: 185. show less	Hacking Brute-Force Web App Attack SSH
🇺🇸 knock	2026-05-11 20:21:07 (1 month ago)	Knock-Knock honeypot brute-force: proto8 (1 total hits)	Brute-Force
🇪🇸 masterguru	2026-04-30 03:47:56 (1 month ago)	wp-login request blocked, no referer. Pattern match "wp-login.php" at REQUEST_URI. (5001900-122)	Web App Attack
🇳🇱 Site.eu	2026-04-28 17:43:35 (1 month ago)	Excessive multi-domain requests	Brute-Force
🇫🇷 Yepngo	2026-04-28 16:21:54 (1 month ago)	185.238.231.48 - - [28/Apr/2026:18:21:54 +0200] "POST /wp-login.php HTTP/2.0" 200 12078 "-" "Mozilla ... show more 185.238.231.48 - - [28/Apr/2026:18:21:54 +0200] "POST /wp-login.php HTTP/2.0" 200 12078 "-" "Mozilla/5.0" ... show less	Brute-Force Web App Attack
🇫🇷 Octopuce	2026-04-28 12:29:59 (1 month ago)	Aggressive web search of vulnerable pages: /en/jindex.php /en/system.php /en/av.php /en/wso.php /en/ ... show more Aggressive web search of vulnerable pages: /en/jindex.php /en/system.php /en/av.php /en/wso.php /en/classwithtostring.php /en/1.php /en/wp-cont ... show less	Web App Attack
🇫🇷 Yepngo	2026-04-28 08:14:12 (1 month ago)	185.238.231.48 - - [28/Apr/2026:10:14:11 +0200] "POST /wp-login.php HTTP/2.0" 200 12076 "-" "Mozilla ... show more 185.238.231.48 - - [28/Apr/2026:10:14:11 +0200] "POST /wp-login.php HTTP/2.0" 200 12076 "-" "Mozilla/5.0" ... show less	Brute-Force Web App Attack
🇫🇷 Yepngo	2026-04-28 05:31:37 (1 month ago)	185.238.231.48 - - [28/Apr/2026:07:31:36 +0200] "POST /wp-login.php HTTP/2.0" 200 12076 "-" "Mozilla ... show more 185.238.231.48 - - [28/Apr/2026:07:31:36 +0200] "POST /wp-login.php HTTP/2.0" 200 12076 "-" "Mozilla/5.0" ... show less	Brute-Force Web App Attack

Showing 1 to 15 of 239 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.42

🇨🇳 120.48.152.13

🇨🇳 113.218.244.60

🇨🇳 81.71.96.41

🇹🇭 49.48.217.171

🇨🇳 47.103.64.92

🇨🇳 43.226.36.171

🇧🇭 193.188.105.54

🇬🇧 193.32.209.246

🇮🇳 122.184.91.70

🇧🇩 103.140.63.162

🇵🇱 87.251.64.141

🇱🇹 81.30.98.144

🇨🇳 43.143.73.189

🇧🇪 34.78.167.248

🇺🇸 20.127.195.254

🇺🇸 20.14.93.87

🇷🇴 2.57.122.177

🇺🇸 198.54.119.149

🇺🇸 192.159.99.144