JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.30.33.82

212.30.33.82 was found in our database!

This IP was reported 189 times. Confidence of Abuse is 56%: ?

56%

ISP	M Nets SAL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	mnets.net
Country	🇪🇸 Spain
City	Madrid, Madrid

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.30.33.82

Whois 212.30.33.82

IP Abuse Reports for 212.30.33.82:

This IP address has been reported a total of 189 times from 87 distinct sources. 212.30.33.82 was first reported on March 6th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Ba-Yu	2026-06-14 05:29:37 (1 day ago)	WordPress hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇬🇧 consul.to	2026-06-14 00:39:17 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇵🇹 rncbc	2026-06-13 23:47:32 (1 day ago)	[Sun Jun 14 00:47:31.225183 2026] [authz_core:error] [pid 357528:tid 357528] [client 212.30.33.82:24 ... show more [Sun Jun 14 00:47:31.225183 2026] [authz_core:error] [pid 357528:tid 357528] [client 212.30.33.82:24135] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/bless.php [Sun Jun 14 00:47:31.406865 2026] [authz_core:error] [pid 357528:tid 357528] [client 212.30.33.82:24135] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/O-Simple.php [Sun Jun 14 00:47:31.599414 2026] [authz_core:error] [pid 357528:tid 357528] [client 212.30.33.82:24135] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/lock360.php ... show less	Brute-Force Bad Web Bot Web App Attack SSH
🇫🇷 dynamix	2026-06-13 06:47:48 (2 days ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
🇫🇷 ✨	2026-06-10 00:12:09 (5 days ago)	Domain : keybridgehoga.com Rule : pluginsphp 2026-06-10 00:10:21 *hidden-privacy* GET /wp-conten ... show more Domain : keybridgehoga.com Rule : pluginsphp 2026-06-10 00:10:21 *hidden-privacy* GET /wp-content/plugins/pwnd/cloud.php - 80 - 212.30.33.82 HTTP/1.1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 - keybridgehoga.com 404 0 2 1502 223 32 - - show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-09 02:29:53 (6 days ago)	212.30.33.82 - - [09/Jun/2026:05:29:52 +0300] "GET /wp-admin/file.php HTTP/1.1" 404 492 "-" "Mozilla ... show more 212.30.33.82 - - [09/Jun/2026:05:29:52 +0300] "GET /wp-admin/file.php HTTP/1.1" 404 492 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 212.30.33.82 - - [09/Jun/2026:05:29:52 +0300] "GET /wp-content/plugins/admin.php HTTP/1.1" 404 492 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" ... show less	Web App Attack
🇷🇺 sms.ru	2026-06-08 23:32:55 (6 days ago)	/wp-admin/js/load.php	Web App Attack
🇫🇷 Octopuce	2026-06-08 21:36:48 (1 week ago)	Aggressive web search of vulnerable pages: /css/adminfusm.php /wp-includes/sodium_compat/lib/widget- ... show more Aggressive web search of vulnerable pages: /css/adminfusm.php /wp-includes/sodium_compat/lib/widget-group.php /wp-content/raw.php /wp-includes/ ... show less	Web App Attack
🇩🇪 ghostwarriors	2026-05-06 12:50:32 (1 month ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-05 02:04:35 (1 month ago)	(mod_security) mod_security (id:234930) triggered by 212.30.33.82 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:234930) triggered by 212.30.33.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 04 22:04:31.744784 2026] [security2:error] [pid 3495:tid 3495] [client 212.30.33.82:23293] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/lib\\\\/php\\\\/connector\\\\.minimal\\\\.php$" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6778"] [id "234930"] [rev "2"] [msg "COMODO WAF: File upload vulnerability in the file manager plugin before 6.9 for WordPress (CVE-2020-25213)\|\|azfilmguild.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "azfilmguild.org"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "aflQLyHi6YZDPp1cpVjn3QAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-05 00:42:25 (1 month ago)	<comment>	Web App Attack
🇫🇷 Octopuce	2026-05-04 19:06:38 (1 month ago)	Aggressive web search of vulnerable pages: /wp-content/plugins/enhanced-text-widget/analyst/src/403x ... show more Aggressive web search of vulnerable pages: /wp-content/plugins/enhanced-text-widget/analyst/src/403x.php /wp-content/plugins/semrush/x.php /wp- ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-04-23 08:42:22 (1 month ago)	212.30.33.82 - - [23/Apr/2026:11:42:22 +0300] "GET /wp-includes/customize/wp-conflg.php HTTP/1.1" 40 ... show more 212.30.33.82 - - [23/Apr/2026:11:42:22 +0300] "GET /wp-includes/customize/wp-conflg.php HTTP/1.1" 404 716 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇸 SiliSoftware	2026-04-23 05:24:35 (1 month ago)	/wp-content/plugins/enhanced-text-widget/analyst/src/403x.php	Web App Attack
🇺🇦 URAN Publishing Service	2026-04-23 03:14:55 (1 month ago)	212.30.33.82 - - [23/Apr/2026:06:14:54 +0300] "GET /wp-includes/sodium_compat/namespaced/Core/goods. ... show more 212.30.33.82 - - [23/Apr/2026:06:14:54 +0300] "GET /wp-includes/sodium_compat/namespaced/Core/goods.php HTTP/1.1" 404 709 "-" "Go-http-client/1.1" 212.30.33.82 - - [23/Apr/2026:06:14:54 +0300] "GET /wp-includes/customize/wp-conflg.php?p= HTTP/1.1" 404 709 "-" "Go-http-client/1.1" ... show less	Web App Attack

Showing 1 to 15 of 189 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇭 209.99.189.174

🇺🇸 132.196.99.64

🇨🇳 106.75.163.239

🇲🇲 103.59.163.133

🇬🇧 45.82.76.127

🇬🇧 209.97.183.43

🇧🇷 205.210.31.253

🇺🇸 205.210.31.106

🇹🇷 185.67.33.193

🇮🇩 182.8.225.218

🇧🇷 177.125.163.247

🇨🇮 160.154.84.190

🇨🇳 115.190.203.239

🇨🇳 106.58.173.254

🇯🇵 92.113.142.203

🇱🇹 81.30.98.62

🇸🇬 43.156.239.194

🇧🇷 205.210.31.212

🇷🇴 193.46.255.86

🇮🇶 185.166.25.150