JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 132.196.99.215

132.196.99.215 was found in our database!

This IP was reported 341 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 132.196.99.215

Whois 132.196.99.215

IP Abuse Reports for 132.196.99.215:

This IP address has been reported a total of 341 times from 289 distinct sources. 132.196.99.215 was first reported on June 11th 2026, and the most recent report was 57 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 geot	2026-06-12 17:44:55 (57 minutes ago)	WordPress scanning bot	Hacking Bad Web Bot Web App Attack
Anonymous	2026-06-12 15:11:12 (3 hours ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇫🇷 andreighitan	2026-06-12 11:16:26 (7 hours ago)	Coordinated attack against 84.46.253.134. Webshell scanning, PHPUnit RCE, credential harvesting, PHP ... show more Coordinated attack against 84.46.253.134. Webshell scanning, PHPUnit RCE, credential harvesting, PHP vuln scanning. Active June 7-11 2026. ZAC Bayern ref BY0257-500359-26/8. show less	Web App Attack Brute-Force
Anonymous	2026-06-12 10:50:02 (7 hours ago)	\| [Normal/United Kingdom] Aggressive IP 132.196.99.215 (~350 hits). Type: DoS Defender- Web server 4 ... show more \| [Normal/United Kingdom] Aggressive IP 132.196.99.215 (~350 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇭🇺 DumaNet	2026-06-12 07:18:00 (11 hours ago)	Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 11. 17:11:12 Source IP: 132.19 ... show more Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 11. 17:11:12 Source IP: 132.196.99.215 Portion of the log(s): 132.196.99.215 - [11/Jun/2026:17:11:03 +0200] "GET /ff.php HTTP/1.1" 404 153 "-" "-" 132.196.99.215 - [11/Jun/2026:17:11:02 +0200] "GET /file59.php HTTP/1.1" 404 153 "-" "-" 132.196.99.215 - [11/Jun/2026:17:11:02 +0200] "GET /file48.php HTTP/1.1" 404 153 "-" "-" 132.196.99.215 - [11/Jun/2026:17:11:02 +0200] "GET /hg.php HTTP/1.1" 404 153 "-" "-" 132.196.99.215 - [11/Jun/2026:17:11:02 +0200] "GET /file25.php HTTP/1.1" 404 153 "-" "-" 132.196.99.215 - [11/Jun/2026:17:11:02 +0200] "GET /5BltUjE9CrY.php HTTP/1.1" 404 153 "-" "-" 132.196.99.215 - [11/Jun/2026:17:11:02 +0200] "GET /eee.php HTTP/1.1" 404 153 "-" "-" 132.196.99.215 - [11/Jun/2026:17:11:01 +0200] "GET /bb.php HTTP/1.1" 404 153 "-" "-" 132.196.99.215 - [11/Jun/2026:17:11:01 +0200] "GET /file46.php HTTP/1.1" 404 153 "-" "-" 132.196.99.215 - [11/Jun/2026:17:11:01 +0200] "GET /bless.php HTTP/1.1" 404 153 "-" "-" show less	Web App Attack
🇵🇱 mkey	2026-06-12 06:38:20 (12 hours ago)	[First: 2026-06-11 12:56:49/1s] HITS=2 Web shell and malicious script probing; sample=GET /this_is_a ... show more [First: 2026-06-11 12:56:49/1s] HITS=2 Web shell and malicious script probing; sample=GET /this_is_a_new_hello_world.php 403 \| GET /wp-content/plugins/hellopress/wp_filemanager.php 403 show less	Port Scan Hacking Web App Attack
🇬🇧 openstrike.co.uk	2026-06-12 05:14:30 (13 hours ago)	437 attacks on PHP URLs: GET /berlin.php HTTP/1.1	Web App Attack
🇧🇪 taivas.nl	2026-06-12 04:32:46 (14 hours ago)	Many_bad_calls	Web App Attack
🇬🇧 andypiper	2026-06-12 01:00:31 (17 hours ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇩🇪 Philister11	2026-06-12 00:35:53 (18 hours ago)	CrowdSec: crowdsecurity/http-crawl-non_statics (US/AS8075)	Bad Web Bot Web App Attack
🇺🇸 xxkodedxx	2026-06-12 00:33:44 (18 hours ago)	[Zorvexus edge-defense] GET .env / WordPress honeypot probe Trigger: 1× honeypot-get, 12× edge-block ... show more [Zorvexus edge-defense] GET .env / WordPress honeypot probe Trigger: 1× honeypot-get, 12× edge-block in 10m window. Origin: US / AS8075 Microsoft Corporation Active: 00:32:59→00:33:36 UTC Volume: 12 HTTP req, 1 honeypot probe(s) Bait taken: /wp-content/plugins/hellopress/wp_filemanager.php Status mix: 444×12 Vhost fishing: teachme.ztx-lab.com Auto-banned 30d. zorvexus-banner. show less	Bad Web Bot Web App Attack
🇳🇿 Antinson	2026-06-12 00:33:03 (18 hours ago)	Scraping with a high error ratio and request rate Requests to unauthorized or suspicious endpoints ( ... show more Scraping with a high error ratio and request rate Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.) show less	Bad Web Bot
🇫🇮 Christopher Hughes	2026-06-12 00:30:06 (18 hours ago)	[Fri Jun 12 01:30:04.649514 2026] [proxy_fcgi:error] [pid 650690:tid 139822232487488] [client 132.19 ... show more [Fri Jun 12 01:30:04.649514 2026] [proxy_fcgi:error] [pid 650690:tid 139822232487488] [client 132.196.99.215:41482] AH01071: Got error 'Primary script unknown' [Fri Jun 12 01:30:05.137992 2026] [proxy_fcgi:error] [pid 650690:tid 139821175531072] [client 132.196.99.215:41482] AH01071: Got error 'Primary script unknown' [Fri Jun 12 01:30:05.461636 2026] [proxy_fcgi:error] [pid 650690:tid 139821670438464] [client 132.196.99.215:41482] AH01071: Got error 'Primary script unknown' [Fri Jun 12 01:30:05.751017 2026] [proxy_fcgi:error] [pid 650690:tid 139822249272896] [client 132.196.99.215:41482] AH01071: Got error 'Primary script unknown' [Fri Jun 12 01:30:06.039335 2026] [proxy_fcgi:error] [pid 650690:tid 139821183923776] [client 132.196.99.215:41482] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
🇵🇱 strefapi_com	2026-06-12 00:27:23 (18 hours ago)	Brute-force on web app ...	Brute-Force Web App Attack
🇳🇱 debestelapp	2026-06-12 00:25:02 (18 hours ago)		Web App Attack

Showing 1 to 15 of 341 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 190.221.50.123

🇵🇾 190.128.201.18

🇧🇷 189.50.142.82

🇨🇳 115.208.66.70

🇨🇳 115.191.64.182

🇷🇺 95.215.108.47

🇵🇱 87.251.64.157

🇲🇩 45.15.226.44

🇳🇱 20.71.254.235

🇫🇷 2a0d:3344:23e0:4910:2530:6e81:1491:427f

🇫🇷 2001:41d0:33d:9200::407

🇳🇱 195.178.110.101

🇬🇧 193.176.29.20

🇮🇳 152.32.156.95

🇺🇸 67.241.132.98

🇺🇸 66.132.224.236

🇰🇷 43.164.190.238

🇺🇸 34.21.79.233

🇧🇷 209.14.88.118

🇺🇸 162.216.149.216