JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 147.185.197.10

147.185.197.10 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 24%: ?

24%

ISP	area-7 IT-Services GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213250
Domain Name	area-7.it
Country	🇩🇪 Germany
City	Limburg an der Lahn, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 147.185.197.10

Whois 147.185.197.10

IP Abuse Reports for 147.185.197.10:

This IP address has been reported a total of 11 times from 9 distinct sources. 147.185.197.10 was first reported on April 24th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 MusicLibrary	2026-05-15 23:42:43 (1 month ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇧🇪 voormedia	2026-05-15 23:02:54 (1 month ago)	Accessed trap at '/wp-login.php'	Web App Attack
🇺🇸 Tom USA	2026-04-24 13:26:00 (1 month ago)	IM360 WAF: Block system file path in request\|\|MVN:ARGS:route\|\|MV:../../../../../../../../../etc/pass ... show more IM360 WAF: Block system file path in request\|\|MVN:ARGS:route\|\|MV:../../../../../../../../../etc/passwd\|\|RSV:7.98\|\|T:APACHE\|\| show less	Brute-Force Hacking
Anonymous	2026-04-24 10:05:21 (1 month ago)	Blocked: Reason='Suspicious traffic score=60 (review-based detection)'; Requests=32	Hacking
🇺🇸 interbiznw.com	2026-04-24 09:27:29 (1 month ago)	malicious-web-requests-vulnerability-scanning	Hacking Brute-Force Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-04-24 09:19:00 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 147.185.197.10 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 147.185.197.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 24 05:18:57.455786 2026] [security2:error] [pid 13518:tid 13518] [client 147.185.197.10:59147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sawyerwest.com"] [uri "/.env"] [unique_id "aes1gW3b1UWZge_isP7IOQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-24 09:02:37 (1 month ago)	(mod_security) mod_security (id:212620) triggered by 147.185.197.10 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:212620) triggered by 147.185.197.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 24 05:02:31.314013 2026] [security2:error] [pid 804066:tid 804066] [client 147.185.197.10:57439] ModSecurity: Access denied with code 403 (phase 2). Pattern match "<script\\\\b" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "65"] [id "212620"] [rev "4"] [msg "COMODO WAF: Cross-site Scripting (XSS) Attack\|\|easternimport.com\|F\|2"] [data "Matched Data: <script found within REQUEST_URI: /products.php?catid=5&catname=<script>alert('xss')</script>"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "easternimport.com"] [uri "/products.php"] [unique_id "aesxp_S16Bz52X9sH4ByUgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-04-24 08:58:46 (1 month ago)	IM360 WAF: Block system file path in request MV:../../../../../../../../../etc/passwd	Web App Attack
🇱🇻 garmtech.com	2026-04-24 08:58:46 (1 month ago)	IM360 WAF: Laravel .env file access	Web App Attack
🇮🇩 Burayot	2026-04-24 08:54:06 (1 month ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 147.185.197.10 (DE/Germany/-): 1 in ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 147.185.197.10 (DE/Germany/-): 1 in the last 3600 secs show less	Web App Attack
🇫🇷 UM3	2026-04-24 03:38:19 (1 month ago)	Exim Auth Failed	Brute-Force

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.183

🇮🇳 117.208.92.250

🇧🇬 91.148.190.150

🇺🇸 47.156.197.184

🇳🇱 194.48.251.105

🇧🇷 191.9.113.131

🇺🇸 170.106.167.214

🇺🇸 107.150.105.153

🇨🇦 65.111.21.174

🇺🇸 64.176.212.131

🇬🇧 57.129.139.80

🇩🇪 57.129.69.77

🇳🇱 45.156.87.127

🇳🇱 45.148.10.141

🇺🇸 24.125.189.233

🇧🇷 4.201.96.144

🇺🇸 173.81.155.169

🇺🇸 170.106.73.216

🇨🇳 115.29.34.90

🇳🇱 91.92.40.41