JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.130.224.57

185.130.224.57 was found in our database!

This IP was reported 550 times. Confidence of Abuse is 0%: ?

ISP	HOSTKEY B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS57043
Domain Name	hostkey.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.130.224.57

Whois 185.130.224.57

IP Abuse Reports for 185.130.224.57:

This IP address has been reported a total of 550 times from 195 distinct sources. 185.130.224.57 was first reported on June 17th 2021, and the most recent report was 3 years ago.

Old Reports: The most recent abuse report for this IP address is from 3 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇪 RoboSOC	2023-02-01 14:00:16 (3 years ago)	HTTP /etc/passwd Access Attempt , PTR: PTR record not found	Hacking
Anonymous	2023-02-01 07:01:50 (3 years ago)	185.130.224.57 - - [01/Feb/2023:08:01:49 +0100] "POST /casa/nodes/thumbprints HTTP/1.1" 404 448 "-" ... show more 185.130.224.57 - - [01/Feb/2023:08:01:49 +0100] "POST /casa/nodes/thumbprints HTTP/1.1" 404 448 "-" "Guayoyo - Mozilla/5.0 (compatible; vCenter)" 185.130.224.57 - - [01/Feb/2023:08:01:49 +0100] "GET /dana-na/../dana/html5acc/guacamole/../../../../../../etc/passwd?/dana/html5acc/guacamole/ HTTP/1.1" 400 518 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)" 185.130.224.57 - - [01/Feb/2023:08:01:49 +0100] "GET /autodiscover/[email protected]/owa/?&Email=autodiscover/autodiscover.json%[email protected] HTTP/1.1" 404 486 "-" "curl/7.54.0" ... show less	Web App Attack
Anonymous	2023-02-01 06:47:42 (3 years ago)	The IP has been banned due to the violation / illegal of the use. Filter: nginx-webattack	Hacking Web App Attack
🇵🇹 rncbc	2023-02-01 05:19:51 (3 years ago)	[Wed Feb 01 05:19:51.116094 2023] [authz_core:error] [pid 29899] [client 185.130.224.57:60050] AH016 ... show more [Wed Feb 01 05:19:51.116094 2023] [authz_core:error] [pid 29899] [client 185.130.224.57:60050] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/ui [Wed Feb 01 05:19:51.116185 2023] [authz_core:error] [pid 30147] [client 185.130.224.57:60048] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/rest [Wed Feb 01 05:19:51.117151 2023] [authz_core:error] [pid 30177] [client 185.130.224.57:60072] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/casa ... show less	Brute-Force
🇩🇪 sdos.es	2023-02-01 01:28:48 (3 years ago)	"URL file extension is restricted by policy - .axd"	Web App Attack
🇩🇪 clamehost.it	2023-01-30 11:04:17 (3 years ago)	Automatic report - Brute Force attack using this IP address	Brute-Force
🇩🇪 mccoder.py	2023-01-30 05:41:06 (3 years ago)	Rejected on AME-104	Web App Attack
🇩🇪 sdos.es	2023-01-30 05:21:27 (3 years ago)	"Path Traversal Attack (/../) - Matched Data: /../ found within REQUEST_URI: /tmui/login.jsp/../tmui ... show more "Path Traversal Attack (/../) - Matched Data: /../ found within REQUEST_URI: /tmui/login.jsp/../tmui/locallb/workspace/fileread.jsp?filename=/etc/passwd" show less	Web App Attack
🇩🇪 sdos.es	2023-01-29 23:30:37 (3 years ago)	"URL file extension is restricted by policy - .axd"	Web App Attack
🇩🇪 speedhost.se	2023-01-29 21:26:02 (3 years ago)	Unauthorized connection attempt detected from IP address 185.130.224.57 to port 139 (WARDEN) [Y]	Brute-Force Exploited Host
🇩🇪 debaba	2023-01-29 18:06:02 (3 years ago)		Brute-Force Web App Attack
🇩🇪 ManagedStack	2023-01-29 11:55:05 (3 years ago)	Unauthorized access or port scanning from 185.130.224.57	Brute-Force Web App Attack
🇩🇪 eminovic.ba	2023-01-29 02:59:35 (3 years ago)	BRUTE FORCE: Excessive 404 hits ...	Hacking Brute-Force Web App Attack
🇩🇪 Invisiblemen	2023-01-28 19:21:07 (3 years ago)	Unauthorized connection attempt from IP address 185.130.224.57	Brute-Force
🇬🇷 JCB	2023-01-28 15:52:47 (3 years ago)	185.130.224.57 - - [28/Jan/2023:09:50:31 +0200] "GET /dana-na/../dana/html5acc/guacamole/../../../.. ... show more 185.130.224.57 - - [28/Jan/2023:09:50:31 +0200] "GET /dana-na/../dana/html5acc/guacamole/../../../../../../etc/passwd?/dana/html5acc/guacamole/ HTTP/1.1" 400 226 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)" 185.130.224.57 - - [28/Jan/2023:09:50:31 +0200] "POST /casa/nodes/thumbprints HTTP/1.1" 404 196 "-" "Guayoyo - Mozilla/5.0 (compatible; vCenter)" 185.130.224.57 - - [28/Jan/2023:09:50:31 +0200] "POST /casa/nodes/thumbprints HTTP/1.1" 404 196 ... show less	Hacking Brute-Force Web App Attack

Showing 1 to 15 of 550 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.223.235.8

🇮🇩 36.73.35.122

🇨🇳 223.199.182.220

🇻🇳 203.162.63.168

🇻🇪 185.240.164.66

🇩🇪 185.137.168.90

🇧🇷 179.125.15.145

🇩🇪 171.22.24.27

🇺🇸 129.121.85.48

🇻🇳 103.75.183.177

🇸🇬 74.63.20.244

🇨🇳 58.56.200.238

🇺🇸 50.84.211.204

🇬🇧 37.10.113.220

🇫🇷 2a02:c207:2258:3583::1

🇱🇹 213.130.207.177

🇮🇩 203.83.45.77

🇰🇪 197.248.8.33

🇳🇮 190.212.214.187

🇳🇱 188.166.89.5