JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.132.187.149

185.132.187.149 was found in our database!

This IP was reported 168 times. Confidence of Abuse is 24%: ?

24%

ISP	Digital Resources Management S.L.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	digitalrm.es
Country	🇧🇪 Belgium
City	Brussels, Brussels Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.132.187.149

Whois 185.132.187.149

IP Abuse Reports for 185.132.187.149:

This IP address has been reported a total of 168 times from 45 distinct sources. 185.132.187.149 was first reported on April 25th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-04 13:05:06 (3 weeks ago)	Abuse Detected (4)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 12:38:50 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 08:38:46.252056 2026] [security2:error] [pid 8118:tid 8118] [client 185.132.187.149:55711] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stitchguild.com"] [uri "/.git/"] [unique_id "aiFx1iGxE_hOaCTuHnzN7gAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 12:19:20 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 08:19:12.662179 2026] [security2:error] [pid 17286:tid 17304] [client 185.132.187.149:39079] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "juantrece.com"] [uri "/.git/HEAD"] [unique_id "aiFtQGdfdDiP0jjsyzFu2gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 09:37:34 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 05:37:30.866980 2026] [security2:error] [pid 28714:tid 28714] [client 185.132.187.149:59035] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ourhotmail.com"] [uri "/.git/HEAD"] [unique_id "aiFHWkqp98kjbBb5sBc_4QAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 09:15:48 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 05:15:43.375115 2026] [security2:error] [pid 3680:tid 3680] [client 185.132.187.149:50759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "manb.org"] [uri "/.git/HEAD"] [unique_id "aiFCP8d2ObkaJyMxe1qvcQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 07:58:34 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 03:58:27.496389 2026] [security2:error] [pid 15430:tid 15430] [client 185.132.187.149:55809] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "robertseyewear.com"] [uri "/.git/HEAD"] [unique_id "aiEwI-2fEbebqcIOk8zFzwAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇹 René Hickersberger	2026-06-04 07:50:51 (3 weeks ago)	[2026-06-04T07:50:51Z] Malicious request to /.git/HEAD	Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 07:41:40 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 03:41:35.674512 2026] [security2:error] [pid 23155:tid 23155] [client 185.132.187.149:32561] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sailinghonu.com"] [uri "/.git/HEAD"] [unique_id "aiEsLxBfrCaETdJcPiMlUAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 07:17:16 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 185.132.187.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 03:17:13.596930 2026] [security2:error] [pid 13389:tid 13389] [client 185.132.187.149:22035] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "walterceron.com"] [uri "/.git/HEAD"] [unique_id "aiEmeX4CnN1PlBCLiVL-GQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇿🇦 Tokolosh Hunters	2026-04-30 03:17:56 (1 month ago)	AutoBlockWindow-Known bad useragent query-2026-04-30 03:17:55	Bad Web Bot
🇫🇷 Octopuce	2026-04-29 18:48:45 (1 month ago)	Aggressive web search of vulnerable pages: /wp-content/plugins/core-plugin/include.php /wp-content/p ... show more Aggressive web search of vulnerable pages: /wp-content/plugins/core-plugin/include.php /wp-content/plugins/linkpreview/ /wp-content/plugins/aat ... show less	Web App Attack
🇺🇸 mnsf	2026-04-29 17:05:16 (1 month ago)	Too many Status 40X (11)	Brute-Force Web App Attack
🇺🇸 nyt	2026-04-29 16:58:44 (1 month ago)	Web Shell Upload	Hacking Web App Attack
🇺🇦 URAN Publishing Service	2026-04-29 16:23:23 (1 month ago)	185.132.187.149 - - [29/Apr/2026:19:23:22 +0300] "GET /wp-content/plugins/wpcall-button/button-image ... show more 185.132.187.149 - - [29/Apr/2026:19:23:22 +0300] "GET /wp-content/plugins/wpcall-button/button-image.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1" 185.132.187.149 - - [29/Apr/2026:19:23:22 +0300] "GET /wp-content/plugins/SecurityFin/SecurityFin.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇳🇱 Site.eu	2026-04-16 13:50:57 (2 months ago)	Excessive 404/403 errors	Brute-Force

Showing 1 to 15 of 168 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 195.63.25.78

🇲🇽 189.146.244.248

🇫🇷 172.71.135.65

🇺🇸 107.150.101.57

🇳🇱 91.92.40.233

🇳🇱 46.8.68.144

🇺🇸 43.135.135.17

🇩🇪 31.70.88.190

🇳🇱 195.178.110.30

🇨🇳 119.29.202.17

🇨🇳 116.205.96.31

🇺🇸 104.236.53.110

🇫🇷 85.217.140.44

🇺🇸 74.195.53.129

🇺🇸 65.49.20.110

🇨🇦 51.222.116.95

🇬🇧 35.203.211.25

🇫🇮 31.40.195.152

🇮🇳 4.240.96.30

🇪🇬 197.199.224.52