JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.132.187.41

185.132.187.41 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 35%: ?

35%

ISP	Digital Resources Management S.L.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	digitalrm.es
Country	🇧🇪 Belgium
City	Brussels, Brussels Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.132.187.41

Whois 185.132.187.41

IP Abuse Reports for 185.132.187.41:

This IP address has been reported a total of 134 times from 56 distinct sources. 185.132.187.41 was first reported on May 25th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Octopuce	2026-06-05 22:05:54 (2 weeks ago)	Aggressive web search of vulnerable pages: /wp-admin/css/colors/blue/navi.php /wp-includes/css/dist/ ... show more Aggressive web search of vulnerable pages: /wp-admin/css/colors/blue/navi.php /wp-includes/css/dist/require-dynamic-blocks.php /xp.php%20 /wp-c ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 18:36:22 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.132.187.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 185.132.187.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 14:36:15.972662 2026] [security2:error] [pid 19969:tid 19969] [client 185.132.187.41:37521] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "waterjetsolutions.com"] [uri "/.git/HEAD"] [unique_id "aiB0HxtOkgfn-TW2MZj0KgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 17:53:51 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.132.187.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 185.132.187.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 13:53:43.613830 2026] [security2:error] [pid 12309:tid 12336] [client 185.132.187.41:37807] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tamarkummel.com"] [uri "/.git/HEAD"] [unique_id "aiBqJ5i0CZnCMvPDU9C5-gAAARg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 16:39:59 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.132.187.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 185.132.187.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 12:39:52.124524 2026] [security2:error] [pid 11313:tid 11313] [client 185.132.187.41:60895] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "microscopedia.com"] [uri "/.git/HEAD"] [unique_id "aiBY2J7A28fHJpJC-UTpdAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 13:55:11 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.132.187.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 185.132.187.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 09:55:07.651743 2026] [security2:error] [pid 26422:tid 26422] [client 185.132.187.41:57617] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chatari.ai"] [uri "/.git/"] [unique_id "aiAyO7voMVkqd4_atwzAwQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 12:14:52 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.132.187.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 185.132.187.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 08:14:47.005134 2026] [security2:error] [pid 3895:tid 3895] [client 185.132.187.41:23417] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "armstrongpartnersllc.com"] [uri "/.git/HEAD"] [unique_id "aiAat4pa7XRNg0ZPDi55VAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-03 12:05:07 (3 weeks ago)	Abuse Detected (4)	Brute-Force Web App Attack
🇩🇪 big-cloud.nl	2026-06-03 11:58:31 (3 weeks ago)	Try to access /.git/HEAD	Web App Attack
🇬🇧 consul.to	2026-05-24 07:31:46 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 SpaceHost-Server	2026-05-23 22:33:47 (1 month ago)		Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2026-05-22 22:28:50 (1 month ago)		Brute-Force Web App Attack
🇨🇭 zynex	2026-05-22 04:18:06 (1 month ago)	URL Probing: /wp-content/themes/twentytwentyfive/patterns/template-singl-portfolio.php	Web App Attack
🇦🇹 nomzamo	2026-05-22 03:36:25 (1 month ago)	Fail2Ban reported: nginx-noscript	Brute-Force Bad Web Bot
🇺🇦 URAN Publishing Service	2026-05-12 06:12:07 (1 month ago)	185.132.187.41 - - [12/May/2026:09:12:04 +0300] "GET /wp-content/themes/twenty/twenty.php HTTP/1.1" ... show more 185.132.187.41 - - [12/May/2026:09:12:04 +0300] "GET /wp-content/themes/twenty/twenty.php HTTP/1.1" 404 708 "-" "Go-http-client/1.1" 185.132.187.41 - - [12/May/2026:09:12:06 +0300] "GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.1" 404 708 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇸 nyt	2026-05-12 04:05:12 (1 month ago)	Web Shell Upload	Hacking Web App Attack

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 2a10:3c0:3:0:1:17:0:5

🇺🇸 216.25.89.92

🇺🇸 205.210.31.82

🇳🇱 176.65.139.88

🇮🇳 27.123.104.78

🇧🇷 20.206.91.91

🇳🇱 176.65.139.218

🇳🇱 176.65.139.217

🇬🇧 152.32.157.173

🇨🇦 149.56.85.158

🇮🇳 103.171.129.73

🇷🇴 80.94.92.55

🇩🇪 69.5.169.27

🇳🇱 45.148.10.152

🇮🇩 43.133.148.170

🇺🇸 20.80.88.160

🇨🇳 1.192.226.40

🇺🇸 2607:f8b0:4001:c61::127

🇺🇸 216.25.89.132

🇷🇺 213.180.203.113