JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.196.220.132

185.196.220.132 was found in our database!

This IP was reported 313 times. Confidence of Abuse is 100%: ?

100%

ISP	Colocatel Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213438
Domain Name	colocatel.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.196.220.132

Whois 185.196.220.132

IP Abuse Reports for 185.196.220.132:

This IP address has been reported a total of 313 times from 67 distinct sources. 185.196.220.132 was first reported on February 28th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇿🇦 slartybartfast69420blazit	2026-06-27 20:14:11 (1 day ago)	Fail2ban picked up 185.196.220.132 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-25 20:15:40 (3 days ago)	Fail2ban picked up 185.196.220.132 attacking nginx	Web App Attack
🇺🇸 Neosmith20	2026-06-25 04:53:59 (4 days ago)	Knock-Knock honeypot brute-force: RDP (7 total hits)	Brute-Force
🇫🇷 ✨	2026-06-25 04:20:17 (4 days ago)	Rule : RDP Rule: RDP Event: RDP 185.196.220.132	SSH Brute-Force
🇬🇧 andypiper	2026-06-25 01:00:59 (4 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇺🇸 sargetun	2026-06-25 00:15:43 (4 days ago)	Honeypot: RDP probe on port 3389 at 2026-06-24 23:57:49.598439. Automated report from VPS honeypot.	Port Scan
🇺🇸 sargetun	2026-06-25 00:00:41 (4 days ago)	Honeypot: Auto-ban: 24 hour idle after honeypot interaction. Auto-reported from VPS honeypot.	Brute-Force SSH Hacking
🇺🇸 cwytech	2026-06-24 22:19:04 (4 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/global-exclusion-high.	Hacking
🇳🇱 knock	2026-06-24 19:38:49 (4 days ago)	Knock-Knock honeypot brute-force: RDP (12 total hits)	Brute-Force
🇺🇸 wristhulk	2026-06-24 15:19:04 (4 days ago)	Honeypot: RDP brute-force on OpenCanary honeypot (port 3389). Username: 'Test'.	Brute-Force
🇦🇺 dyln	2026-06-24 13:11:20 (4 days ago)	Dyls honeypot brute-force: RDP (19 total hits)	Brute-Force
🇨🇭 TOCE	2026-06-24 11:08:16 (4 days ago)	8 hits seen on 2026-06-24, ports 3389 (RDP) on a honeypot from www.toce.ch	Brute-Force
🇺🇸 donarev419	2026-06-24 04:27:52 (5 days ago)	Connection to port 3389 with data transfer. Data preview:	Port Scan Hacking
🇺🇸 donarev419	2026-06-24 04:01:24 (5 days ago)	Connection to port 7863 with data transfer. Data preview:	Port Scan Hacking
🇺🇸 donarev419	2026-06-24 03:20:34 (5 days ago)	Connection to port 10187 with data transfer. Data preview:	Port Scan Hacking

Showing 1 to 15 of 313 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.215

🇧🇪 198.235.24.214

🇳🇬 197.210.103.188

🇧🇷 186.233.118.22

🇻🇳 171.231.190.102

🇳🇱 45.148.10.240

🇸🇬 35.240.168.160

🇹🇼 221.120.4.61

🇧🇪 198.235.24.211

🇧🇪 198.235.24.208

🇮🇳 103.59.202.218

🇺🇸 100.58.109.199

🇫🇷 91.231.89.72

🇬🇧 81.19.219.208

🇧🇬 79.124.56.250

🇮🇳 61.0.48.198

🇺🇸 54.196.171.255

🇩🇪 51.75.64.35

🇬🇪 5.187.10.4

🇮🇷 5.117.113.220