AbuseIPDB » 185.196.220.132
185.196.220.132 was found in our database!
This IP was reported 313 times. Confidence of Abuse is 100%: ?
| ISP | Colocatel Inc. |
|---|---|
| Usage Type | Data Center/Web Hosting/Transit |
| ASN | AS213438 |
| Domain Name | colocatel.com |
| Country | ๐ณ๐ฑ Netherlands |
| City | Amsterdam, North Holland |
IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.
IP Abuse Reports for 185.196.220.132:
This IP address has been reported a total of 313 times from 67 distinct sources. 185.196.220.132 was first reported on , and the most recent report was .
Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.
| Reporter | IoA Timestamp (UTC) | Comment | Categories | |
|---|---|---|---|---|
| ๐ฟ๐ฆ slartybartfast69420blazit |
Fail2ban picked up 185.196.220.132 attacking nginx
|
Web App Attack | ||
| ๐ฟ๐ฆ slartybartfast69420blazit |
Fail2ban picked up 185.196.220.132 attacking nginx
|
Web App Attack | ||
| ๐บ๐ธ Neosmith20 |
Knock-Knock honeypot brute-force: RDP (7 total hits)
|
Brute-Force | ||
| ๐ซ๐ท โจ |
Rule : RDP
Rule: RDP
Event: RDP
185.196.220.132
|
SSH Brute-Force | ||
| ๐ฌ๐ง andypiper |
CrowdSec ban for AbuseIPDB Top List
|
Brute-Force Web App Attack | ||
| ๐บ๐ธ sargetun |
Honeypot: RDP probe on port 3389 at 2026-06-24 23:57:49.598439. Automated report from VPS honeypot.
|
Port Scan | ||
| ๐บ๐ธ sargetun |
Honeypot: Auto-ban: 24 hour idle after honeypot interaction. Auto-reported from VPS honeypot.
|
Brute-Force SSH Hacking | ||
| ๐บ๐ธ cwytech |
Fleet-wide ban from the Ghostfleet ๐ป. Triggered by scenario: cwy/global-exclusion-high.
|
Hacking | ||
| ๐ณ๐ฑ knock |
Knock-Knock honeypot brute-force: RDP (12 total hits)
|
Brute-Force | ||
| ๐บ๐ธ wristhulk |
Honeypot: RDP brute-force on OpenCanary honeypot (port 3389). Username: 'Test'.
|
Brute-Force | ||
| ๐ฆ๐บ dyln |
Dyls honeypot brute-force: RDP (19 total hits)
|
Brute-Force | ||
| ๐จ๐ญ TOCE |
8 hits seen on 2026-06-24, ports 3389 (RDP) on a honeypot from www.toce.ch
|
Brute-Force | ||
| ๐บ๐ธ donarev419 |
Connection to port 3389 with data transfer.
Data preview:
|
Port Scan Hacking | ||
| ๐บ๐ธ donarev419 |
Connection to port 7863 with data transfer.
Data preview:
|
Port Scan Hacking | ||
| ๐บ๐ธ donarev419 |
Connection to port 10187 with data transfer.
Data preview:
|
Port Scan Hacking |
Showing 1 to 15 of 313 reports
Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown ๐ฉ