JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.212.115.132

185.212.115.132 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46475
Domain Name	finegroupservers.com
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.212.115.132

Whois 185.212.115.132

IP Abuse Reports for 185.212.115.132:

This IP address has been reported a total of 11 times from 4 distinct sources. 185.212.115.132 was first reported on January 20th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-16 01:54:10 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 185.212.115.132 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 185.212.115.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 15 21:54:05.648732 2026] [security2:error] [pid 2268514:tid 2268514] [client 185.212.115.132:32711] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Apex II/Thumbs.db"] [unique_id "aeBBPeiMDMiyFyxZamhj9QAAAB8"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Apex%20II/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 HandyTreff.de	2026-04-04 22:24:45 (2 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -50.999 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -50.999 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.4321.1 show less	Web App Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-03-14 10:10:41 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 185.212.115.132 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 185.212.115.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 06:10:36.814746 2026] [security2:error] [pid 1988:tid 1988] [client 185.212.115.132:18737] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Detrick/Thumbs.db"] [unique_id "abU0HLKWEqvqRhJAWFiSLAAAAAU"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Detrick/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-03-11 14:36:02 (3 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇨🇭 backslash	2026-01-03 16:40:06 (5 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇩🇪 HandyTreff.de	2025-11-30 10:17:56 (6 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -23 (Bad < -10 / Very Bad < -20 / Ex ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -23 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.2511.1 show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-02-09 08:46:48 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 185.212.115.132 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 185.212.115.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 09 03:46:43.604523 2025] [security2:error] [pid 8169:tid 8169] [client 185.212.115.132:47467] [client 185.212.115.132] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.alafiariverrendezvous.org"] [uri "/.env"] [unique_id "Z6hrc3thfczE4qE7P0E37gAAAAE"], referer: https://a00035.tiiny.site/ show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 OnTheEdge	2025-01-22 18:55:29 (1 year ago)	Password spraying. Multiple unauthorized login attempts	Hacking Web App Attack
🇸🇪 OnTheEdge	2025-01-22 18:55:29 (1 year ago)	Password spraying. Multiple unauthorized login attempts	Hacking Web App Attack
🇸🇪 OnTheEdge	2025-01-22 03:19:17 (1 year ago)	Password spraying. Multiple unauthorized login attempts	Hacking Web App Attack
🇸🇪 OnTheEdge	2025-01-20 06:55:58 (1 year ago)	Password spraying. Multiple unauthorized login attempts	Hacking Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 194.50.235.147

🇲🇾 183.171.49.144

🇦🇺 34.40.145.110

🇺🇸 23.20.84.19

🇧🇷 205.210.31.178

🇧🇷 200.141.47.190

🇬🇧 193.32.209.252

🇨🇳 182.40.195.233

🇺🇾 179.26.82.162

🇺🇸 172.234.192.95

🇵🇪 161.132.54.218

🇫🇮 147.185.133.100

🇮🇳 125.16.27.190

🇩🇪 94.26.106.252

🇨🇿 46.135.138.242

🇸🇬 43.160.246.215

🇺🇸 23.20.178.124

🇺🇸 188.213.202.16

🇸🇬 147.93.158.72

🇩🇪 43.228.157.10