JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.213.175.202

185.213.175.202 was found in our database!

This IP was reported 63 times. Confidence of Abuse is 100%: ?

100%

ISP	NextGenWebs, S.L.
Usage Type	Commercial
ASN	AS41608
Domain Name	nextgenwebs.es
Country	🇳🇱 Netherlands
City	Dronten, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.213.175.202

Whois 185.213.175.202

IP Abuse Reports for 185.213.175.202:

This IP address has been reported a total of 63 times from 39 distinct sources. 185.213.175.202 was first reported on May 28th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-03 05:04:51 (1 day ago)	Excessive multi-domain requests	Brute-Force
🇺🇸 floreriaexpress	2026-06-03 03:24:47 (1 day ago)	FakeADS-Anti: fake_bot:fake_googlebot \| https://floreriaexpresschile.cl/storage/logs/laravel.log	Bad Web Bot Web App Attack
🇫🇮 Kimmo Rieskaniemi	2026-06-03 03:18:45 (1 day ago)	CrowdSec triggered crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇷🇺 DZBOT	2026-06-03 00:18:23 (1 day ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇩🇪 4server	2026-06-02 23:42:33 (1 day ago)	[WedJun0301:42:30.2271232026][security2:error][pid870165:tid870299][client185.213.175.202:0]ModSecur ... show more [WedJun0301:42:30.2271232026][security2:error][pid870165:tid870299][client185.213.175.202:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"kvsm-blackstone.com\"][uri\"/.aws/credentials\"][unique_id\"ah9qZjf3R6TBUfKvuoaWSAAAANQ\"] show less	Port Scan Brute-Force Web App Attack
🇫🇷 Baking333	2026-06-02 23:15:05 (1 day ago)	[redacted] 185.213.175.202 - - [03/Jun/2026:00:15:01 +0100] "GET /.aws/credentials HTTP/1.1" 302 153 ... show more [redacted] 185.213.175.202 - - [03/Jun/2026:00:15:01 +0100] "GET /.aws/credentials HTTP/1.1" 302 1538 0/75124 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@[redacted]" [redacted] 185.213.175.202 - - [03/Jun/2026:00:15:01 +0100] "GET /[redacted] HTTP/1.1" 302 1538 0/144463 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; PerplexityBot/1.0; +https://[redacted]/perplexitybot" show less	Bad Web Bot Web App Attack
🇺🇸 Major Hostility	2026-06-02 21:09:42 (1 day ago)	"GET /storage/logs/laravel.log HTTP/1.1" 404 "GET /.git/config HTTP/1.1" 404 "GET /application.yml H ... show more "GET /storage/logs/laravel.log HTTP/1.1" 404 "GET /.git/config HTTP/1.1" 404 "GET /application.yml HTTP/1.1" 404 "GET /.aws/credentials HTTP/1.1" 404 "GET /secrets.json HTTP/1.1" 404 "GET /secrets.yml HTTP/1.1" 404 "GET /application.properties HTTP/1.1" 404 "GET /config/application.properties HTTP/1.1" 404 "GET /config/secrets.yml HTTP/1.1" 404 "GET /.env HTTP/1.1" 404 show less	Web App Attack
🇩🇪 Séfora Srl	2026-06-02 19:02:08 (1 day ago)	Bad user agents ignoring web crawling rules. Draing bandwidth - detected by Fail2Ban in plesk-apache ... show more Bad user agents ignoring web crawling rules. Draing bandwidth - detected by Fail2Ban in plesk-apache-badbot jail show less	Bad Web Bot
🇬🇧 consul.to	2026-06-02 16:11:24 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 e.fierstra	2026-06-02 15:34:20 (1 day ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
Anonymous	2026-06-02 02:31:21 (2 days ago)	(NGINX) Security rule triggered from 185.213.175.202 (NL/The Netherlands/-): 5 in the last 3600 secs	Web App Attack
Anonymous	2026-06-01 22:38:57 (2 days ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇫🇷 ELYAZ	2026-06-01 21:47:56 (2 days ago)	(y3) Failed access -byebye- from 185.213.175.202 (ES/Spain/-): (CF_ENABLE)	Hacking
🇩🇪 YF	2026-06-01 16:10:36 (2 days ago)	Environment file probe	Web App Attack
🇩🇪 sdos.es	2026-06-01 14:03:08 (2 days ago)	"Restricted File Access Attempt - Matched Data: /.git/ found within REQUEST_FILENAME: /.git/config"	Web App Attack

Showing 1 to 15 of 63 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 201.81.235.49

🇺🇸 162.216.149.147

🇲🇽 148.230.4.187

🇵🇰 139.135.59.147

🇵🇭 112.203.141.74

🇺🇸 66.132.186.211

🇺🇸 192.142.2.40

🇨🇳 183.248.219.168

🇨🇳 175.6.109.238

🇮🇹 151.95.83.235

🇺🇸 128.203.204.25

🇨🇳 112.123.17.237

🇫🇷 91.196.152.35

🇦🇲 81.89.212.67

🇺🇸 65.49.1.178

🇯🇵 8.209.224.219

🇬🇧 2a06:4883:5000::59

🇩🇪 213.209.159.226

🇪🇹 196.188.116.56

🇭🇰 165.154.20.228