JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 41.185.72.62

41.185.72.62 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 0%: ?

ISP	1 GRID (PTY) LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36943
Domain Name	1-grid.com
Country	🇿🇦 South Africa
City	Cape Town, Western Cape

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 41.185.72.62

Whois 41.185.72.62

IP Abuse Reports for 41.185.72.62:

This IP address has been reported a total of 36 times from 19 distinct sources. 41.185.72.62 was first reported on October 23rd 2021, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 liveaspankaj	2026-02-13 07:48:13 (4 months ago)	DDoS attack: 56 requests in 5m (GET / or repair.php).	DDoS Attack
🇮🇳 liveaspankaj	2026-02-12 11:20:35 (4 months ago)	DDoS attack on learngeeta.com: 361 requests of GET / HTTP/1.1 over plain HTTP with no referrer. Auto ... show more DDoS attack on learngeeta.com: 361 requests of GET / HTTP/1.1 over plain HTTP with no referrer. Automated bot attack with randomized User-Agents (outdated Chrome 127-129). show less	DDoS Attack
🇺🇸 nowyouknow	2026-02-10 20:55:06 (4 months ago)	Malicious Traffic/Form Submission	Phishing Web Spam
🇮🇹 Progetto1	2026-02-10 16:45:02 (4 months ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇩🇪 John Chrys.	2026-02-09 15:02:12 (4 months ago)	41.185.72.62 - - [09/Feb/2026:17:01:19 +0200] "POST /wp-comments-post.php HTTP/1.1" 403 6786 "-" "Mo ... show more 41.185.72.62 - - [09/Feb/2026:17:01:19 +0200] "POST /wp-comments-post.php HTTP/1.1" 403 6786 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 41.185.72.62 - - [09/Feb/2026:17:01:28 +0200] "POST /wp-comments-post.php HTTP/1.1" 403 6786 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 41.185.72.62 - - [09/Feb/2026:17:02:03 +0200] "POST /wp-comments-post.php HTTP/1.1" 403 6786 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 41.185.72.62 - - [09/Feb/2026:17:02:08 +0200] "POST /wp-comments-post.php HTTP/1.1" 403 6786 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 41.185.72.62 - - [09/Feb/2026:17:02:11 +0200] "POST /wp-comments-post.php HTTP/1.1" 403 6786 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537. ... show less	Brute-Force Web App Attack
🇺🇸 oncord	2026-02-07 10:06:11 (4 months ago)	Form spam	Web Spam
🇸🇬 pusathosting.com	2026-02-06 16:20:23 (4 months ago)	24ds22 bruteforce	Brute-Force Web App Attack
🇺🇸 nowyouknow	2026-02-06 12:16:58 (4 months ago)	(From [email protected]) Tired of low-quality traffic? Join GTC and start getting 100% targ ... show more (From [email protected]) Tired of low-quality traffic? Join GTC and start getting 100% targeted, real visitors who are actively searching for your offer. Boost your conversions and grow your business the smart way. Click to Join & Get Targeted Clicks Today! ----> https://morewebtraffic.online/ show less	Phishing Web Spam
🇸🇬 Fn4ticHz	2026-01-21 09:11:03 (4 months ago)	repeated ddos targeted zeroguard.id -- ZeroGuard	DDoS Attack
🇺🇸 TPI-Abuse	2026-01-15 07:06:45 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 41.185.72.62 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 41.185.72.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 15 02:06:39.712221 2026] [security2:error] [pid 29283:tid 29283] [client 41.185.72.62:48514] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.iamnotguilty.com"] [uri "/.git/config"] [unique_id "aWiR_xwy28Va5i24ZySp2AAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 ago.su	2026-01-02 08:01:33 (5 months ago)	F2B blocked nginx activity control ddos v1 [otd]	DDoS Attack
🇩🇪 Packets-Decreaser.NET	2026-01-01 10:44:08 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇨🇭 Modules	2025-12-31 13:05:38 (5 months ago)	Open proxy http://41.185.72.62:3030 (RT:4204ms,Loc:South Africa,ASN:AS36943)	Open Proxy
🇪🇸 el-brujo	2025-12-31 12:37:43 (5 months ago)	Cloudflare WAF: Request Path: / Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (X11; Linu ... show more Cloudflare WAF: Request Path: / Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Action: block Source: l7ddos ASN Description: ZA-1-Grid Country: ZA Method: GET Timestamp: 2025-12-31T12:37:43Z ruleId: 9bc0d8e988e545dea9bd4843c4bef55c. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇨🇭 backslash	2025-12-31 10:05:08 (5 months ago)	block ruleset 1E8A9918B1655D0828F2EEF05553DD2681055C9A	Web Spam

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 187.190.35.163

🇨🇴 186.31.95.163

🇵🇹 78.29.150.1

🇩🇪 202.71.141.170

🇳🇱 176.65.139.114

🇺🇸 173.239.240.72

🇺🇸 104.248.177.83

🇮🇪 52.209.74.64

🇺🇸 195.184.76.217

🇦🇹 185.196.177.250

🇺🇸 173.254.213.217

🇯🇵 118.194.228.167

🇵🇰 103.173.7.233

🇷🇺 88.205.172.170

🇺🇸 74.125.215.98

🇨🇳 221.226.232.44

🇧🇷 205.210.31.237

🇺🇸 205.210.31.108

🇳🇱 192.42.116.56

🇨🇴 181.63.24.8