JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 113.212.108.18

113.212.108.18 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 0%: ?

ISP	City Online Ltd.
Usage Type	Fixed Line ISP
ASN	AS136224
Hostname(s)	host-108-18.cityonlinebd.net
Domain Name	cityonlinebd.net
Country	🇧🇩 Bangladesh
City	Dhaka, Dhaka Division

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 113.212.108.18

Whois 113.212.108.18

IP Abuse Reports for 113.212.108.18:

This IP address has been reported a total of 27 times from 21 distinct sources. 113.212.108.18 was first reported on September 2nd 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 FeG Deutschland	2026-04-27 20:42:03 (2 months ago)	Mail: - login with unknown user - bruteforce	Brute-Force
🇫🇷 security.rdmc.fr	2026-04-24 20:04:27 (2 months ago)	Port Scan Attack proto:TCP src:29277 dst:23	Port Scan
🇺🇸 MPL	2026-04-24 20:03:14 (2 months ago)	tcp/23 (2 or more attempts)	Port Scan
Anonymous	2026-01-19 00:05:37 (5 months ago)	scanning http requests from known botnet	Web App Attack
🇨🇦 Largnet SOC	2026-01-16 16:26:10 (5 months ago)	113.212.108.18 triggered Icarus honeypot on port 23. Check us out on github.	Port Scan Hacking
🇮🇹 VHosting	2025-12-23 17:10:11 (6 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-12-18 00:10:36 (6 months ago)	Aggressive web scan	SQL Injection Bad Web Bot Web App Attack
Anonymous	2025-12-11 10:23:40 (6 months ago)	Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ... show more Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in printer-friendly.asp show less	Bad Web Bot Exploited Host
Anonymous	2025-11-23 04:43:04 (7 months ago)	scanning http requests from known botnet	Web App Attack
🇨🇭 backslash	2025-10-05 13:30:14 (8 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-09-03 23:01:12 (9 months ago)	(mod_security) mod_security (id:225170) triggered by 113.212.108.18 (host-108-18.cityonlinebd.net): ... show more (mod_security) mod_security (id:225170) triggered by 113.212.108.18 (host-108-18.cityonlinebd.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 03 19:01:06.238104 2025] [security2:error] [pid 21181:tid 21181] [client 113.212.108.18:42483] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|321q.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "321q.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aLjIsi04200akUoCIQdHDQAAAAQ"], referer: https://321q.com/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇴 ingentar	2025-08-29 19:04:17 (9 months ago)	Aug 29 08:26:55 mail postfix/smtpd[959229]: warning: unknown[113.212.108.18]: SASL LOGIN authenticat ... show more Aug 29 08:26:55 mail postfix/smtpd[959229]: warning: unknown[113.212.108.18]: SASL LOGIN authentication failed: (reason unavailable), [email protected] Aug 29 10:05:56 mail postfix/smtpd[967789]: warning: unknown[113.212.108.18]: SASL LOGIN authentication failed: (reason unavailable), [email protected] Aug 29 12:24:15 mail postfix/smtpd[996924]: warning: unknown[113.212.108.18]: SASL LOGIN authentication failed: (reason unavailable), [email protected] Aug 29 14:04:14 mail postfix/smtpd[1017765]: warning: unknown[113.212.108.18]: SASL LOGIN authentication failed: (reason unavailable), [email protected] ... show less	Email Spam Brute-Force
🇳🇱 exxos	2025-08-28 20:03:01 (9 months ago)	Attacks with Bad user agents	Hacking
🇫🇷 Nicolmn	2025-08-24 10:47:41 (10 months ago)	Web form spam ( id hd33.l )	Web Spam
🇳🇱 EGP Abuse Dept	2025-08-13 03:49:37 (10 months ago)	Port connection indicating compromised host	Port Scan Hacking Exploited Host

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 210.183.21.53

🇦🇹 145.40.37.143

🇳🇱 89.21.67.177

🇰🇷 58.229.180.107

🇺🇸 44.71.17.149

🇨🇳 221.228.203.3

🇧🇷 189.63.160.195

🇲🇴 182.93.7.194

🇯🇵 101.36.105.94

🇷🇺 95.220.41.250

🇨🇦 85.217.149.44

🇰🇷 58.224.62.29

🇺🇸 44.250.197.204

🇺🇸 44.235.251.52

🇺🇸 20.124.84.235

🇧🇷 186.205.20.205

🇦🇷 186.22.225.71

🇺🇸 172.98.33.75

🇳🇱 91.92.40.5

🇺🇸 72.203.125.177