JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.212.213.206

173.212.213.206 was found in our database!

This IP was reported 126 times. Confidence of Abuse is 0%: ?

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	vmi3329553.contaboserver.net
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.212.213.206

Whois 173.212.213.206

IP Abuse Reports for 173.212.213.206:

This IP address has been reported a total of 126 times from 88 distinct sources. 173.212.213.206 was first reported on April 2nd 2026, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 openstrike.co.uk	2026-04-16 05:16:04 (2 months ago)	23 attacks on PHP URLs, password grabbing URLs, VC URLs, env grabbing URLs: GET /pinfo.php HTTP/1.1 ... show more 23 attacks on PHP URLs, password grabbing URLs, VC URLs, env grabbing URLs: GET /pinfo.php HTTP/1.1 GET /.aws/credentials HTTP/1.1 GET /.git/config HTTP/1.1 GET /api/.env HTTP/1.1 show less	Web App Attack Hacking
🇬🇧 consul.to	2026-04-16 04:19:30 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 LRob.fr	2026-04-16 02:15:02 (2 months ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇺🇸 hyena	2026-04-16 01:48:15 (2 months ago)	Repeated mod_security events.	Web App Attack
🇹🇭 thaizone.com	2026-04-15 23:10:41 (2 months ago)	Hacking attempts against websites (D1) #1	Web App Attack Hacking
🇨🇭 YF	2026-04-15 23:05:02 (2 months ago)	Attempted access to sensitive files	Web App Attack
🇩🇪 Viveronese	2026-04-15 22:34:28 (2 months ago)	HTTP vulnerability scanning	Web App Attack
🇩🇪 gadix	2026-04-15 22:03:40 (2 months ago)	[16/Apr/2026:00:03:37.102238 +0200] aeALOY7_Os6YkOIscJDOGQAAAAA 173.212.213.206 44710 127.0.0.1 7081 ... show more [16/Apr/2026:00:03:37.102238 +0200] aeALOY7_Os6YkOIscJDOGQAAAAA 173.212.213.206 44710 127.0.0.1 7081 [16/Apr/2026:00:03:37.150747 +0200] aeALOQYpYzw1tzGdfE5ewQAAAAI 173.212.213.206 44716 127.0.0.1 7081 [16/Apr/2026:00:03:37.196885 +0200] aeALOZRXOc2ET7L5IpezvgAAABQ 173.212.213.206 44728 127.0.0.1 7081 ... show less	Web App Attack
🇺🇸 zwebvigil	2026-04-15 21:14:24 (2 months ago)	173.212.213.206 [15/Apr/2026:14:14:22 -0700] "GET /.env HTTP/1.1" 404 2673 "https://www.google.com/ ... show more 173.212.213.206 [15/Apr/2026:14:14:22 -0700] "GET /.env HTTP/1.1" 404 2673 "https://www.google.com/" port=46568 "Mozilla/5.0 (iPhone; CPU iPhone OS 18_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Mobile/15E148 Safari/604.1" "-" "-" "<host>" 1774 173.212.213.206 [15/Apr/2026:14:14:22 -0700] "GET /.env.local HTTP/1.1" 404 2685 "https://www.google.com/" port=46568 "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.7680.178 Mobile Safari/537.36" "-" "-" "<host>" 596 173.212.213.206 [15/Apr/2026:14:14:22 -0700] "GET /.env.production HTTP/1.1" 404 2695 "https://www.google.com/" port=46568 "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" "-" "-" "<host>" 702 173.212.213.206 [15/Apr/2026:14:14:23 -0700] "GET /.env.dev HTTP/1.1" 404 2681 "https://www.google.com/" port=46584 "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; com show less	Web App Attack
🇫🇷 dynamix	2026-04-15 20:31:51 (2 months ago)	Multiple WAF Violations	Web App Attack
🇪🇸 el-brujo	2026-04-15 19:14:17 (2 months ago)	[Wed Apr 15 21:14:16.572782 2026] [proxy_fcgi:error] [pid 464821:tid 465486] [remote 173.212.213.206 ... show more [Wed Apr 15 21:14:16.572782 2026] [proxy_fcgi:error] [pid 464821:tid 465486] [remote 173.212.213.206:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com/ [Wed Apr 15 21:14:17.604710 2026] [proxy_fcgi:error] [pid 464821:tid 465583] [remote 173.212.213.206:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com/ ... show less	Hacking Web App Attack
🇳🇱 juutis	2026-04-15 18:45:49 (2 months ago)	Multiple WAF abuses - IP blocked	Hacking Brute-Force Web App Attack
🇩🇪 sverson	2026-04-15 17:45:45 (2 months ago)	Trolling for resource vulnerabilities / Unauthorized login attempts / Mutliple unauthorized attempts ... show more Trolling for resource vulnerabilities / Unauthorized login attempts / Mutliple unauthorized attempts to access web resources show less	Hacking Brute-Force Web App Attack
🇮🇩 Burayot	2026-04-15 17:15:18 (2 months ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 173.212.213.206 (FR/France/vmi307152 ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 173.212.213.206 (FR/France/vmi3071523.contaboserver.net): 2 in the last 3600 secs show less	Web App Attack
🇳🇱 Site.eu	2026-04-15 15:32:21 (2 months ago)	Excessive multi-domain requests	Brute-Force

Showing 1 to 15 of 126 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.190.51.254

🇧🇷 170.79.85.121

🇨🇳 112.94.252.84

🇮🇩 103.99.214.16

🇪🇸 80.36.144.50

🇧🇬 79.124.49.226

🇳🇱 45.148.10.141

🇺🇸 193.56.116.235

🇩🇪 155.117.127.214

🇮🇹 151.115.164.129

🇰🇷 125.142.37.91

🇱🇹 77.90.185.16

🇺🇸 72.63.20.130

🇺🇸 66.132.186.178

🇭🇰 46.247.61.200

🇧🇷 45.160.231.44

🇺🇸 20.150.195.172

🇨🇳 14.29.184.206

🇹🇼 198.235.24.116

🇬🇧 193.163.125.221