JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 206.232.3.248

206.232.3.248 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 1%: ?

ISP	Aventice LLC
Usage Type	Fixed Line ISP
ASN	AS11572
Domain Name	aventice.com
Country	🇺🇸 United States of America
City	Atlanta, Georgia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 206.232.3.248

Whois 206.232.3.248

IP Abuse Reports for 206.232.3.248:

This IP address has been reported a total of 18 times from 9 distinct sources. 206.232.3.248 was first reported on June 30th 2022, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-05-09 04:09:43 (4 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 07-09.206.232.3.248.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 07-09.206.232.3.248.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-04-20 05:46:35 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 08-46.206.232.3.248.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 08-46.206.232.3.248.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-04-19 23:34:59 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 02-34.206.232.3.248.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 02-34.206.232.3.248.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 TPI-Abuse	2026-03-29 04:38:59 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 206.232.3.248 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 206.232.3.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 00:38:54.689750 2026] [security2:error] [pid 2707:tid 2707] [client 206.232.3.248:36385] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|CapitalSwissCorp.com:80\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "capitalswisscorp.com"] [uri "/mailto:[email protected]"] [unique_id "acis3stygbUHh-Dz6FK3owAAAAs"], referer: http://CapitalSwissCorp.com show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 tilellit.pro	2026-03-22 10:34:46 (2 months ago)	Fail2Ban banned 206.232.3.248 for security violations in jail nginx-aggressive. Log: 2026/03/22 10:3 ... show more Fail2Ban banned 206.232.3.248 for security violations in jail nginx-aggressive. Log: 2026/03/22 10:34:43 [crit] SSL_read() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while keepalive, client: 206.232.3.248, server: [REDACTED] 2026/03/22 10:34:46 [crit] SSL_read() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while keepalive, client: 206.232.3.248, server: [REDACTED] ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-25 08:49:18 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 206.232.3.248 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 206.232.3.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 25 03:49:11.466336 2026] [security2:error] [pid 8439:tid 8439] [client 206.232.3.248:40829] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|CapitalSwissCorp.com:80\|F\|2"] [data "[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "capitalswisscorp.com"] [uri "/mailto:[email protected]"] [unique_id "aZ63h5VIUnCA8S0hy6a4wQAAABA"], referer: http://CapitalSwissCorp.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-24 03:50:14 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 206.232.3.248 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 206.232.3.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 23 22:50:09.805650 2026] [security2:error] [pid 13268:tid 13268] [client 206.232.3.248:51601] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.televisonic.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.televisonic.com"] [uri "/mailto:[email protected]"] [unique_id "aXRBcdwW94XxQnfaEtcqMQAAAAg"], referer: https://www.televisonic.com show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 robotstxt	2026-01-09 07:40:09 (4 months ago)	206.232.3.248 - - [09/Jan/2026:07:39:11 +0000] "GET /mailto:[email protected]?subject=Quiero ... show more 206.232.3.248 - - [09/Jan/2026:07:39:11 +0000] "GET /mailto:[email protected]?subject=Quiero%20saber%20m%C3%A1s%20sobre%20los%20cursos%20de%20e-learning HTTP/1.1" 404 11222 "https://e-learning.qualipharmagroup.com" rt="0.261" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3202.94 Safari/537.36" "-" h="e-learning.qualipharmagroup.com" sn="e-learning.qualipharmagroup.com" ru="/mailto:[email protected]?subject=Quiero%20saber%20m%C3%A1s%20sobre%20los%20cursos%20de%20e-learning" u="/index.php" ucs="-" ua="unix:/var/run/php/elearning82.sock" us="404" uct="0.000" urt="0.262" 206.232.3.248 - - [09/Jan/2026:07:39:13 +0000] "GET /mailto:[email protected]?subject=Quiero%20saber%20m%C3%A1s%20sobre%20los%20cursos%20de%20e-learning HTTP/1.1" 404 11222 "https://e-learning.qualipharmagroup.com" rt="0.255" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3202.94 Safari/537.36" "-" h="e-le ... show less	Bad Web Bot
🇬🇧 Steve	2026-01-06 21:04:03 (5 months ago)	Forum Spam	Web Spam
🇺🇸 TPI-Abuse	2026-01-03 02:31:31 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 206.232.3.248 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 206.232.3.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 02 21:31:24.407365 2026] [security2:error] [pid 21777:tid 21777] [client 206.232.3.248:55081] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.holgerfeld.com:80\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.holgerfeld.com"] [uri "/mailto:[email protected]"] [unique_id "aVh_fJEwPd9TfpOeA1NSSwAAAAc"], referer: http://www.holgerfeld.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Psycho Solutions LLC	2025-04-22 18:25:22 (1 year ago)	Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N ... show more Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N/A - Timestamp: 4/22/2025 6:25 pm (UTC-6) show less	Web Spam Hacking Bad Web Bot Web App Attack
🇺🇸 Psycho Solutions LLC	2025-04-04 19:58:53 (1 year ago)	Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N ... show more Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N/A - Timestamp: 4/4/2025 7:58 pm (UTC-6) show less	Web Spam Hacking Bad Web Bot Web App Attack
Anonymous	2025-02-28 23:32:33 (1 year ago)	wordpress-trap	Web App Attack
Anonymous	2025-02-27 09:39:00 (1 year ago)	wordpress-trap	Web App Attack
Anonymous	2025-02-26 01:10:28 (1 year ago)	wordpress-trap	Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.148.2

🇸🇬 8.222.201.35

🇳🇱 204.76.203.219

🇹🇭 203.154.158.195

🇺🇿 185.191.141.115

🇮🇳 103.255.134.61

🇷🇴 80.94.92.167

🇺🇸 48.214.53.64

🇳🇱 45.142.193.9

🇷🇴 2.57.121.25

🇺🇸 2605:52c0:2:2779:be24:11ff:fe80:96cf

🇹🇼 198.235.24.76

🇲🇽 186.96.145.241

🇺🇸 167.253.19.88

🇳🇱 45.142.193.161

🇨🇳 39.101.95.101

🇨🇳 39.101.93.195

🇺🇸 20.168.0.84

🇰🇷 1.176.134.242

🇰🇷 220.64.111.218