JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 211.72.207.199

211.72.207.199 was found in our database!

This IP was reported 186 times. Confidence of Abuse is 66%: ?

66%

ISP	Yi Ta Net Co., Ltd.
Usage Type	Fixed Line ISP
ASN	AS3462
Domain Name	cht.com.tw
Country	🇹🇼 Taiwan
City	Taipei, Taiwan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 211.72.207.199

Whois 211.72.207.199

IP Abuse Reports for 211.72.207.199:

This IP address has been reported a total of 186 times from 71 distinct sources. 211.72.207.199 was first reported on July 24th 2024, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Hazzard	2026-06-20 04:23:18 (4 hours ago)	(wordpress) Failed wordpress login from 211.72.207.199 (TW/Taiwan/New Taipei City/New Taipei City/-/ ... show more (wordpress) Failed wordpress login from 211.72.207.199 (TW/Taiwan/New Taipei City/New Taipei City/-/[redacted]): (CF_ENABLE) show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-19 17:10:23 (16 hours ago)	(mod_security) mod_security (id:225170) triggered by 211.72.207.199 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 211.72.207.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 13:10:16.679445 2026] [security2:error] [pid 28541:tid 28567] [client 211.72.207.199:55212] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|lpsouthdakota.com.omegaoak.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lpsouthdakota.com.omegaoak.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajV3-MP4nDap53S7v9pObgAAAFg"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇴 SpamStopper	2026-06-19 12:53:15 (20 hours ago)	Automated mitigation by Fail2Ban firewall due to persistent security policy violations.	Hacking Brute-Force Bad Web Bot Web App Attack
🇩🇪 Hazzard	2026-06-18 10:51:26 (1 day ago)	(wordpress) Failed wordpress login from 211.72.207.199 (TW/Taiwan/New Taipei City/New Taipei City/-/ ... show more (wordpress) Failed wordpress login from 211.72.207.199 (TW/Taiwan/New Taipei City/New Taipei City/-/[redacted]): (CF_ENABLE) show less	Brute-Force
Anonymous	2026-06-17 11:23:35 (2 days ago)	211.72.207.199 - - [17/Jun/2026:13:23:29 +0200] "GET /wp-login.php HTTP/2.0" 200 4003 "-" "Mozilla/5 ... show more 211.72.207.199 - - [17/Jun/2026:13:23:29 +0200] "GET /wp-login.php HTTP/2.0" 200 4003 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" ... show less	Web App Attack
🇵🇱 bmino.pl	2026-06-17 01:27:21 (3 days ago)	Autoban IP(2): 211.72.207.199 - Hostname: Chunghwa Telecom Co., Ltd. - City: New Taipei City - Regio ... show more Autoban IP(2): 211.72.207.199 - Hostname: Chunghwa Telecom Co., Ltd. - City: New Taipei City - Region: New Taipei City - Country: Taiwan - Location: 25.0693,121.4626 - Organization: Chunghwa Telecom Co. Ltd. - failed attempts. show less	Web App Attack
🇺🇸 lostswordfish.com	2026-06-16 04:44:04 (4 days ago)	Wordfence waf block on wvrsol	Web App Attack
🇺🇸 xxkodedxx	2026-06-14 13:22:57 (5 days ago)	[Zorvexus edge-defense] GET .env / WordPress honeypot probe Trigger: 1× honeypot-get in 10m window. ... show more [Zorvexus edge-defense] GET .env / WordPress honeypot probe Trigger: 1× honeypot-get in 10m window. Active: 13:22:22→13:22:23 UTC Volume: 2 honeypot probe(s) Bait taken: /wp-login.php UA: "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" Auto-banned 30d. zorvexus-banner. show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 18:20:32 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 211.72.207.199 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 211.72.207.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 14:20:25.566145 2026] [security2:error] [pid 23434:tid 23434] [client 211.72.207.199:51134] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|midcityrotary.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "midcityrotary.org"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ai2facFRoEy6ZzBZgbg7UAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-06-13 00:15:12 (1 week ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-12 14:24:02 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 03:44:31 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 211.72.207.199 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 211.72.207.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 23:44:24.117089 2026] [security2:error] [pid 26656:tid 26660] [client 211.72.207.199:58026] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|woofnrose.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "woofnrose.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiovGLY3kVax6EPVGc61eAAAAUI"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇹 Malta	2026-06-10 00:51:56 (1 week ago)	211.72.207.199 - - [10/Jun/2026:02:51:55 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Lin ... show more 211.72.207.199 - - [10/Jun/2026:02:51:55 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇺🇸 nationaleventpros.com	2026-06-09 06:37:57 (1 week ago)	WordPress login attempt	Brute-Force
🇩🇪 LRob.fr	2026-06-08 05:00:11 (1 week ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack

Showing 1 to 15 of 186 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.219

🇺🇸 162.216.149.148

🇷🇴 92.118.39.62

🇫🇷 91.196.152.14

🇧🇬 91.191.209.46

🇺🇸 44.209.2.0

🇬🇧 35.203.210.104

🇩🇪 194.187.176.157

🇲🇽 187.191.48.4

🇵🇾 167.250.36.23

🇺🇸 147.185.132.62

🇺🇸 137.175.7.218

🇺🇸 98.89.204.118

🇱🇹 81.30.98.158

🇺🇸 66.132.172.125

🇺🇸 66.132.172.118

🇺🇸 44.22.252.1

🇮🇳 2401:4900:8817:f36:bd60:8fd:1129:87aa

🇺🇸 134.122.21.135

🇨🇳 118.145.231.71