JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.119.41.47

212.119.41.47 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 15%: ?

15%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.119.41.47

Whois 212.119.41.47

IP Abuse Reports for 212.119.41.47:

This IP address has been reported a total of 33 times from 15 distinct sources. 212.119.41.47 was first reported on April 11th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 JimArchon72	2026-05-28 21:55:02 (1 week ago)	2026/05/28 21:51:01 "GET /wp-login.php?action=register HTTP/1.1"	Web App Attack
Anonymous	2026-05-10 01:28:12 (3 weeks ago)	Forum/form spam	Web Spam
🇧🇪 voormedia	2026-04-12 23:21:14 (1 month ago)	Accessed trap at '/wp-login.php'	Web App Attack
🇺🇸 TPI-Abuse	2026-02-21 04:33:27 (3 months ago)	(mod_security) mod_security (id:210350) triggered by 212.119.41.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 212.119.41.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 20 23:33:24.307588 2026] [security2:error] [pid 1950:tid 1950] [client 212.119.41.47:25037] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|videoverse.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "videoverse.com"] [uri "/"] [unique_id "aZk1lMlCPDluVRjsT8VxygAAABM"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 Mugen	2026-02-17 18:32:11 (3 months ago)	Unauthorized VPN login attempts	Brute-Force
🇺🇸 TPI-Abuse	2025-12-18 08:28:55 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 212.119.41.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.119.41.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 18 03:28:47.867886 2025] [security2:error] [pid 2375:tid 2375] [client 212.119.41.47:14661] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|admin.turedinmobiliaria.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "admin.turedinmobiliaria.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aUO7P7A109-D81-1hrDYZQAAAAk"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-15 06:13:52 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 212.119.41.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.119.41.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 15 01:13:44.187581 2025] [security2:error] [pid 5103:tid 5103] [client 212.119.41.47:53539] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|waterjetsolutions.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "waterjetsolutions.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aT-nGFjr8LYsy3xbNPmQ8QAAAAE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 10:30:49 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 212.119.41.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.119.41.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 05:30:41.714257 2025] [security2:error] [pid 9078:tid 9160] [client 212.119.41.47:25095] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|pryclogistica.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pryclogistica.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aTlL0Xb1ecd1uHslhP4SBQAAAdQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇮🇳 Mcshield.org	2025-12-01 04:17:23 (6 months ago)	Connection closed by 212.119.41.47 [preauth] or weird packet	Brute-Force SSH
Anonymous	2025-11-11 02:14:34 (6 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2025-10-08 05:50:38 (7 months ago)	(mod_security) mod_security (id:210350) triggered by 212.119.41.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 212.119.41.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 08 01:50:31.751302 2025] [security2:error] [pid 6499:tid 6499] [client 212.119.41.47:26491] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|tipdavid.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "tipdavid.com"] [uri "/"] [unique_id "aOX7p0UVEcaaMdhHsOOXVAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-05-20 01:50:05 (1 year ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-05-06 05:25:24 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 212.119.41.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 212.119.41.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 06 01:25:20.084472 2025] [security2:error] [pid 628627:tid 628627] [client 212.119.41.47:53179] [client 212.119.41.47] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Churchill II Recliner/Churchill II/Double Fudge/Thumbs.db"] [unique_id "aBmdQKsAP-zYpmarVW4sQQAAAAo"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Churchill%20II%20Recliner/Churchill%20II/Double%20Fudge/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-03-19 22:38:39 (1 year ago)	(From [email protected]) Place Your Bets at the Casino of Love! Take a Chance on Love – Y ... show more (From [email protected]) Place Your Bets at the Casino of Love! Take a Chance on Love – Your Jackpot Awaits! Love is the ultimate game of chance—but with the right odds, you could win big! At https://online-888.casino We’re not just about cards and chips; we’re about luscious women looking for a date. + Match with someone special + Exciting conversations & real chemistry + A fun & thrilling way to find romance Are you ready to roll the dice on love? Your perfect match might be just one click away! ++ Start Matching Now: https://online-888.casino Don’t miss your chance to hit the jackpot in love! https://online-888.casino Where Love is Always in Play... show less	Phishing Web Spam
🇺🇸 nowyouknow	2025-03-19 15:58:22 (1 year ago)	(From [email protected]) Place Your Bets at the Casino of Love! Take a Chance on Love – Yo ... show more (From [email protected]) Place Your Bets at the Casino of Love! Take a Chance on Love – Your Jackpot Awaits! Love is the ultimate game of chance—but with the right odds, you could win big! At https://online-888.casino We’re not just about cards and chips; we’re about luscious women looking for a date. + Match with someone special + Exciting conversations & real chemistry + A fun & thrilling way to find romance Are you ready to roll the dice on love? Your perfect match might be just one click away! ++ Start Matching Now: https://online-888.casino Don’t miss your chance to hit the jackpot in love! https://online-888.casino Where Love is Always in Play... show less	Phishing Web Spam

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 212.192.240.10

🇺🇸 165.154.172.163

🇺🇸 162.216.150.121

🇬🇧 146.70.119.25

🇮🇩 139.255.53.218

🇸🇬 129.227.75.98

🇨🇳 124.66.74.139

🇮🇶 62.3.56.187

🇮🇳 49.205.38.197

🇸🇬 47.84.188.3

🇳🇱 45.148.10.157

🇯🇵 8.216.9.35

🇲🇽 177.231.78.21

🇮🇳 172.217.34.209

🇳🇱 45.142.193.169

🇬🇧 35.203.210.226

🇺🇸 24.176.254.53

🇺🇸 20.29.56.247

🇭🇰 152.32.129.236

🇨🇳 117.159.93.197