JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.30.33.65

212.30.33.65 was found in our database!

This IP was reported 155 times. Confidence of Abuse is 32%: ?

32%

ISP	M Nets SAL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	mnets.net
Country	🇪🇸 Spain
City	Madrid, Madrid

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.30.33.65

Whois 212.30.33.65

IP Abuse Reports for 212.30.33.65:

This IP address has been reported a total of 155 times from 63 distinct sources. 212.30.33.65 was first reported on April 13th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-06-13 06:47:39 (1 day ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
🇺🇦 URAN Publishing Service	2026-06-09 02:29:06 (5 days ago)	212.30.33.65 - - [09/Jun/2026:05:29:05 +0300] "GET /wp-includes/js/index.php HTTP/1.1" 404 492 "-" " ... show more 212.30.33.65 - - [09/Jun/2026:05:29:05 +0300] "GET /wp-includes/js/index.php HTTP/1.1" 404 492 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 212.30.33.65 - - [09/Jun/2026:05:29:05 +0300] "GET /wp-content/upgrade/item.php HTTP/1.1" 404 492 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" ... show less	Web App Attack
🇷🇺 sms.ru	2026-06-08 23:33:22 (5 days ago)	/wp-admin/install.php	Web App Attack
🇬🇧 poundawebsiteltd	2026-05-06 13:42:07 (1 month ago)	Apache 403 Forbidden Access. Evidence: [REDACTED_DOMAIN]:80 212.30.33.65 - - [06/May/2026:14:42:04 + ... show more Apache 403 Forbidden Access. Evidence: [REDACTED_DOMAIN]:80 212.30.33.65 - - [06/May/2026:14:42:04 +0100] GET /wp-content/themes/fukasawa/inc/classes/403.php HTTP/1.1 403 158 - Go-http-client/1.1 show less	Web App Attack
🇫🇷 Octopuce	2026-05-06 12:49:30 (1 month ago)	Aggressive web search of vulnerable pages: /wp-includes/js/codemirror/config.php /wp-includes/js/tin ... show more Aggressive web search of vulnerable pages: /wp-includes/js/codemirror/config.php /wp-includes/js/tinymce/themes/about.php /wp-includes/block-bi ... show less	Web App Attack
🇺🇸 [email protected]	2026-04-27 19:21:15 (1 month ago)	RdpGuard detected brute-force attempt on RDP	Brute-Force
🇺🇸 TPI-Abuse	2026-04-27 12:13:44 (1 month ago)	(mod_security) mod_security (id:222160) triggered by 212.30.33.65 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:222160) triggered by 212.30.33.65 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 27 08:13:37.370216 2026] [security2:error] [pid 30739:tid 30739] [client 212.30.33.65:39821] ModSecurity: Access denied with code 403 (phase 1). String match "wp-content/plugins/wp-easycart/inc/admin/phpinfo.php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6347"] [id "222160"] [rev "1"] [msg "COMODO WAF: Information disclosure vulnerability in The EasyCart plugin before 2.0.6 for WordPress (CVE-2014-4942)\|\|londongroup.info\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "londongroup.info"] [uri "/wp-content/plugins/wp-easycart/inc/admin/phpinfo.php"] [unique_id "ae9S8SQHxTZjQDIZjKN2oAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-04-23 08:39:54 (1 month ago)	212.30.33.65 - - [23/Apr/2026:11:39:54 +0300] "GET /wp-content/plugins/wpcall-button/button-image.ph ... show more 212.30.33.65 - - [23/Apr/2026:11:39:54 +0300] "GET /wp-content/plugins/wpcall-button/button-image.php HTTP/1.1" 404 716 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-04-23 03:13:42 (1 month ago)	212.30.33.65 - - [23/Apr/2026:06:13:41 +0300] "GET /wp-content/plugins/wp-cache-sys/index.php HTTP/1 ... show more 212.30.33.65 - - [23/Apr/2026:06:13:41 +0300] "GET /wp-content/plugins/wp-cache-sys/index.php HTTP/1.1" 404 709 "-" "Go-http-client/1.1" 212.30.33.65 - - [23/Apr/2026:06:13:41 +0300] "GET /wp-content/plugins/mrx404/upp.php HTTP/1.1" 404 709 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇳🇱 Site.eu	2026-04-19 01:41:21 (1 month ago)	Excessive 404/403 errors	Brute-Force
🇫🇷 dynamix	2026-04-18 19:23:28 (1 month ago)	Multiple WAF Violations	Web App Attack
🇪🇸 masterguru	2026-04-08 02:56:35 (2 months ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122) show less	Bad Web Bot
🇫🇮 Erpelstolz	2026-03-23 00:14:21 (2 months ago)	external host: 212.30.33.65 - - [23/Mar/2026:01:14:15 +0100] "GET /wp-content/plugins/dzs-zoomsounds ... show more external host: 212.30.33.65 - - [23/Mar/2026:01:14:15 +0100] "GET /wp-content/plugins/dzs-zoomsounds/1877.php HTTP/1.1" 404 9665 "http://erpelstolz.at//wp-content/plugins/dzs-zoomsounds/1877.php" "Go-http-client/1.1" show less	Web App Attack
🇫🇷 Baking333	2026-03-16 20:03:36 (2 months ago)	[redacted] 212.30.33.65 - - [16/Mar/2026:21:03:34 +0100] "GET /wp-includes/css/dist/ HTTP/1.1" 301 5 ... show more [redacted] 212.30.33.65 - - [16/Mar/2026:21:03:34 +0100] "GET /wp-includes/css/dist/ HTTP/1.1" 301 560 0/148 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" [redacted] 212.30.33.65 - - [16/Mar/2026:21:03:34 +0100] "GET /wp-includes/js/dist/ HTTP/1.1" 301 558 0/138 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-03-16 18:21:12 (2 months ago)	Blocking for trying to access an exploit file: /vendor/phpunit/phpunit/src/Util/PHP/	Hacking

Showing 1 to 15 of 155 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.82

🇰🇼 188.71.224.100

🇳🇱 185.226.197.42

🇭🇰 118.193.39.103

🇷🇴 80.94.92.171

🇺🇸 72.56.41.50

🇫🇷 51.68.34.131

🇬🇧 35.203.210.104

🇧🇷 34.95.205.60

🇧🇪 34.62.73.143

🇻🇳 27.79.5.139

🇸🇪 16.171.138.215

🇮🇷 5.237.124.251

🇮🇳 4.240.96.30

🇦🇺 3.26.171.224

🇸🇬 194.233.83.141

🇧🇷 186.209.52.199

🇧🇷 177.135.126.153

🇸🇪 148.253.211.167

🇮🇩 103.130.81.35