JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.30.36.113

212.30.36.113 was found in our database!

This IP was reported 402 times. Confidence of Abuse is 95%: ?

95%

ISP	M Nets SAL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	mnets.net
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.30.36.113

Whois 212.30.36.113

IP Abuse Reports for 212.30.36.113:

This IP address has been reported a total of 402 times from 167 distinct sources. 212.30.36.113 was first reported on February 26th 2023, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 WinnieHoneypots	2026-06-22 22:57:19 (23 hours ago)	Probe hitting /admin-app/.env%20 detected. Whatcha lookin for in there?!	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-06-21 10:22:58 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-21 02:01:21 (2 days ago)	212.30.36.113 - - [21/Jun/2026:05:01:13 +0300] "GET /wp-content/themes/Divi/404.php HTTP/1.1" 404 25 ... show more 212.30.36.113 - - [21/Jun/2026:05:01:13 +0300] "GET /wp-content/themes/Divi/404.php HTTP/1.1" 404 251 "-" "Go-http-client/1.1" 212.30.36.113 - - [21/Jun/2026:05:01:17 +0300] "GET /wp-content/themes/bltm/wp-login.php HTTP/1.1" 404 251 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇩🇪 LRob.fr	2026-06-20 11:15:13 (3 days ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇮🇩 soc-yk	2026-06-18 06:06:12 (5 days ago)	Type: web_scanning Risk: 100 Events: 97 Evidence: - Automated hostile web probing detected - Repeat ... show more Type: web_scanning Risk: 100 Events: 97 Evidence: - Automated hostile web probing detected - Repeated web scanning activity observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Web App Attack
🇩🇪 LRob.fr	2026-06-18 01:15:10 (5 days ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇺🇸 infra-monitor	2026-06-14 02:00:08 (1 week ago)	Automated ban via infra-monitor: php-backdoor-generic	Hacking Web App Attack
Anonymous	2026-06-13 23:32:15 (1 week ago)	212.30.36.113 - - [13/Jun/2026:23:32:13 +0000] "GET /adminer.php HTTP/2.0" 404 182 "http://suann.net ... show more 212.30.36.113 - - [13/Jun/2026:23:32:13 +0000] "GET /adminer.php HTTP/2.0" 404 182 "http://suann.net/adminer.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇩🇪 Admins@FBN	2026-06-13 01:50:38 (1 week ago)	Threat Host blocked...	Hacking Web Spam Email Spam
🇩🇪 initsol	2026-06-10 13:45:34 (1 week ago)	[Wed Jun 10 15:45:33.758283 2026] [php:error] [pid 2613627:tid 2613627] [client 212.30.36.113:39633] ... show more [Wed Jun 10 15:45:33.758283 2026] [php:error] [pid 2613627:tid 2613627] [client 212.30.36.113:39633] script '/var/www/html/__info.php' not found or unable to stat [Wed Jun 10 15:45:33.770153 2026] [php:error] [pid 2613627:tid 2613627] [client 212.30.36.113:39633] script '/var/www/html/_info-backoffice.php' not found or unable to stat [Wed Jun 10 15:45:33.816240 2026] [php:error] [pid 2613627:tid 2613627] [client 212.30.36.113:39633] script '/var/www/html/_info.php' not found or unable to stat ... show less	Brute-Force
🇬🇧 consul.to	2026-06-10 12:26:31 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 maxpower	2026-06-10 06:16:56 (1 week ago)	(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 212.30.36.113 (DE/Germany/-): 1 in the last 3 ... show more (aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 212.30.36.113 (DE/Germany/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 212.30.36.113 - - [10/Jun/2026:08:16:52 +0200] "GET /wp-content/themes/Divi/404.php HTTP/1.1" 301 305 "-" "Go-http-client/1.1" "-" host=comprendoschool.it show less	Port Scan
🇪🇸 librebit	2026-06-08 09:43:56 (2 weeks ago)	Brute force	Brute-Force
🇩🇪 Ba-Yu	2026-06-07 11:01:28 (2 weeks ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇺🇸 ambor	2026-06-07 00:45:35 (2 weeks ago)	Honeypot triggered: /adminer.php on ifebridge.com. User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; ... show more Honeypot triggered: /adminer.php on ifebridge.com. User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36. Method: GET show less	Web App Attack

Showing 1 to 15 of 402 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 59.15.58.148

🇧🇪 198.235.24.203

🇲🇰 185.56.250.215

🇧🇴 181.188.148.74

🇩🇪 157.230.19.140

🇨🇳 124.152.90.68

🇮🇳 103.204.167.14

🇧🇩 103.177.55.81

🇺🇸 71.183.157.8

🇺🇸 47.17.225.63

🇫🇷 45.157.112.24

🇲🇽 187.132.201.6

🇺🇸 162.254.36.150

🇺🇸 162.216.150.176

🇸🇬 146.190.104.85

🇸🇬 103.187.146.90

🇨🇮 41.207.25.102

🇷🇴 2.57.121.25

🇨🇦 165.22.231.215

🇺🇸 162.216.150.44