JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.32.50.225

212.32.50.225 was found in our database!

This IP was reported 59 times. Confidence of Abuse is 0%: ?

ISP	VPN Consumer Las Vegas, NV, United States of America
Usage Type	Data Center/Web Hosting/Transit
ASN	AS6461
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Las Vegas, Nevada

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.32.50.225

Whois 212.32.50.225

IP Abuse Reports for 212.32.50.225:

This IP address has been reported a total of 59 times from 49 distinct sources. 212.32.50.225 was first reported on October 22nd 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-03-01 11:30:13 (3 months ago)	Blocked by UFW (TCP on 51413) Source port: 43287 TTL: 122 Packet length: 52 TOS: 0x00 This report ( ... show more Blocked by UFW (TCP on 51413) Source port: 43287 TTL: 122 Packet length: 52 TOS: 0x00 This report (for 212.32.50.225) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 homeshowdomain.nl	2025-10-24 21:59:11 (7 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2025-10-23. show less	Hacking Web App Attack SSH
🇩🇪 Vegascosmetics	2025-10-24 21:51:41 (7 months ago)	Kingcopy(AI-IDS): IP is wandering around the site and acting suspiciously.	Bad Web Bot
🇫🇷 dynamix	2025-10-24 03:04:49 (7 months ago)	Multiple WAF Violations	Web App Attack
🇸🇪 SkyDancer	2025-10-24 02:41:24 (7 months ago)	Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blo ... show more Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blocked by SkyDancer Ai(web-X). show less	Hacking Brute-Force
Anonymous	2025-10-24 02:38:30 (7 months ago)	Probing to gain illegal access	Web App Attack
🇩🇪 Mr-Money	2025-10-24 02:11:50 (7 months ago)	212.32.50.225 - - [24/Oct/2025:04:11:49 +0200] "GET /.env HTTP/1.1" 404 481 "-" "Mozilla/5.0 (Macint ... show more 212.32.50.225 - - [24/Oct/2025:04:11:49 +0200] "GET /.env HTTP/1.1" 404 481 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" ... show less	Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
🇧🇪 madeit	2025-10-24 02:09:15 (7 months ago)		Web App Attack
🇱🇻 garmtech.com	2025-10-24 02:00:24 (7 months ago)	Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.	Web App Attack
🇵🇱 UMP-PL	2025-10-24 01:38:10 (7 months ago)	212.32.50.225 - - [24/Oct/2025:03:38:09 +0200] "GET /.env HTTP/1.1" 500 806 "-" "Mozilla/5.0 (Macint ... show more 212.32.50.225 - - [24/Oct/2025:03:38:09 +0200] "GET /.env HTTP/1.1" 500 806 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Geck ... show less	Web App Attack
🇮🇹 alph44	2025-10-24 01:28:42 (7 months ago)	(mod_security) mod_security (id:949110) triggered by 212.32.50.225 (US/United States/-): 5 in the la ... show more (mod_security) mod_security (id:949110) triggered by 212.32.50.225 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: show less	Web App Attack
🇩🇪 pigro	2025-10-24 01:25:04 (7 months ago)	212.32.50.225 - - [24/Oct/2025:03:25:03 +0200] "GET /.env HTTP/1.1" 404 125 "-" "Mozilla/5.0 (Macint ... show more 212.32.50.225 - - [24/Oct/2025:03:25:03 +0200] "GET /.env HTTP/1.1" 404 125 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 212.32.50.225 - - [24/Oct/2025:03:25:04 +0200] "GET /.env HTTP/1.1" 404 125 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" ... show less	Web App Attack
🇩🇪 neckaralb-admin.de	2025-10-24 01:08:11 (7 months ago)	(wordpress) Failed login wp-login.php or xmlrpc.php	Web App Attack
🇩🇪 psauxit	2025-10-24 01:05:16 (7 months ago)	Fail2Ban - NGINX 403 forcing to access a restricted resource	Hacking
🇫🇮 Mr-Money	2025-10-24 00:38:22 (7 months ago)	212.32.50.225 - - [24/Oct/2025:02:32:47 +0200] "GET /.env HTTP/1.1" 404 58843 "-" "Mozilla/5.0 (Maci ... show more 212.32.50.225 - - [24/Oct/2025:02:32:47 +0200] "GET /.env HTTP/1.1" 404 58843 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 212.32.50.225 - - [24/Oct/2025:02:35:14 +0200] "GET /.env HTTP/1.1" 404 502 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 212.32.50.225 - - [24/Oct/2025:02:38:21 +0200] "GET /.env HTTP/1.1" 404 3797 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" ... show less	Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack

Showing 1 to 15 of 59 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.36

🇨🇳 121.228.126.172

🇫🇮 45.154.244.2

🇺🇸 44.195.158.232

🇺🇸 34.199.229.234

🇺🇸 3.223.167.178

🇪🇸 185.121.15.184

🇨🇳 182.138.158.30

🇸🇪 171.25.158.57

🇮🇳 162.216.140.11

🇨🇳 116.255.159.152

🇺🇸 98.84.223.204

🇺🇸 65.49.1.13

🇨🇳 58.209.82.167

🇺🇸 52.73.153.168

🇸🇬 47.84.225.215

🇩🇪 45.3.45.184

🇺🇸 44.220.188.76

🇺🇸 35.231.224.252

🇺🇸 35.175.163.127