JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.87.219.13

212.87.219.13 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 20%: ?

20%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.87.219.13

Whois 212.87.219.13

IP Abuse Reports for 212.87.219.13:

This IP address has been reported a total of 13 times from 10 distinct sources. 212.87.219.13 was first reported on January 21st 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 juguemosalacarioca.com	2026-06-09 05:35:17 (2 weeks ago)	Multiple HTTP calls attempting to GET resources using common API calls or formats on port 8080	Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 13:36:34 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 212.87.219.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 212.87.219.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 09:36:28.079255 2026] [security2:error] [pid 10080:tid 10080] [client 212.87.219.13:25769] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "major33.com"] [uri "/wp-config.php.old"] [unique_id "ahBb3LJQ4YhOsa0elQcsEAAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 20:36:14 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 212.87.219.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 212.87.219.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 16:36:06.912009 2026] [security2:error] [pid 13378:tid 13390] [client 212.87.219.13:10477] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "property-management-companies-chicago.com"] [uri "/.wp-config.php.swp"] [unique_id "ag4bNio82QsOYqaN50OpQgAAAUk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-05-16 11:00:13 (1 month ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
Anonymous	2026-05-04 08:11:30 (1 month ago)	212.87.219.13 - - [04/May/2026:16:11:28 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4581 "-" "Mozilla/5.0 ... show more 212.87.219.13 - - [04/May/2026:16:11:28 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4581 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
Anonymous	2026-04-30 20:31:03 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-04-29 01:05:44 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 212.87.219.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 212.87.219.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 21:05:38.564185 2026] [security2:error] [pid 8995:tid 9019] [client 212.87.219.13:20853] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|whiterabbitimports.plumeraproductions.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "whiterabbitimports.plumeraproductions.com"] [uri "/s3cmd.ini"] [unique_id "afFZYn3NZOUJ255qxSL0YAAAAFI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-28 18:30:36 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 212.87.219.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 212.87.219.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 14:30:29.631422 2026] [security2:error] [pid 32030:tid 32030] [client 212.87.219.13:44481] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.bnaior.joyfulservice.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.bnaior.joyfulservice.com"] [uri "/s3cmd.ini"] [unique_id "afD8xfjEpT0cBkX4b5zpmgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-03-29 09:06:58 (2 months ago)	Fail2ban filtered ...	Web App Attack
🇮🇩 Burayot	2026-03-25 19:20:20 (2 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 212.87.219.13 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 212.87.219.13 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 oralunal	2026-03-17 19:31:06 (3 months ago)	IP banned by Fail2Ban in jail ente-suss ente.com-ssl_log mvfnds ...	Bad Web Bot Web App Attack
🇨🇭 backslash	2026-02-13 13:30:05 (4 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
Anonymous	2026-01-21 12:30:59 (5 months ago)	wordpress-trap	Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇸 185.121.15.184

🇧🇬 213.130.93.177

🇧🇷 189.15.193.159

🇫🇷 158.220.121.73

🇧🇬 91.191.209.118

🇺🇸 65.49.1.122

🇳🇱 45.148.10.151

🇺🇸 34.197.70.90

🇺🇸 13.216.10.17

🇧🇪 198.235.24.218

🇧🇪 198.235.24.197

🇺🇸 195.184.76.244

🇬🇧 193.32.209.226

🇳🇱 176.65.139.56

🇩🇰 146.70.89.151

🇨🇳 122.226.191.166

🇨🇳 120.48.26.185

🇫🇷 95.182.82.67

🇳🇱 91.92.40.47

🇺🇸 64.62.197.106