JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 213.108.1.52

213.108.1.52 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 0%: ?

ISP	Baykov Ilya Sergeevich
Usage Type	Data Center/Web Hosting/Transit
ASN	AS41745
Hostname(s)	hip.fi-1.ibcs
Domain Name	hip-hosting.com
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 213.108.1.52

Whois 213.108.1.52

IP Abuse Reports for 213.108.1.52:

This IP address has been reported a total of 17 times from 9 distinct sources. 213.108.1.52 was first reported on November 6th 2021, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-08-12 16:34:22 (10 months ago)	(mod_security) mod_security (id:210831) triggered by 213.108.1.52 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 213.108.1.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 12 12:34:13.401637 2025] [security2:error] [pid 29151:tid 29151] [client 213.108.1.52:52765] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|backstore.com\|F\|4"] [data "a href="] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "backstore.com"] [uri "/webalizer/usage_202508.html"] [unique_id "aJttBScPYy7TAnALukZBxQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-06-19 21:25:06 (1 year ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-05-06 04:54:29 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 213.108.1.52 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 213.108.1.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 06 00:54:21.498888 2025] [security2:error] [pid 594104:tid 594104] [client 213.108.1.52:56465] [client 213.108.1.52] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Addison/Thumbs.db"] [unique_id "aBmV_Vnuj5BtcvIH-0kGOgAAABs"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Addison/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Anonymous	2025-02-28 16:00:00 (1 year ago)	Brute force attack detected from 213.108.1.52	DDoS Attack Brute-Force Web App Attack
🇺🇸 Anonymous	2025-02-28 16:00:00 (1 year ago)	Brute force attack detected from 213.108.1.52	DDoS Attack Brute-Force Web App Attack
🇺🇸 Anonymous	2025-02-28 16:00:00 (1 year ago)	Brute force attack detected from 213.108.1.52	DDoS Attack Brute-Force Web App Attack
🇺🇸 Anonymous	2025-02-28 16:00:00 (1 year ago)	Brute force attack detected from 213.108.1.52	DDoS Attack Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-11-10 22:10:17 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 213.108.1.52 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 213.108.1.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 10 17:10:15.136089 2024] [security2:error] [pid 2553945:tid 2553945] [client 213.108.1.52:11233] [client 213.108.1.52] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Danbury II/Danbury II/Stetson Coffee/originals/Thumbs.db"] [unique_id "ZzEvR_Ar2p97I9aqF8VKZAAAAAw"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Danbury%20II/Danbury%20II/Stetson%20Coffee/originals/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-10-09 22:43:43 (1 year ago)	This IP was involved in an brute force and password spray attack on 2024/10/09 17:41:21	Port Scan Brute-Force Exploited Host Web App Attack
🇷🇺 sms.ru	2024-09-24 08:30:09 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
Anonymous	2024-09-10 12:41:33 (1 year ago)	Malicious activity detected	Hacking Web App Attack
🇷🇸 Smel	2024-08-25 14:07:12 (1 year ago)	HTTP/80/443/8080 Unauthorized Probe, Hack -	Hacking Web App Attack
🇺🇸 TPI-Abuse	2024-08-07 17:55:17 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 213.108.1.52 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 213.108.1.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 07 13:55:09.513567 2024] [security2:error] [pid 16845:tid 16845] [client 213.108.1.52:28501] [client 213.108.1.52] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Ashton II Recliner/Havana Brown/originals/Thumbs.db"] [unique_id "ZrO0_TRduwD_F3q1D5JFdwAAAAo"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Ashton%20II%20Recliner/Havana%20Brown/originals/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2024-05-15 22:45:06 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇨🇭 backslash	2024-04-11 17:40:24 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 2001:1810:4201:175:0:4:4531:7045

🇭🇰 199.45.155.108

🇹🇼 198.235.24.58

🇺🇸 195.184.76.183

🇹🇷 185.139.5.123

🇹🇭 125.27.13.41

🇮🇳 125.19.156.46

🇫🇷 91.196.152.37

🇧🇬 79.124.58.254

🇺🇸 65.110.40.115

🇺🇸 205.210.31.57

🇬🇧 193.163.125.254

🇧🇴 190.181.27.27

🇰🇷 182.210.76.170

🇨🇳 175.44.80.4

🇭🇰 154.83.12.89

🇺🇸 151.241.122.108

🇸🇬 146.174.183.157

🇹🇼 128.14.237.120

🇹🇭 118.172.43.114