JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 213.136.86.224

213.136.86.224 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 82%: ?

82%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	vmi3383549.contaboserver.net
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 213.136.86.224

Whois 213.136.86.224

IP Abuse Reports for 213.136.86.224:

This IP address has been reported a total of 16 times from 16 distinct sources. 213.136.86.224 was first reported on June 19th 2026, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SpaceHost-Server	2026-06-20 22:29:46 (10 hours ago)		Brute-Force Web App Attack
🇫🇷 tilellit.pro	2026-06-20 17:31:41 (15 hours ago)	Fail2Ban banned 213.136.86.224 for security violations in jail nginx-aggressive. Log: 2026/06/20 17: ... show more Fail2Ban banned 213.136.86.224 for security violations in jail nginx-aggressive. Log: 2026/06/20 17:31:38 [error] directory index of [REDACTED] is forbidden, client: 213.136.86.224, server: [REDACTED], request: "GET /wp-includes/ HTTP/2.0", host: [REDACTED] 2026/06/20 17:31:41 [error] directory index of [REDACTED] is forbidden, client: 213.136.86.224, server: [REDACTED], request: "GET /wp-includes/css/ HTTP/2.0", host: [REDACTED] ... show less	Bad Web Bot Web App Attack
🇵🇾 armandosaucedo.me	2026-06-20 17:31:07 (15 hours ago)	Threat Intelligence via ARMTI, Web Attack: GET /wp-admin/css/	Web App Attack
🇫🇮 wpwoodo	2026-06-20 15:05:47 (17 hours ago)	Webpage crawler	Bad Web Bot
🇩🇪 macrob	2026-06-20 13:32:20 (19 hours ago)	2026/06/20 13:32:15 [error] 3211640#3211640: 318713199 access forbidden by rule, client: 213.136.86 ... show more 2026/06/20 13:32:15 [error] 3211640#3211640: 318713199 access forbidden by rule, client: 213.136.86.224, server: binixo.pl, request: "GET /wp-admin/css/colors/ HTTP/2.0", host: "binixo.pl" 2026/06/20 13:32:17 [error] 3211640#3211640: 318713199 access forbidden by rule, client: 213.136.86.224, server: binixo.pl, request: "GET /wp-admin/css/colors/blue/ HTTP/2.0", host: "binixo.pl" 2026/06/20 13:32:19 [error] 3211640#3211640: 318713199 access forbidden by rule, client: 213.136.86.224, server: binixo.pl, request: "GET /wp-admin/includes/ HTTP/2.0", host: "binixo.pl" ... show less	Web App Attack
🇬🇷 setupgr	2026-06-20 13:07:13 (19 hours ago)	(mod_security) mod_security (id:11000011) triggered by 213.136.86.224 (DE/Germany/Hesse/Frankfurt am ... show more (mod_security) mod_security (id:11000011) triggered by 213.136.86.224 (DE/Germany/Hesse/Frankfurt am Main/-/[AS51167 CONTABO]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 20 16:07:11.566466 2026] [security2:error] [pid 202885:tid 202930] [client 213.136.86.224:56166] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "contaboserver.net" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: vmi3383549.contaboserver.net"] [severity "CRITICAL"] [hostname "www.fashionfragonard.gr"] [uri "/wp-admin/"] [unique_id "ajaQf0rlp52aw72Tw8fpEQAAARI"] show less	Port Scan
🇦🇺 Anytech	2026-06-20 12:26:56 (20 hours ago)	Blocked by Conn-Monitor: Web scanning activity	Web App Attack
🇫🇷 bazter.pro	2026-06-20 10:43:46 (21 hours ago)	Fail2Ban: plesk-scanner - 10 failures	Port Scan Hacking Brute-Force Web App Attack
🇧🇪 Saec	2026-06-20 03:15:07 (1 day ago)	Jarvis auto-ban: CF honeypot path /wp-admin/ (1× on saec.me)	Port Scan Web App Attack
🇲🇽 impra	2026-06-20 03:13:48 (1 day ago)	Detected 26 connection attempts across 10 ports.	Port Scan Hacking Web App Attack
🇩🇪 roxyapi	2026-06-20 03:09:06 (1 day ago)	Honeypot: automated vulnerability scan / web app attack. Last probe: GET /wp-admin/css/colors/blue	Web App Attack Bad Web Bot
🇺🇸 Epimetheus	2026-06-19 21:55:00 (1 day ago)	Unauthorized access attempts: [GET] /wp-admin/ UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) Apple ... show more Unauthorized access attempts: [GET] /wp-admin/ UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 show less	Web App Attack
🇵🇱 strefapi_com	2026-06-19 20:48:47 (1 day ago)	Brute-force, web ...	Hacking Brute-Force Web App Attack
🇫🇮 as211431.net	2026-06-19 18:08:21 (1 day ago)	Triggered Cloudflare WAF (firewallCustom) from FR. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from FR. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 consul.to	2026-06-19 16:39:00 (1 day ago)	Web attack/malicious scanning detected	Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2602:fa59:10:65a::1

🇳🇱 176.65.148.158

🇹🇼 111.70.32.49

🇬🇧 82.16.221.216

🇺🇸 65.49.1.21

🇦🇪 2.50.223.48

🇻🇳 1.52.35.91

🇨🇳 223.159.80.91

🇮🇳 202.164.149.13

🇦🇷 190.112.138.174

🇧🇷 189.6.15.98

🇧🇷 177.38.42.151

🇻🇳 103.1.210.25

🇳🇱 89.21.67.185

🇮🇳 20.219.91.90

🇻🇳 14.225.206.187

🇩🇪 161.35.65.86

🇩🇪 128.14.225.164

🇫🇮 74.125.114.156

🇲🇾 43.252.215.241