JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 213.197.95.67

213.197.95.67 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 31%: ?

31%

ISP	DIGI Tavkozlesi es Szolgaltato Kft.
Usage Type	Fixed Line ISP
ASN	AS20845
Hostname(s)	213-197-95-67.pool.digikabel.hu
Domain Name	digi.hu
Country	🇭🇺 Hungary
City	Budapest, Budapest

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 213.197.95.67

Whois 213.197.95.67

IP Abuse Reports for 213.197.95.67:

This IP address has been reported a total of 14 times from 8 distinct sources. 213.197.95.67 was first reported on May 1st 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 zXero	2026-06-03 12:34:40 (3 days ago)	Fail2Ban automatic report - jail: no-wordpress	Brute-Force SSH DDoS Attack
🇨🇦 zXero	2026-05-29 12:28:44 (1 week ago)	Fail2Ban automatic report - jail: no-wordpress	Brute-Force SSH DDoS Attack
🇨🇦 zXero	2026-05-09 03:15:08 (4 weeks ago)	Fail2Ban automatic report - jail: no-wordpress	Brute-Force SSH DDoS Attack
🇮🇩 Kencang.ID	2026-05-05 21:40:06 (1 month ago)	Failed Login Attempt 2026-05-05 21:40:06 \| 213.197.95.67 \| Desktop \| Google Chrome \| Budapest, Budap ... show more Failed Login Attempt 2026-05-05 21:40:06 \| 213.197.95.67 \| Desktop \| Google Chrome \| Budapest, Budapest, Hungary \| DIGI Tavkozlesi es Szolgaltato Kft \| Mozilla/5.0 (Windows NT 6.3; x86) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.0.0 Safari/537.36 show less	Brute-Force FTP Brute-Force
🇺🇸 TPI-Abuse	2026-05-05 21:36:05 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 213.197.95.67 (213-197-95-67.pool.digikabel.hu) ... show more (mod_security) mod_security (id:225170) triggered by 213.197.95.67 (213-197-95-67.pool.digikabel.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 17:35:56.652631 2026] [security2:error] [pid 23717:tid 23717] [client 213.197.95.67:58884] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mikedeutsch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mikedeutsch.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afpivIK4R6RwRkDLjwPXewAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-05 20:10:20 (1 month ago)	213.197.95.67 - - [05/May/2026:22:05:02 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 ... show more 213.197.95.67 - - [05/May/2026:22:05:02 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x86) AppleWebKit/537.36 (KHTML, like Gecko) Safari/13.0.0.0 Safari/537.36" 213.197.95.67 - - [05/May/2026:22:05:02 +0200] "POST /xmlrpc.php HTTP/1.0" 200 593 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x86) AppleWebKit/537.36 (KHTML, like Gecko) Safari/13.0.0.0 Safari/537.36" 213.197.95.67 - - [05/May/2026:22:09:52 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (Linux; Android 10; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/11.0.0.0 Safari/537.36" 213.197.95.67 - - [05/May/2026:22:09:51 +0200] "POST /xmlrpc.php HTTP/1.0" 200 593 "-" "Mozilla/5.0 (Linux; Android 10; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/11.0.0.0 Safari/537.36" 213.197.95.67 - - [05/May/2026:22:10:20 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (Linux; Android 10; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Opera/68.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
🇺🇸 lnklnx	2026-05-05 20:06:09 (1 month ago)	www.lnklnx.com:443 213.197.95.67 - - [05/May/2026:15:06:06 -0500] "POST /xmlrpc.php HTTP/1.1" 403 38 ... show more www.lnklnx.com:443 213.197.95.67 - - [05/May/2026:15:06:06 -0500] "POST /xmlrpc.php HTTP/1.1" 403 3863 "-" "Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/81.0.0.0 Safari/537.36" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-05 19:16:19 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 213.197.95.67 (213-197-95-67.pool.digikabel.hu) ... show more (mod_security) mod_security (id:225170) triggered by 213.197.95.67 (213-197-95-67.pool.digikabel.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 15:16:12.252922 2026] [security2:error] [pid 12569:tid 12569] [client 213.197.95.67:51005] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kbalan.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kbalan.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afpB_JbD1h49sFgVT5u4tAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 kjaerulff	2026-05-05 16:38:10 (1 month ago)	Failed Wordpress login using xmlrpc.php (213-197-95-67.pool.digikabel.hu)	Web App Attack
🇺🇸 mnsf	2026-05-05 14:05:40 (1 month ago)	Xmlrpc Caught (6)	Brute-Force Web App Attack
🇳🇱 wlt-blocker	2026-05-05 13:01:21 (1 month ago)	Unauthorized access to webpage admin	Web App Attack
🇺🇸 TPI-Abuse	2026-05-04 13:36:59 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 213.197.95.67 (213-197-95-67.pool.digikabel.hu) ... show more (mod_security) mod_security (id:225170) triggered by 213.197.95.67 (213-197-95-67.pool.digikabel.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 04 09:36:53.107511 2026] [security2:error] [pid 12145:tid 12158] [client 213.197.95.67:60424] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|woofnrose.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "woofnrose.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afig9doF-5XOAk4AMd99ggAAAEs"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 zXero	2026-05-01 12:27:02 (1 month ago)	Fail2Ban automatic report - jail: no-wordpress	Brute-Force SSH DDoS Attack
🇺🇸 TPI-Abuse	2026-05-01 12:24:39 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 213.197.95.67 (213-197-95-67.pool.digikabel.hu) ... show more (mod_security) mod_security (id:225170) triggered by 213.197.95.67 (213-197-95-67.pool.digikabel.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 01 08:24:35.776583 2026] [security2:error] [pid 29064:tid 29064] [client 213.197.95.67:54007] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|odinathletes.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "odinathletes.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afSbg8PpZ_7csslX3OA4JgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 209.182.233.12

🇩🇪 185.196.109.230

🇧🇷 177.136.206.71

🇩🇪 155.117.127.214

🇺🇸 134.209.117.139

🇨🇳 113.122.250.252

🇧🇬 79.124.62.134

🇮🇳 49.207.40.162

🇧🇷 45.205.1.242

🇳🇱 45.148.10.152

🇺🇸 45.73.167.131

🇬🇧 35.203.210.156

🇷🇺 5.3.149.246

🇷🇴 2.57.121.25

🇮🇳 2404:6800:4000:1003::128

🇮🇳 203.145.143.163

🇺🇸 162.216.150.92

🇨🇳 113.119.177.87

🇨🇳 111.207.12.99

🇨🇳 110.249.202.110