JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 213.208.175.2

213.208.175.2 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 4%: ?

ISP	LLC Nauka-Svyaz
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8641
Domain Name	naukanet.ru
Country	🇷🇺 Russian Federation
City	Khimki, Moscow Oblast

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 213.208.175.2

Whois 213.208.175.2

IP Abuse Reports for 213.208.175.2:

This IP address has been reported a total of 22 times from 15 distinct sources. 213.208.175.2 was first reported on April 2nd 2023, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 Agrohim	2026-06-25 21:28:38 (18 hours ago)	Gate Inet blocked for categories:	DDoS Attack Ping of Death Port Scan Hacking Brute-Force
🇷🇺 Agrohim	2026-05-30 01:11:02 (3 weeks ago)	Gate Inet blocked for categories:	DDoS Attack Ping of Death Port Scan Hacking Brute-Force
🇺🇸 octageeks.com	2025-11-04 05:06:31 (7 months ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇺🇸 entangled_mongoose	2025-10-27 23:15:29 (7 months ago)	Probed /chosen.php.	Web App Attack
Anonymous	2025-10-27 15:35:03 (7 months ago)	Bot / scanning and/or hacking attempts: GET /phpinfo.php HTTP/1.1	Hacking Web App Attack
🇫🇷 Eldeberen	2025-10-27 04:20:57 (7 months ago)	Vulnerability scan attempt through HTTP protocol	Web App Attack
🇺🇸 mnsf	2025-10-27 02:05:03 (7 months ago)	Too many Status 40X (11)	Brute-Force Web App Attack
🇩🇪 hbrks	2025-10-26 06:37:58 (8 months ago)	1 attack(s) detected, such as these: {"event":"nginx_block","ip":"213.208.175.2","host":"hub.marche- ... show more 1 attack(s) detected, such as these: {"event":"nginx_block","ip":"213.208.175.2","host":"hub.marche-be.com","request":"GET /rest HTTP/1.1","user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36","reason":"404","timestamp":"2025-10-26T06:37:58 00:00","logentry":"hub.marche-be.com 213.208.175.2 - - [26/Oct/2025:06:37:58 0000] GET /rest HTTP/1.1 404 19 - Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36 172.25.79.20:5000 matched:-"} * Report Details : https://p4u.xyz/ACPVEQEVTPE/1 IP Details *: https://p4u.xyz/ACPVEQEVTPE/2 show less	Web Spam Hacking Bad Web Bot
🇺🇸 TPI-Abuse	2025-10-26 02:38:26 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 213.208.175.2 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 213.208.175.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 25 22:38:18.390287 2025] [security2:error] [pid 1842159:tid 1842159] [client 213.208.175.2:49394] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|sharawi-gum.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sharawi-gum.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aP2JmgSlGZwfIsJU8xIg9QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-25 21:31:57 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 213.208.175.2 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 213.208.175.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 25 17:31:51.498534 2025] [security2:error] [pid 11040:tid 11040] [client 213.208.175.2:52444] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fattoria-rendena.it\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fattoria-rendena.it"] [uri "/wp-json/wp/v2/users"] [unique_id "aP1BxyDWN5uzOoavyNm5fQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-25 12:35:35 (8 months ago)	wordpress-trap	Web App Attack
🇩🇪 KiekerJan	2025-10-25 05:47:08 (8 months ago)	213.208.175.2 - - [25/Oct/2025:07:47:07 +0200] "GET /wp-content/plugins/WordPressCore/include.php HT ... show more 213.208.175.2 - - [25/Oct/2025:07:47:07 +0200] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:143.0) Gecko/20100101 Firefox/143.0" 213.208.175.2 - - [25/Oct/2025:07:47:07 +0200] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 404 146 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:143.0) Gecko/20100101 Firefox/143.0" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2025-10-24 17:48:02 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 213.208.175.2 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 213.208.175.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 24 13:47:55.556712 2025] [security2:error] [pid 26106:tid 26106] [client 213.208.175.2:49224] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fusionrep.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fusionrep.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aPu7y8EaJn7dWIkBe9RGhgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 polycoda	2025-10-19 10:10:23 (8 months ago)	📄 Probes for tons of inexistent files and/or PHP scripts	Hacking Web App Attack
🇺🇸 mnsf	2025-10-16 16:05:16 (8 months ago)	Scanning/Probing (15)	Brute-Force Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.66

🇺🇸 70.120.140.163

🇩🇪 2a05:d014:fb0:c801:ded2:2e8a:b18f:b32

🇮🇩 202.65.234.238

🇹🇼 198.235.24.68

🇺🇸 192.169.201.223

🇫🇷 167.86.84.19

🇨🇭 107.189.30.49

🇵🇱 20.215.210.222

🇺🇸 4.227.178.199

🇩🇪 202.61.233.66

🇮🇩 182.1.77.33

🇫🇷 92.222.104.209

🇳🇱 91.92.40.43

🇧🇷 205.210.31.180

🇨🇱 190.164.110.197

🇮🇩 120.188.100.88

🇺🇸 69.5.97.41

🇵🇰 202.70.139.30

🇮🇳 115.112.77.33