JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 213.227.139.244

213.227.139.244 was found in our database!

This IP was reported 112 times. Confidence of Abuse is 100%: ?

100%

ISP	LeaseWeb Netherlands B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60781
Hostname(s)	spectrum.binally.gr
Domain Name	leaseweb.com
Country	🇳🇱 Netherlands
City	Lelystad, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 213.227.139.244

Whois 213.227.139.244

IP Abuse Reports for 213.227.139.244:

This IP address has been reported a total of 112 times from 68 distinct sources. 213.227.139.244 was first reported on June 9th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SpaceHost-Server	2026-06-23 22:29:40 (4 days ago)		Brute-Force Web App Attack
Anonymous	2026-06-20 10:46:26 (1 week ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-06-15 01:46:25 (1 week ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-06-12 08:46:19 (2 weeks ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-06-10 23:46:17 (2 weeks ago)	Failed Wordpress Logins	Web App Attack
🇫🇷 SpaceHost-Server	2026-06-10 22:29:07 (2 weeks ago)		Brute-Force Web App Attack
🇫🇷 tecnicorioja	2026-06-10 22:01:28 (2 weeks ago)	wp-login attack [10/Jun/2026:12:44:11	Brute-Force Web App Attack
🇨🇦 polycoda	2026-06-10 10:39:45 (2 weeks ago)	📄 Probes for wp-login.php and other inexistent URLs	Hacking Web App Attack
🇺🇸 TAY	2026-06-10 09:57:00 (2 weeks ago)	213.227.139.244 - - [10/Jun/2026:17:53:52 +0800] "POST /wp-login.php HTTP/1.1" 200 2976 "https://aut ... show more 213.227.139.244 - - [10/Jun/2026:17:53:52 +0800] "POST /wp-login.php HTTP/1.1" 200 2976 "https://autism-cvc.org/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 213.227.139.244 - - [10/Jun/2026:17:56:53 +0800] "POST /wp-login.php HTTP/1.1" 200 2974 "https://mail.autism-cvc.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 213.227.139.244 - - [10/Jun/2026:17:57:00 +0800] "POST /wp-login.php HTTP/1.1" 200 2678 "https://littleprairie.com.my/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Brute-Force
🇦🇹 neo72	2026-06-10 09:33:40 (2 weeks ago)	Detected malicious activity - bulk block	Brute-Force Web App Attack
🇺🇸 ambor	2026-06-10 08:42:08 (2 weeks ago)	L0ss Honeypot: WordPress login access attempt. Path: /wp-login.php	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 08:05:30 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 213.227.139.244 (spectrum.binally.gr): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 213.227.139.244 (spectrum.binally.gr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 04:05:27.249092 2026] [security2:error] [pid 5194:tid 5216] [client 213.227.139.244:60974] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|property-management.company\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "property-management.company"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aikax135vHtRY7VkgZGf7wAAARM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 07:08:53 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 213.227.139.244 (spectrum.binally.gr): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 213.227.139.244 (spectrum.binally.gr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 03:08:45.967465 2026] [security2:error] [pid 12342:tid 12361] [client 213.227.139.244:37766] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ethicmark.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ethicmark.org"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aikNfTDrsl1EgfACaL0_KAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇽 octageeks.com	2026-06-10 04:44:08 (2 weeks ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇫🇷 Yepngo	2026-06-10 03:32:38 (2 weeks ago)	213.227.139.244 - - [10/Jun/2026:05:32:37 +0200] "POST /wp-login.php HTTP/2.0" 200 12103 "https://ww ... show more 213.227.139.244 - - [10/Jun/2026:05:32:37 +0200] "POST /wp-login.php HTTP/2.0" 200 12103 "https://www.yepngo.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack

Showing 1 to 15 of 112 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.84.209.188

🇺🇸 50.18.133.153

🇹🇳 197.5.145.114

🇬🇧 194.50.235.144

🇳🇱 193.176.31.223

🇩🇪 142.93.101.131

🇺🇸 71.76.163.88

🇳🇴 20.100.170.235

🇸🇬 2404:6800:4003:c0f::12d

🇹🇷 204.93.246.128

🇯🇵 172.104.120.101

🇨🇳 101.126.54.66

🇺🇸 71.6.134.229

🇭🇰 46.247.61.245

🇵🇰 223.123.76.234

🇧🇷 205.210.31.251

🇺🇸 198.23.130.204

🇳🇱 185.223.235.25

🇩🇪 185.47.174.75

🇺🇸 98.83.8.142