JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 213.232.121.207

213.232.121.207 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 23%: ?

23%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 213.232.121.207

Whois 213.232.121.207

IP Abuse Reports for 213.232.121.207:

This IP address has been reported a total of 11 times from 8 distinct sources. 213.232.121.207 was first reported on April 30th 2021, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-06-28 08:29:40 (2 hours ago)	Fail2Ban banned 213.232.121.207 for security violations in jail wp-armour. Log: 2026/06/28 08:29:40 ... show more Fail2Ban banned 213.232.121.207 for security violations in jail wp-armour. Log: 2026/06/28 08:29:40 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 213.232.121.207 \| Target: wplogin" , client: 213.232.121.207, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇨🇦 electronico	2026-06-28 00:01:03 (10 hours ago)	213.232.121.207 - - [28/Jun/2026:11:01:00 +1100] "POST /xmlrpc.php HTTP/1.1" 404 5672 "-" "Apache-Ht ... show more 213.232.121.207 - - [28/Jun/2026:11:01:00 +1100] "POST /xmlrpc.php HTTP/1.1" 404 5672 "-" "Apache-HttpClient/4.5.13 (Java/17.0.18)" ... show less	Brute-Force Web App Attack
🇫🇷 tilellit.pro	2026-06-27 06:00:50 (1 day ago)	Fail2Ban banned 213.232.121.207 for security violations in jail wp-armour. Log: 2026/06/27 06:00:50 ... show more Fail2Ban banned 213.232.121.207 for security violations in jail wp-armour. Log: 2026/06/27 06:00:50 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 213.232.121.207 \| Target: wplogin" , client: 213.232.121.207, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇩🇪 ghostwarriors	2026-06-21 22:20:19 (6 days ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 23:08:51 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 213.232.121.207 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 213.232.121.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 18:08:35.152905 2026] [security2:error] [pid 20677:tid 20677] [client 213.232.121.207:49625] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|beirutbazar.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "beirutbazar.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXKt8x5cAnEIuUBjW9tW3QAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 21:19:18 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 213.232.121.207 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 213.232.121.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 16:19:04.445142 2026] [security2:error] [pid 30918:tid 30918] [client 213.232.121.207:37833] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|assheton.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "assheton.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXKUSD5E51n4zyfc7re8nAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-10 14:34:39 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-09-02 22:26:13 (9 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-02-27 04:42:50 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 213.232.121.207 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 213.232.121.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 26 23:42:36.686188 2025] [security2:error] [pid 532:tid 532] [client 213.232.121.207:50983] [client 213.232.121.207] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "enrollment.carpenterssw.org"] [uri "/.env"] [unique_id "Z7_tPBvFJgDLN-GLqAp5VQAAAA8"], referer: https://tasamm.com/about/eee33.html show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 sms.ru	2024-09-28 02:15:05 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
🇧🇪 taivas.nl	2021-04-30 13:02:12 (5 years ago)	Bad_requests	Bad Web Bot

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇦 217.147.171.54

🇩🇪 185.30.32.214

🇭🇰 152.32.168.34

🇧🇷 138.97.243.36

🇧🇷 138.97.240.254

🇺🇸 103.143.10.140

🇬🇧 92.30.225.26

🇺🇸 64.62.197.40

🇺🇸 64.62.156.30

🇮🇳 45.120.161.20

🇻🇳 42.118.50.162

🇭🇰 219.79.227.124

🇩🇪 194.88.98.116

🇺🇸 185.147.157.181

🇺🇸 184.105.139.106

🇺🇸 172.202.118.38

🇸🇬 165.154.29.93

🇨🇦 143.105.203.98

🇰🇷 119.196.213.196

🇨🇳 106.13.122.214