JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 213.55.96.151

213.55.96.151 was found in our database!

This IP was reported 144 times. Confidence of Abuse is 80%: ?

80%

ISP	New ISP Services
Usage Type	Fixed Line ISP
ASN	AS24757
Domain Name	ethiotelecom.et
Country	🇪🇹 Ethiopia
City	Addis Ababa, Addis Ababa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 213.55.96.151

Whois 213.55.96.151

IP Abuse Reports for 213.55.96.151:

This IP address has been reported a total of 144 times from 57 distinct sources. 213.55.96.151 was first reported on October 8th 2024, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 factor1	2026-06-04 15:12:08 (22 hours ago)	Fail2ban at saturn Reports Abuse.	Brute-Force Web App Attack
🇩🇪 bsoft.de	2026-06-04 12:17:00 (1 day ago)	213.55.96.151 - - [04/Jun/2026:11:09:23 +0200] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 ... show more 213.55.96.151 - - [04/Jun/2026:11:09:23 +0200] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 213.55.96.151 - - [04/Jun/2026:13:46:05 +0200] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 213.55.96.151 - - [04/Jun/2026:14:16:59 +0200] "GET /wp-login.php HTTP/1.1" 404 74163 "https://bolte.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Web App Attack
🇬🇧 spamverify.com	2026-06-04 10:37:55 (1 day ago)	Honeypot Hit: WordPress Login	Web Spam Blog Spam Bad Web Bot Web App Attack
🇨🇿 huginet	2026-06-04 08:24:45 (1 day ago)	213.55.96.151 - - [04/Jun/2026:10:24:44 +0200] "GET /wp-login.php HTTP/1.1" 200 9112 "-" "Mozilla/5. ... show more 213.55.96.151 - - [04/Jun/2026:10:24:44 +0200] "GET /wp-login.php HTTP/1.1" 200 9112 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 213.55.96.151 - - [04/Jun/2026:10:24:44 +0200] "POST /wp-login.php HTTP/1.1" 200 9549 "https://centrum-eko-likvidace.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web Spam Blog Spam Hacking Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-06-03 23:27:53 (1 day ago)	213.55.96.151 - - [03/Jun/2026:17:27:52 -0600] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 ... show more 213.55.96.151 - - [03/Jun/2026:17:27:52 -0600] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack
🇩🇪 Martin Lundstrom	2026-06-03 17:04:28 (1 day ago)	https://www.eagleeye-intelligence.com — WordPress attack. Automatically detected and blocked.	Web App Attack
🇲🇽 octageeks.com	2026-05-22 04:15:20 (2 weeks ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇺🇸 lostswordfish.com	2026-05-21 15:54:04 (2 weeks ago)	Wordfence waf block on secure uv4sor	Web App Attack
🇺🇸 nationaleventpros.com	2026-05-21 12:51:19 (2 weeks ago)	WordPress login attempt	Brute-Force
🇺🇸 octageeks.com	2026-05-18 04:06:05 (2 weeks ago)	Wordpress malicious attack:[octawpauthor]	Web App Attack
🇩🇪 Holger	2026-05-17 21:02:47 (2 weeks ago)	WordPress WebAttack	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-17 07:54:25 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 213.55.96.151 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 213.55.96.151 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 03:54:13.921494 2026] [security2:error] [pid 16491:tid 16491] [client 213.55.96.151:56420] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|boardinjapan.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "boardinjapan.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agl0JYJ8STYHfCgtvifXFgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-05-17 02:18:38 (2 weeks ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 213.55.96.151 (ET/Ethiopia/-): 1 in the last ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 213.55.96.151 (ET/Ethiopia/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇺🇸 TPI-Abuse	2026-05-17 01:47:06 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 213.55.96.151 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 213.55.96.151 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 16 21:46:57.668544 2026] [security2:error] [pid 9817:tid 9847] [client 213.55.96.151:33344] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|whitecrosslibrary.aafm.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "whitecrosslibrary.aafm.us"] [uri "/wp-json/wp/v2/users/me"] [unique_id "agkeEf9bk7D-4J1OfG8xDQAAANA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 tilellit.pro	2026-05-17 00:56:15 (2 weeks ago)	Fail2Ban banned 213.55.96.151 for security violations in jail wp-armour. Log: 2026/05/17 00:56:14 [e ... show more Fail2Ban banned 213.55.96.151 for security violations in jail wp-armour. Log: 2026/05/17 00:56:14 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 213.55.96.151 \| Target: wplogin" , client: 213.55.96.151, server: [REDACTED], request: "POST /wp-login.php HTTP/2.0", upstream: [REDACTED], host: [REDACTED], referrer: "https://espsformacion.com/wp-login.php" ... show less	Web Spam

Showing 1 to 15 of 144 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 125.143.225.75

🇳🇱 45.148.10.121

🇩🇪 213.209.159.226

🇹🇳 196.203.254.1

🇧🇴 190.129.122.12

🇸🇬 129.226.95.93

🇺🇸 50.6.228.32

🇳🇱 45.148.10.157

🇷🇴 2.57.121.112

🇮🇷 212.86.73.173

🇨🇳 115.190.197.74

🇷🇺 85.26.228.68

🇺🇸 67.220.64.66

🇧🇷 186.215.191.192

🇱🇦 183.182.115.186

🇵🇱 143.20.97.221

🇮🇳 135.13.28.35

🇺🇸 38.107.148.159

🇬🇧 213.166.84.50

🇨🇴 186.28.201.193