JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 112.48.88.73

112.48.88.73 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 4%: ?

ISP	China Mobile Communications Corporation
Usage Type	Fixed Line ISP
ASN	AS9808
Domain Name	chinamobile.com
Country	🇨🇳 China
City	Jiaxing, Zhejiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 112.48.88.73

Whois 112.48.88.73

IP Abuse Reports for 112.48.88.73:

This IP address has been reported a total of 5 times from 3 distinct sources. 112.48.88.73 was first reported on August 26th 2025, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-26 23:34:19 (1 hour ago)	(mod_security) mod_security (id:210831) triggered by 112.48.88.73 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 112.48.88.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 19:34:12.463729 2026] [security2:error] [pid 30469:tid 30469] [client 112.48.88.73:16442] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|geriking.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "geriking.com"] [uri "/"] [unique_id "aj8MdEcvjCNgeFYyLTp2BQAAAAE"], referer: http://geriking.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-20 05:48:52 (5 months ago)	(mod_security) mod_security (id:210831) triggered by 112.48.88.73 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 112.48.88.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 20 00:48:45.291693 2026] [security2:error] [pid 8086:tid 8086] [client 112.48.88.73:17735] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|quakeprediction.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "quakeprediction.com"] [uri "/"] [unique_id "aW8XPV1bSCwC1qcjNl4S0AAAAAo"], referer: http://quakeprediction.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-16 03:17:28 (9 months ago)	(mod_security) mod_security (id:210350) triggered by 112.48.88.73 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 112.48.88.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 15 23:17:22.665378 2025] [security2:error] [pid 25234:tid 25234] [client 112.48.88.73:34855] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.renju.net\|F\|4"] [data "close, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.renju.net"] [uri "/tournament/181/game/63713/"] [unique_id "aMjWwkDQ7xse0npXWeu3qAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇳 ThreatBook.io	2025-08-30 22:58:56 (9 months ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/112.48.88.73 2025-0 ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/112.48.88.73 2025-08-30 06:58:25 /config.json show less	Web App Attack
🇫🇷 bigorre.org	2025-08-26 09:45:05 (10 months ago)	Unidentified crawling: not a self-announced bot in user-agent	Bad Web Bot

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇴 179.58.200.131

🇺🇸 147.185.132.63

🇺🇸 137.184.147.41

🇧🇬 79.124.49.226

🇳🇱 77.91.71.25

🇧🇷 45.205.1.243

🇳🇱 45.148.10.141

🇩🇪 43.157.98.118

🇺🇸 20.118.232.75

🇹🇼 198.235.24.32

🇳🇱 193.176.31.218

🇺🇸 192.210.194.2

🇳🇮 190.143.254.175

🇧🇬 185.253.160.7

🇨🇱 181.160.155.9

🇿🇦 147.136.65.205

🇧🇩 103.4.145.50

🇳🇱 91.92.40.23

🇳🇱 81.19.216.119

🇧🇬 79.124.56.250