JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.102.41.22

212.102.41.22 was found in our database!

This IP was reported 378 times. Confidence of Abuse is 12%: ?

12%

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60068
Hostname(s)	unn-212-102-41-22.cdn77.com
Domain Name	datacamp.co.uk
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.102.41.22

Whois 212.102.41.22

IP Abuse Reports for 212.102.41.22:

This IP address has been reported a total of 378 times from 105 distinct sources. 212.102.41.22 was first reported on March 3rd 2021, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇬 HighWay	2026-06-25 10:16:28 (3 days ago)	212.102.41.22 - - [25/Jun/2026:10:16:26 +0000] "CONNECT checkip.amazonaws.com:443 HTTP/1.1" 403 448 ... show more 212.102.41.22 - - [25/Jun/2026:10:16:26 +0000] "CONNECT checkip.amazonaws.com:443 HTTP/1.1" 403 448 "-" "Mozilla/5.0" 212.102.41.22 - - [25/Jun/2026:10:16:26 +0000] "CONNECT httpbin.org:443 HTTP/1.1" 403 438 "-" "Mozilla/5.0" 212.102.41.22 - - [25/Jun/2026:10:16:27 +0000] "CONNECT ifconfig.me:443 HTTP/1.1" 403 438 "-" "Mozilla/5.0" ... show less	Hacking Port Scan
🇩🇪 HandyTreff.de	2026-06-19 13:43:53 (1 week ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -40.775 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -40.775 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (X11; Linux i686; rv:115.0) Gecko/20100101 Firefox/115.0 show less	Web App Attack Bad Web Bot
🇫🇷 SpaceHost-Server	2026-04-02 22:32:34 (2 months ago)		Brute-Force Web App Attack
🇩🇪 macrob	2026-04-02 11:55:34 (2 months ago)	2026/04/02 11:55:32 [error] 2953914#2953914: 121895900 access forbidden by rule, client: 212.102.41 ... show more 2026/04/02 11:55:32 [error] 2953914#2953914: 121895900 access forbidden by rule, client: 212.102.41.22, server: finami.es, request: "GET //wp-includes/ID3/license.txt HTTP/2.0", host: "finami.es" 2026/04/02 11:55:32 [error] 2953914#2953914: 121895909 access forbidden by rule, client: 212.102.41.22, server: finami.es, request: "GET //xmlrpc.php?rsd HTTP/2.0", host: "finami.es" 2026/04/02 11:55:33 [error] 2953911#2953911: 121895913 access forbidden by rule, client: 212.102.41.22, server: finami.es, request: "GET //blog/wp-includes/wlwmanifest.xml HTTP/2.0", host: "finami.es" ... show less	Web App Attack
🇳🇱 ParaBug	2026-04-02 10:51:35 (2 months ago)	212.102.41.22 - - [02/Apr/2026:12:51:35 +0200] "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 2849 ... show more 212.102.41.22 - - [02/Apr/2026:12:51:35 +0200] "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 2849 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" ... show less	Phishing Brute-Force Web App Attack
🇷🇺 ago.su	2026-04-02 08:30:28 (2 months ago)	F2B blocked nginx bad bot [otd.dev]	Hacking Web App Attack
🇩🇪 Mario Silber	2026-04-02 07:49:13 (2 months ago)	(wordpress) Failed wordpress login from 212.102.41.22 (US/United States/unn-212-102-41-22.cdn77.com)	Brute-Force
Anonymous	2026-04-02 07:25:38 (2 months ago)	Fail2ban filtered ...	Web App Attack
🇬🇧 venus.launch.bz	2026-04-02 05:35:41 (2 months ago)	(wpscan) WordPress probe detected from 212.102.41.22 (US/United States/unn-212-102-41-22.cdn77.com)	Hacking
🇺🇸 abenage	2026-04-02 04:37:42 (2 months ago)	212.102.41.22 - - [01/Apr/2026:22:37:42 -0600] "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 564 ... show more 212.102.41.22 - - [01/Apr/2026:22:37:42 -0600] "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 rayxis.com	2026-04-02 04:34:40 (2 months ago)	[Thu Apr 02 04:34:36.658583 2026] [proxy_fcgi:error] [pid 3369654:tid 3369684] [client 212.102.41.22 ... show more [Thu Apr 02 04:34:36.658583 2026] [proxy_fcgi:error] [pid 3369654:tid 3369684] [client 212.102.41.22:4979] AH01071: Got error 'Primary script unknown' ... show less	Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2026-04-02 04:08:39 (2 months ago)	Wordpress malicious attack:[octawpauthor]	Web App Attack
🇫🇷 LRNP	2026-04-02 03:44:03 (2 months ago)	_:80 212.102.41.22 - - [02/Apr/2026:03:43:58 +0000] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 ... show more _:80 212.102.41.22 - - [02/Apr/2026:03:43:58 +0000] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" _:80 212.102.41.22 - - [02/Apr/2026:03:43:59 +0000] "GET /feed/ HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" _:80 212.102.41.22 - - [02/Apr/2026:03:43:59 +0000] "GET /xmlrpc.php?rsd HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" _:80 212.102.41.22 - - [02/Apr/2026:03:44:00 +0000] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" _:80 212.102.41.22 - - [02/Apr/2026:03:44:00 +0000] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Wind ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-02 03:16:05 (2 months ago)	(mod_security) mod_security (id:240335) triggered by 212.102.41.22 (unn-212-102-41-22.cdn77.com): 1 ... show more (mod_security) mod_security (id:240335) triggered by 212.102.41.22 (unn-212-102-41-22.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 01 23:16:00.361511 2026] [security2:error] [pid 18224:tid 18224] [client 212.102.41.22:18848] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 212.102.41.22 (+1 hits since last alert)\|alpinexport.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "alpinexport.com"] [uri "/xmlrpc.php"] [unique_id "ac3fcM31whJgkAUfwI531QAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 rdpguard.com	2026-04-01 23:56:31 (2 months ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force

Showing 1 to 15 of 378 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇲 38.51.130.177

🇨🇳 223.112.5.139

🇺🇸 216.180.246.21

🇻🇪 190.97.245.36

🇪🇸 188.26.220.48

🇲🇽 187.190.27.147

🇺🇸 134.16.43.120

🇦🇷 45.186.30.5

🇺🇸 34.230.221.101

🇨🇳 220.181.108.147

🇺🇸 209.97.147.194

🇵🇷 209.91.209.220

🇵🇱 194.180.49.219

🇺🇸 147.185.132.67

🇨🇳 120.201.53.112

🇺🇸 104.243.35.45

🇨🇦 85.217.149.46

🇦🇷 45.162.20.120

🇳🇱 45.148.10.147

🇺🇸 45.130.83.204