JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.102.48.11

212.102.48.11 was found in our database!

This IP was reported 961 times. Confidence of Abuse is 17%: ?

17%

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60068
Hostname(s)	unn-212-102-48-11.cdn77.com
Domain Name	datacamp.co.uk
Country	🇪🇸 Spain
City	Madrid, Madrid

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.102.48.11

Whois 212.102.48.11

IP Abuse Reports for 212.102.48.11:

This IP address has been reported a total of 961 times from 87 distinct sources. 212.102.48.11 was first reported on October 11th 2021, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-06 05:25:19 (1 month ago)	Failed Wordpress Logins	Web App Attack
🇬🇧 poundawebsiteltd	2026-05-06 01:25:29 (1 month ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 212.102.48.11 - - [06/May/2026:02:25:24 +0100] P ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 212.102.48.11 - - [06/May/2026:02:25:24 +0100] POST /wp-login.php HTTP/1.1 200 7334 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 show less	Web App Attack
🇺🇸 MPL	2026-04-28 19:50:20 (1 month ago)	tcp/23	Port Scan
🇨🇦 polycoda	2026-04-26 12:49:03 (1 month ago)	AutoBlock: 💉 SQL Injection Attempt (Non Decay-Based)	Hacking Bad Web Bot Web App Attack
🇳🇱 Savvii	2026-04-22 20:53:45 (1 month ago)	10 attempts against mh-misc-ban on frost	Web App Attack
🇮🇹 A000Z	2026-04-17 08:00:21 (2 months ago)	Fail2Ban: 212.102.48.11 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5. ... show more Fail2Ban: 212.102.48.11 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36 show less	Bad Web Bot
Anonymous	2026-01-20 01:19:50 (4 months ago)	Fail2ban: all-services - 2026/01/02 16:00:16212.102.48.11 - - [02/Jan/2026:16:00:25 -0500] "GET /wp- ... show more Fail2ban: all-services - 2026/01/02 16:00:16212.102.48.11 - - [02/Jan/2026:16:00:25 -0500] "GET /wp-admin/function.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" "212.102.48.11" attempts show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-01-04 15:09:57 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 212.102.48.11 (unn-212-102-48-11.cdn77.com): 1 ... show more (mod_security) mod_security (id:225170) triggered by 212.102.48.11 (unn-212-102-48-11.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 04 10:09:51.073453 2026] [security2:error] [pid 16515:tid 16515] [client 212.102.48.11:48836] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|darkwavepc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "darkwavepc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aVqCvzPgNBMmDBfDEMCuoAAAAAg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-03 07:06:26 (5 months ago)	(mod_security) mod_security (id:240000) triggered by 212.102.48.11 (unn-212-102-48-11.cdn77.com): 1 ... show more (mod_security) mod_security (id:240000) triggered by 212.102.48.11 (unn-212-102-48-11.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 03 02:06:21.576382 2026] [security2:error] [pid 17083:tid 17083] [client 212.102.48.11:39020] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|generationedm.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "generationedm.com"] [uri "/images/stories/themes.php"] [unique_id "aVi_7cagO38zScQNPIRIEQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 paissangroup	2026-01-03 01:16:47 (5 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-01-02 21:49:03 (5 months ago)	(mod_security) mod_security (id:240000) triggered by 212.102.48.11 (unn-212-102-48-11.cdn77.com): 1 ... show more (mod_security) mod_security (id:240000) triggered by 212.102.48.11 (unn-212-102-48-11.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 02 16:48:56.216879 2026] [security2:error] [pid 23793:tid 23793] [client 212.102.48.11:38594] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|rockymtnfire.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "rockymtnfire.com"] [uri "/images/stories/themes.php"] [unique_id "aVg9SKkoKVtiqIdjFGK1BwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-01-02 18:19:06 (5 months ago)	Attempted access to sensitive endpoint (/wp-content/hello.php) detected. Automated scan or unauthori ... show more Attempted access to sensitive endpoint (/wp-content/hello.php) detected. Automated scan or unauthorized probing. show less	Web App Attack
Anonymous	2026-01-02 17:05:03 (5 months ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇸🇬 Cloudkul Cloudkul	2026-01-02 16:00:35 (5 months ago)	Attempted Brute Force on our application	Brute-Force Web App Attack
🇫🇷 dynamix	2026-01-01 18:55:06 (5 months ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 15 of 961 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.222

🇨🇩 102.216.240.61

🇺🇸 91.230.168.189

🇺🇸 91.230.168.138

🇭🇰 43.100.3.146

🇺🇸 2a0c:9f00:a000:cb62::1

🇨🇳 219.153.106.29

🇫🇮 185.204.1.76

🇷🇺 185.94.111.1

🇸🇬 172.188.89.41

🇫🇷 157.173.104.154

🇨🇳 122.224.205.42

🇳🇬 102.90.98.191

🇫🇷 91.231.89.53

🇺🇸 91.230.168.188

🇱🇹 81.30.98.62

🇬🇧 51.142.205.0

🇷🇺 217.149.191.246

🇳🇱 195.178.110.30

🇩🇪 193.124.20.252