JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.102.55.101

212.102.55.101 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 0%: ?

ISP	CDN77 - Milano
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60068
Hostname(s)	unn-212-102-55-101.cdn77.com
Domain Name	cdn77.com
Country	🇮🇹 Italy
City	Milan, Lombardy

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.102.55.101

Whois 212.102.55.101

IP Abuse Reports for 212.102.55.101:

This IP address has been reported a total of 29 times from 19 distinct sources. 212.102.55.101 was first reported on June 15th 2022, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 10dencehispahard SL	2025-08-08 10:32:49 (10 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-06-05 21:11:37 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇳🇱 i-turnradio.nl	2025-05-27 21:28:44 (1 year ago)	2025-05-27 @ 23:28:44 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
🇪🇸 10dencehispahard SL	2025-05-23 05:42:52 (1 year ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-05-17 23:03:10 (1 year ago)	Ports: 143,993; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
🇺🇸 kosada.com	2025-05-16 22:04:06 (1 year ago)	Web password guessing	Brute-Force
🇩🇪 F242	2025-03-10 03:59:54 (1 year ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇺🇸 TPI-Abuse	2025-02-15 01:04:38 (1 year ago)	(mod_security) mod_security (id:211200) triggered by 212.102.55.101 (unn-212-102-55-101.cdn77.com): ... show more (mod_security) mod_security (id:211200) triggered by 212.102.55.101 (unn-212-102-55-101.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 14 20:04:28.440905 2025] [security2:error] [pid 755487:tid 755487] [client 212.102.55.101:50496] [client 212.102.55.101] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(?:cmd(?:\\\\b[^a-zA-Z0-9_]{0,}?\\\\/c\|(?:32){0,1}\\\\.exe\\\\b)\|(?:ftp\|n(?:c\|et\|map)\|rcmd\|telnet\|w(?:guest\|sh))\\\\.exe\\\\b)" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "60"] [id "211200"] [rev "3"] [msg "COMODO WAF: System Command Access\|\|madrigalscripts.com\|F\|2"] [data "Matched Data: cmd.exe found within ARGS:main_page: ..\\x5c..\\x5c..\\x5c../winnt/system32/cmd.exe?/c dir c:"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "madrigalscripts.com"] [uri "/index.php"] [unique_id "Z6_oHE-gyyujUMc8atXFxgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-02-12 22:04:03 (1 year ago)	Ports: 20,21,25,2525,53,80,110,143,443,465,587,993,995,2077,2078,2079,2080,2082,2083,2086,2087,2095, ... show more Ports: 20,21,25,2525,53,80,110,143,443,465,587,993,995,2077,2078,2079,2080,2082,2083,2086,2087,2095,2096,3306,2195; Direction: 0; Trigger: LF_CUSTOMTRIGGER show less	Brute-Force SSH
🇨🇳 ThreatBook.io	2025-02-01 02:14:04 (1 year ago)	ThreatBook Intelligence: vpn_proxy,Spam more details on https://threatbook.io/ip/212.102.55.101 2025 ... show more ThreatBook Intelligence: vpn_proxy,Spam more details on https://threatbook.io/ip/212.102.55.101 2025-01-31 05:09:14 //185.216.102.21:264 2025-01-31 05:09:04 //109.236.249.41:443 2025-01-31 05:09:04 //91.142.135.123:80 show less	Web App Attack
🇺🇸 TPI-Abuse	2024-06-14 13:56:18 (2 years ago)	(mod_security) mod_security (id:225170) triggered by 212.102.55.101 (unn-212-102-55-101.cdn77.com): ... show more (mod_security) mod_security (id:225170) triggered by 212.102.55.101 (unn-212-102-55-101.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 14 09:56:12.808103 2024] [security2:error] [pid 13293] [client 212.102.55.101:54316] [client 212.102.55.101] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|aldrich.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "aldrich.us"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZmxL_FbxPsGSB-8FAomVmQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2023-09-09 15:09:28 (2 years ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2023-08-27 14:47:46 (2 years ago)		Web Spam Email Spam Blog Spam Bad Web Bot Web App Attack
Anonymous	2023-08-27 14:20:40 (2 years ago)	Aggressive web scan	Web App Attack
Anonymous	2023-08-23 03:35:40 (2 years ago)	Aggressive web scan	Web App Attack

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.168

🇺🇸 162.216.149.26

🇨🇳 121.199.30.133

🇫🇷 91.231.89.70

🇺🇸 20.65.178.1

🇧🇷 205.210.31.244

🇧🇪 198.235.24.172

🇺🇸 194.195.208.25

🇮🇷 185.180.131.9

🇺🇸 172.190.220.228

🇮🇩 163.7.9.84

🇹🇼 128.14.226.125

🇻🇳 125.212.159.202

🇮🇳 122.163.178.105

🇧🇬 91.191.209.46

🇨🇦 85.217.149.55

🇵🇰 39.35.193.78

🇺🇸 20.96.179.87

🇬🇧 2a06:4883:3000::46

🇺🇸 172.104.11.51