JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.56.48.48

212.56.48.48 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 1%: ?

ISP	VPN Consumer Amsterdam, The Netherlands
Usage Type	Fixed Line ISP
ASN	AS3257
Domain Name	vpnconsumer.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.56.48.48

Whois 212.56.48.48

IP Abuse Reports for 212.56.48.48:

This IP address has been reported a total of 14 times from 12 distinct sources. 212.56.48.48 was first reported on June 20th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 Agrohim	2026-05-30 00:29:50 (3 weeks ago)	Gate Inet blocked for categories:	DDoS Attack Ping of Death Port Scan Hacking Brute-Force
🇺🇸 xmission.com	2026-02-10 21:22:28 (4 months ago)	Blocked by UFW (TCP on 55756) Source port: 7918 TTL: 113 Packet length: 52 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 55756) Source port: 7918 TTL: 113 Packet length: 52 TOS: 0x08 This report (for 212.56.48.48) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇪 cmbplf	2025-12-28 06:21:04 (5 months ago)	92 requests with user_agent.original Mozilla/5.0 (iPhone; CPU iPhone OS 16_1_1 like Mac OS X) Apple ... show more 92 requests with user_agent.original Mozilla/5.0 (iPhone; CPU iPhone OS 16_1_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/15E148 [LinkedInApp]/9.28.7586 90 requests with user_agent.original Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20021208 Debian/1.2.1-2 89 requests with user_agent.original Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu Chromium/102.0.5143.178 Chrome/102.0.5143.178 Safari/537.36 87 requests with user_agent.original AppleCoreMedia/1.0.0.23A344 (Macintosh; U; Intel Mac OS X 14_0; da_dk) 87 requests with user_agent.original Mozilla/5.0 (X11; U; Linux i586; en-US; rv:1.0.0) Gecko/20020623 Debian/1.0.0-0.woody.1 82 requests with user_agent.original Mozilla/5.0 (Linux; Android 6.0.1; SM-G532MT Build/MMB29T; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/99.0.4844.88 Mobile Safari/537.36 [FB_IAB/FB4A;FBAV/436.0.0.35.101;] 82 requests with user_agent.original Mozilla/5.0 (Macintosh; U; PPC; en-US; rv:0.9.3) Gecko/ show less	Brute-Force Bad Web Bot
🇺🇸 bigscoots.com	2025-12-21 19:33:41 (5 months ago)	(smtpauth) Failed SMTP AUTH login from 212.56.48.48 (NL/The Netherlands/-): 5 in the last 3600 secs; ... show more (smtpauth) Failed SMTP AUTH login from 212.56.48.48 (NL/The Netherlands/-): 5 in the last 3600 secs; Ports: 25,465,587; Direction: 0; Trigger: LF_SMTPAUTH; Logs: 2025-12-21 14:33:33 dovecot_login authenticator failed for (ADMIN) [212.56.48.48]:37300: 535 Incorrect authentication data ([email protected]) 2025-12-21 14:33:41 dovecot_login authenticator failed for (ADMIN) [212.56.48.48]:18292: 535 Incorrect authentication data ([email protected]) 2025-12-21 14:33:41 dovecot_login authenticator failed for (ADMIN) [212.56.48.48]:24947: 535 Incorrect authentication data ([email protected]) 2025-12-21 14:33:41 dovecot_login authenticator failed for (ADMIN) [212.56.48.48]:42261: 535 Incorrect authentication data ([email protected]) 2025-12-21 14:33:41 dovecot_login authenticator failed for (ADMIN) [212.56.48.48]:25985: 535 Incorrect authentication data ([email protected]) show less	Brute-Force SSH
🇮🇹 VHosting	2025-12-21 19:33:03 (5 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (6 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
🇲🇾 syokadmin	2025-12-06 05:41:59 (6 months ago)	212.56.48.48 (NL/The Netherlands/-), 2 distributed smtpauth attacks on account [iymanjamil@mkmcreati ... show more 212.56.48.48 (NL/The Netherlands/-), 2 distributed smtpauth attacks on account [[email protected]] in the last 3600 secs show less	Brute-Force
🇳🇱 i-turnradio.nl	2025-11-18 02:54:42 (7 months ago)	2025-11-18 @ 03:54:41 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
🇩🇪 Freenex1911	2025-11-11 02:17:02 (7 months ago)	2025-11-11T02:17:01Z - RDP login from 212.56.48.48 failed multiple times.	Brute-Force
🇩🇪 Freenex1911	2025-11-10 02:16:48 (7 months ago)	2025-11-10T02:16:46Z - RDP login from 212.56.48.48 failed multiple times.	Brute-Force
🇩🇪 Freenex1911	2025-10-23 13:54:24 (7 months ago)	2025-10-23T13:54:23Z - RDP login from 212.56.48.48 failed multiple times.	Brute-Force
🇩🇪 DoSammy	2025-10-23 13:49:15 (7 months ago)	neu-RDP-Brute-Force	Brute-Force
Anonymous	2025-07-04 09:40:55 (11 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 marzzzello	2025-06-20 03:40:17 (11 months ago)	Ports: 14x 36751	Port Scan

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇱 186.10.86.130

🇺🇸 184.105.247.222

🇵🇭 180.190.204.241

🇨🇳 180.153.197.223

🇳🇱 176.65.139.66

🇵🇰 175.107.2.240

🇨🇳 120.48.42.17

🇰🇷 119.202.139.244

🇨🇳 116.179.37.55

🇺🇸 40.124.174.187

🇮🇱 2.55.125.200

🇰🇷 218.150.30.214

🇬🇹 190.151.130.5

🇸🇻 190.62.85.174

🇺🇸 172.234.25.187

🇺🇸 147.185.132.108

🇭🇰 123.58.213.118

🇨🇳 116.179.37.246

🇮🇳 103.123.53.88

🇺🇸 64.62.156.127