JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.56.48.82

212.56.48.82 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 0%: ?

ISP	VPN Consumer Amsterdam, The Netherlands
Usage Type	Fixed Line ISP
ASN	AS3257
Domain Name	vpnconsumer.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.56.48.82

Whois 212.56.48.82

IP Abuse Reports for 212.56.48.82:

This IP address has been reported a total of 19 times from 10 distinct sources. 212.56.48.82 was first reported on June 18th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 Burayot	2026-04-19 22:16:07 (2 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 212.56.48.82 (NL/Netherlands/-): 1 ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 212.56.48.82 (NL/Netherlands/-): 1 in the last 3600 secs show less	Web App Attack
🇩🇪 grassau.com	2026-02-08 14:08:01 (4 months ago)	(smtpauth) Failed SMTP AUTH login from 212.56.48.82 (NL/The Netherlands/-)	Brute-Force
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (6 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
🇩🇪 Freenex1911	2025-10-28 07:26:44 (7 months ago)	2025-10-28T07:26:42Z - RDP login from 212.56.48.82 failed multiple times.	Brute-Force
🇩🇪 DoSammy	2025-10-28 07:24:12 (7 months ago)	neu-RDP-Brute-Force	Brute-Force
🇩🇪 marzzzello	2025-09-01 09:49:26 (9 months ago)	Ports: 25x 27816	Port Scan
Anonymous	2025-07-22 16:05:15 (11 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2025-07-04 02:05:15 (11 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
🇺🇸 TPI-Abuse	2025-06-22 22:39:39 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 212.56.48.82 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.56.48.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 22 18:39:31.875130 2025] [security2:error] [pid 150030:tid 150030] [client 212.56.48.82:62836] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.87"] [uri "/.env"] [unique_id "aFiGI1Q5pKNIY8IgPNN-sAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-22 22:13:17 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 212.56.48.82 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.56.48.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 22 18:13:13.302313 2025] [security2:error] [pid 1848328:tid 1848328] [client 212.56.48.82:61437] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.38"] [uri "/.env"] [unique_id "aFh_-X_5iF7x1XP9f94O4wAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 ozisp.com.au	2025-06-22 21:45:29 (1 year ago)	GB__<33>1750628727 [1:2031502:4] ET INFO Request to Hidden Environment File - Inbound [Classificatio ... show more GB__<33>1750628727 [1:2031502:4] ET INFO Request to Hidden Environment File - Inbound [Classification: Misc activity] [Priority: 3] {TCP} 212.56.48.82:55510 show less	Hacking
🇺🇸 TPI-Abuse	2025-06-22 21:39:00 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 212.56.48.82 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.56.48.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 22 17:38:54.243260 2025] [security2:error] [pid 3045179:tid 3045179] [client 212.56.48.82:61860] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.200"] [uri "/.env"] [unique_id "aFh37toXKvtHGjB5OTjuQAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Mykola Spesivtsev	2025-06-22 20:30:36 (1 year ago)	HTTP Tarpit detected bot activity:TargetPort:80, Path:/.env, Method:GET, UA:Mozilla/5.0 (Linux; U; A ... show more HTTP Tarpit detected bot activity:TargetPort:80, Path:/.env, Method:GET, UA:Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, lik show less	Port Scan Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-22 20:24:00 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 212.56.48.82 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.56.48.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 22 16:23:57.158233 2025] [security2:error] [pid 537368:tid 537368] [client 212.56.48.82:51454] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.186"] [uri "/.env"] [unique_id "aFhmXQSpqrvFXNeYsSUqoAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-22 20:07:40 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 212.56.48.82 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.56.48.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 22 16:07:35.299815 2025] [security2:error] [pid 15168:tid 15168] [client 212.56.48.82:49159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.106"] [uri "/.env"] [unique_id "aFhih-VRgVj31Kpi24EY7QAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇻 81.30.98.62

🇨🇳 60.166.83.182

🇰🇷 211.105.229.237

🇬🇧 193.163.125.125

🇷🇺 188.32.210.218

🇮🇳 152.32.158.74

🇺🇸 152.32.148.140

🇨🇳 101.82.81.95

🇸🇬 47.82.50.81

🇳🇱 45.148.10.200

🇺🇸 216.25.89.153

🇮🇳 206.1.62.191

🇵🇱 194.180.49.70

🇧🇷 187.59.19.220

🇧🇷 69.6.251.43

🇩🇪 69.5.169.254

🇺🇸 47.254.66.182

🇺🇸 38.132.109.165

🇧🇪 34.52.224.171

🇺🇸 17.241.219.199