JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 86.48.12.173

86.48.12.173 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 25%: ?

25%

ISP	Packethub S.A.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136787
Domain Name	packethub.net
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 86.48.12.173

Whois 86.48.12.173

IP Abuse Reports for 86.48.12.173:

This IP address has been reported a total of 12 times from 6 distinct sources. 86.48.12.173 was first reported on June 14th 2023, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-12 10:13:48 (8 hours ago)	(mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 06:13:44.164494 2026] [security2:error] [pid 20329:tid 20329] [client 86.48.12.173:30420] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 86.48.12.173 (+1 hits since last alert)\|kentsavagelaw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kentsavagelaw.com"] [uri "/xmlrpc.php"] [unique_id "aivb2MDRl4QbsbmXxBdXTwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-12 10:02:35 (8 hours ago)	Fail2ban filtered ...	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 06:37:31 (12 hours ago)	(mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 02:37:28.020456 2026] [security2:error] [pid 29562:tid 29562] [client 86.48.12.173:52226] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 86.48.12.173 (+1 hits since last alert)\|tigerpathteam.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "tigerpathteam.org"] [uri "/xmlrpc.php"] [unique_id "aiupKM4abpbDzBK2wd0jZgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 05:46:09 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 01:46:02.605303 2026] [security2:error] [pid 30786:tid 30786] [client 86.48.12.173:26266] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 86.48.12.173 (+1 hits since last alert)\|globaldentalservices.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "globaldentalservices.com"] [uri "/xmlrpc.php"] [unique_id "aiJimurYudrmbb9FvEOl0QAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 12:21:27 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 08:21:19.469160 2026] [security2:error] [pid 17621:tid 17641] [client 86.48.12.173:30638] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 86.48.12.173 (+1 hits since last alert)\|theyogicat.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "theyogicat.com"] [uri "/xmlrpc.php"] [unique_id "ah7Kv6HhtijG8hbx9DxD4QAAAZA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 11:07:13 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 07:07:09.686661 2026] [security2:error] [pid 31614:tid 31614] [client 86.48.12.173:28954] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 86.48.12.173 (+1 hits since last alert)\|studioyau.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "studioyau.com"] [uri "/xmlrpc.php"] [unique_id "ah65XRnqP7Oro0ae6oTbtAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-02 08:26:36 (1 week ago)	(xmlrpc) Apache: Failed xmlrpc access from 86.48.12.173 (JP/Japan/-): 10 in the last 3600 secs (0-18 ... show more (xmlrpc) Apache: Failed xmlrpc access from 86.48.12.173 (JP/Japan/-): 10 in the last 3600 secs (0-180) show less	Hacking
🇺🇸 TPI-Abuse	2026-04-22 11:02:42 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 22 07:02:35.602586 2026] [security2:error] [pid 3332651:tid 3332651] [client 86.48.12.173:24952] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 86.48.12.173 (+1 hits since last alert)\|ssion.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ssion.com"] [uri "/xmlrpc.php"] [unique_id "aeiqy_PlY8mDnrGvxPAobgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-16 08:11:54 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 86.48.12.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 16 04:11:47.547133 2026] [security2:error] [pid 3798414:tid 3798414] [client 86.48.12.173:53414] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 86.48.12.173 (+1 hits since last alert)\|soundtrax.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "soundtrax.net"] [uri "/xmlrpc.php"] [unique_id "aeCZw7F0oP7mNuz95EeEBQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 wlt-blocker	2026-04-16 07:45:16 (1 month ago)	Unauthorized access to webpage admin	Web App Attack
🇬🇧 consul.to	2026-04-10 06:45:29 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2023-06-14 23:47:19 (2 years ago)		Web Spam Email Spam Blog Spam Bad Web Bot Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2602:fb54:1a00::10f

🇰🇷 221.153.50.115

🇧🇪 198.235.24.248

🇺🇸 165.154.255.63

🇨🇳 139.170.73.191

🇮🇳 122.180.31.197

🇵🇭 120.28.194.30

🇮🇳 110.225.255.179

🇫🇷 90.92.80.109

🇨🇳 58.47.137.190

🇨🇳 58.47.120.15

🇮🇳 49.43.241.11

🇦🇷 45.162.20.223

🇬🇧 35.203.211.97

🇹🇷 5.11.135.25

🇬🇧 185.91.69.33

🇮🇳 182.95.106.138

🇻🇳 165.154.105.128

🇺🇸 142.93.48.137

🇺🇸 136.144.35.169