JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 88.218.44.48

88.218.44.48 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 41%: ?

41%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS43444
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 88.218.44.48

Whois 88.218.44.48

IP Abuse Reports for 88.218.44.48:

This IP address has been reported a total of 10 times from 9 distinct sources. 88.218.44.48 was first reported on December 1st 2025, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇿 Tripwire	2026-06-26 05:22:28 (11 hours ago)	Wordpress login attempts	Brute-Force Web App Attack
🇫🇷 tilellit.pro	2026-06-25 18:22:10 (22 hours ago)	Fail2Ban banned 88.218.44.48 for security violations in jail wp-armour. Log: 2026/06/25 18:22:10 [er ... show more Fail2Ban banned 88.218.44.48 for security violations in jail wp-armour. Log: 2026/06/25 18:22:10 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 88.218.44.48 \| Target: wplogin" , client: 88.218.44.48, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇨🇿 ptlab	2026-06-25 12:48:27 (1 day ago)	Detected wp_login attack from WP-host.	Hacking Web App Attack
🇺🇸 kosada.com	2026-06-24 20:35:58 (1 day ago)	Web password guessing	Brute-Force
🇩🇪 stinpriza	2026-06-21 02:45:55 (5 days ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 11:07:53 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 88.218.44.48 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 88.218.44.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 07:07:45.697830 2026] [security2:error] [pid 23381:tid 23381] [client 88.218.44.48:40043] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|rsrtelecom.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rsrtelecom.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajZ0gaIgyxCUlxMMU9He7AAAABc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-19 07:27:36 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 88.218.44.48 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 88.218.44.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 19 03:27:33.239106 2026] [security2:error] [pid 7663:tid 7663] [client 88.218.44.48:64513] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|plumpen.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "plumpen.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agwQ5WEnAgEAbqT1YM-J_QAAAAg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2025-12-23 11:02:38 (6 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 88.218.44.48 (US/United States/-): 1 in the la ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 88.218.44.48 (US/United States/-): 1 in the last 3600 secs (0-196) show less	Hacking
Anonymous	2025-12-10 10:11:12 (6 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.10 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.10 is noted in report timestamp show less	Hacking Brute-Force
🇱🇻 garmtech.com	2025-12-01 00:58:23 (6 months ago)	IM360 WAF: Attempt to upload malware	Hacking

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 147.185.133.113

🇯🇵 139.162.66.65

🇨🇳 120.196.86.140

🇨🇦 85.217.149.59

🇳🇱 45.148.10.157

🇺🇸 44.181.102.59

🇪🇸 34.175.118.185

🇳🇱 5.182.209.135

🇮🇳 4.213.38.49

🇺🇸 216.180.246.188

🇧🇷 189.50.142.78

🇺🇸 162.216.149.254

🇺🇸 136.144.43.168

🇸🇬 94.74.95.21

🇫🇷 85.217.140.37

🇩🇪 69.5.169.230

🇺🇸 66.132.172.96

🇸🇬 43.156.162.133

🇨🇷 190.112.222.28

🇦🇷 186.123.156.23