JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.88.93.190

149.88.93.190 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 38%: ?

38%

ISP	Cogent Communications, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS401696
Domain Name	cogentco.com
Country	🇭🇰 Hong Kong
City	Kwai Chung, Kwai Tsing District

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.88.93.190

Whois 149.88.93.190

IP Abuse Reports for 149.88.93.190:

This IP address has been reported a total of 8 times from 5 distinct sources. 149.88.93.190 was first reported on June 25th 2026, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-26 22:02:40 (20 hours ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-25. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-26 15:43:22 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 149.88.93.190 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 149.88.93.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 11:43:01.732250 2026] [security2:error] [pid 1773:tid 1773] [client 149.88.93.190:37922] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "unwaved.com"] [uri "/.env"] [unique_id "aj6eBdervnk00cMPiwYKbgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-25 22:02:34 (1 day ago)	Auto-ban: >3000 req/min op 2026-06-25	Web App Attack SSH Hacking
🇺🇸 mnsf	2026-06-25 21:27:50 (1 day ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇺🇸 MPL	2026-06-25 17:36:30 (2 days ago)	tcp/443 (26 or more attempts)	Port Scan
Anonymous	2026-06-25 17:05:04 (2 days ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 16:58:19 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 149.88.93.190 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 149.88.93.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 12:58:13.956008 2026] [security2:error] [pid 5479:tid 5479] [client 149.88.93.190:51388] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thermalsoftware.com"] [uri "/.env.local"] [unique_id "aj1eJTbKbvuwhyWt_LyTTgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 16:16:36 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 149.88.93.190 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 149.88.93.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 12:16:27.832436 2026] [security2:error] [pid 10513:tid 10513] [client 149.88.93.190:57168] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.appalachianfolkmagician.com.bbproductionsonline.com"] [uri "/.env"] [unique_id "aj1UW5idqfPnZ1a5ZtEaWAAAABg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.137

🇫🇮 147.185.133.236

🇻🇳 103.221.220.169

🇰🇿 82.115.46.77

🇰🇷 59.24.133.197

🇸🇬 47.236.169.183

🇦🇿 31.171.66.160

🇱🇹 194.165.16.166

🇧🇷 189.51.217.109

🇳🇱 176.65.139.66

🇭🇰 172.253.6.17

🇺🇸 165.154.182.53

🇺🇸 162.216.150.230

🇭🇰 152.32.239.90

🇺🇸 150.107.36.236

🇨🇳 117.189.108.79

🇨🇳 115.190.172.63

🇧🇷 45.205.1.241

🇬🇧 45.82.76.139

🇵🇪 38.250.161.48