JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.148.92.23

193.148.92.23 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 0%: ?

ISP	Collins Communications
Usage Type	Commercial
ASN	AS133944
Domain Name	collinscommunications.com
Country	🇭🇷 Croatia
City	Zagreb, Zagreb

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.148.92.23

Whois 193.148.92.23

IP Abuse Reports for 193.148.92.23:

This IP address has been reported a total of 17 times from 4 distinct sources. 193.148.92.23 was first reported on October 29th 2023, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-17 11:06:34 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 17 06:06:29.890280 2026] [security2:error] [pid 2257:tid 2257] [client 193.148.92.23:58175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.nbcnewsradio.com"] [uri "/wp-config.php.old"] [unique_id "aWttNW3riT7M8iSywDPXjAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 21:49:25 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 16:49:18.761911 2025] [security2:error] [pid 14490:tid 14628] [client 193.148.92.23:33213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.net"] [uri "/.env.save"] [unique_id "aVL3Xj0n3TQwzhgB68ZyOwAAAkU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-01 06:58:26 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 01:58:19.372529 2025] [security2:error] [pid 27471:tid 27496] [client 193.148.92.23:36293] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kettlehill.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kettlehill.com"] [uri "/www.kettlehill.com/error.log"] [unique_id "aS08i3LXOKC0tXS7y0k4vQAAAIg"], referer: https://www.kettlehill.com/www.kettlehill.com/error.log show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-12 11:50:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 12 06:50:24.645381 2025] [security2:error] [pid 32195:tid 32195] [client 193.148.92.23:37153] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.nbcnewsradio.com"] [uri "/.svn/wc.db"] [unique_id "aRR0gM1NMhmOdHpmFIjbZgAAADU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-01 14:52:30 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 01 10:52:25.220260 2025] [security2:error] [pid 27531:tid 27553] [client 193.148.92.23:55939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whm.kettlehill.net"] [uri "/a.htaccess"] [unique_id "aQYeqX2WO2IkxYJ6zsIMogAAARQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-08-28 10:55:25 (9 months ago)	wordpress-trap	Web App Attack
🇺🇸 TPI-Abuse	2025-07-27 00:24:43 (10 months ago)	(mod_security) mod_security (id:221260) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:221260) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 20:24:30.234754 2025] [security2:error] [pid 291259:tid 291317] [client 193.148.92.23:37505] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(?:\\\\'\\\\w+?=)?\\\\(\\\\)\\\\s{" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "77"] [id "221260"] [rev "3"] [msg "COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)\|\|webdisk.kettlehill.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.kettlehill.net"] [uri "/cgi-bin/test-cgi"] [unique_id "aIVxvmQX5AgegSXcd9rUNwAAAQw"], referer: () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-29 23:59:36 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 19:59:31.036329 2025] [security2:error] [pid 3803923:tid 3803923] [client 193.148.92.23:39223] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.farmers123.com"] [uri "/.env.local"] [unique_id "aDj047Xc-tBk9XHcfFt3_wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-04-19 03:11:59 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 193.148.92.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 18 23:10:30.256632 2025] [security2:error] [pid 14944:tid 14972] [client 193.148.92.23:54463] [client 193.148.92.23] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|blog.spinningdesigns.com\|F\|2"] [data ".key"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "blog.spinningdesigns.com"] [uri "/my.key"] [unique_id "aAMUJqlkjOMtrQ4IEmni9wAAAFc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-01-25 19:10:33 (1 year ago)	\| A web attack returned code 200 (success).	Hacking SQL Injection Web App Attack
🇺🇸 ChamberofCommerce.com	2023-11-06 03:00:42 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-11-02 03:32:47 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-31 03:16:06 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:229 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-31 03:16:05 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:228 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-31 03:16:04 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:227 show less	Bad Web Bot

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 195.122.253.45

🇨🇦 104.158.136.36

🇪🇸 66.81.160.219

🇺🇸 47.251.59.83

🇰🇷 43.128.156.124

🇨🇳 14.103.115.213

🇨🇳 221.13.86.19

🇧🇷 144.22.238.238

🇧🇷 45.205.1.244

🇨🇴 186.116.53.254

🇫🇮 147.185.133.239

🇺🇸 147.185.132.77

🇺🇸 107.167.34.125

🇻🇳 103.15.222.183

🇱🇹 81.30.98.158

🇩🇪 43.228.157.10

🇻🇳 14.229.138.75

🇨🇦 2607:f8b0:4023:1807::124

🇨🇳 223.199.188.28

🇮🇹 192.71.26.53