JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.202.16.204

193.202.16.204 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 14%: ?

14%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.202.16.204

Whois 193.202.16.204

IP Abuse Reports for 193.202.16.204:

This IP address has been reported a total of 17 times from 11 distinct sources. 193.202.16.204 was first reported on March 25th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-24 12:05:47 (4 days ago)	(mod_security) mod_security (id:210350) triggered by 193.202.16.204 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 193.202.16.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 08:05:39.290958 2026] [security2:error] [pid 2904:tid 2904] [client 193.202.16.204:37289] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|microdot.net\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "microdot.net"] [uri "/_adminer.php"] [unique_id "ajvIEzAZtDrk6aHhXUwIvQAAABc"], referer: https://microdot.net/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 01:58:34 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 193.202.16.204 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 193.202.16.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 21:58:27.250900 2026] [security2:error] [pid 15157:tid 15163] [client 193.202.16.204:35165] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|wpe.uk.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "wpe.uk.com"] [uri "/adminer/index.php"] [unique_id "ai4Kw6Bm3rzzvt16uA5a0AAAAMI"], referer: https://wpe.uk.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 00:09:44 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 193.202.16.204 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 193.202.16.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 20:09:39.189244 2026] [security2:error] [pid 27587:tid 27587] [client 193.202.16.204:12693] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|register-yacht-bahamas.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "register-yacht-bahamas.com"] [uri "/_adminer.php"] [unique_id "ai3xQ83eDGmGtPd3j2p6nAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 19:02:23 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 193.202.16.204 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 193.202.16.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 15:02:18.441303 2026] [security2:error] [pid 6401:tid 6401] [client 193.202.16.204:58967] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|antoniocobo.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "antoniocobo.com"] [uri "/_adminer.php"] [unique_id "ai2pOpiQUglPunamRAUqTwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-13 17:43:05 (2 weeks ago)	PSCSERV WPSCAN 193.202.16.204	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-16 02:34:21 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 193.202.16.204 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 193.202.16.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 15 22:34:15.485706 2026] [security2:error] [pid 2313322:tid 2313322] [client 193.202.16.204:52619] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Golden-Technologies/pics/Golden Technologies 2009 Marketing CD/Scooters/Avenger- 4 Wheel/Thumbs.db"] [unique_id "aeBKp-4p7U_ae0UQ42Pd1AAAAAA"], referer: https://vitalitywebb.com/backstore/Golden-Technologies/pics/Golden%20Technologies%202009%20Marketing%20CD/Scooters/Avenger-%204%20Wheel/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-02-10 02:15:04 (4 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2026-01-05 03:46:41 (5 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇨🇭 backslash	2026-01-02 11:40:09 (5 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇺🇸 [email protected]	2025-10-28 01:02:36 (8 months ago)	Fail2Ban jail apache-json-scanners detected activity on 2025-10-28T01:02:36Z	Brute-Force
🇺🇸 [email protected]	2025-10-28 00:03:37 (8 months ago)	Fail2Ban jail apache-json-scanners detected activity on 2025-10-28T00:03:37Z	Brute-Force
🇱🇻 garmtech.com	2025-10-14 15:00:15 (8 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 18-00.193.202.16.204.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 18-00.193.202.16.204.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇲🇽 licjperezl	2025-06-05 17:58:51 (1 year ago)	Ataque de diccionario o DDoS en nuestros servicios en linea	Brute-Force
🇮🇳 wizard1411	2025-05-31 17:27:08 (1 year ago)	DDoS and brute force activity detected	Brute-Force SSH
🇨🇦 wil.com	2024-09-24 06:57:12 (1 year ago)	GlobalProtect login attempts with user wwilliamson.	VPN IP Brute-Force

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 203.25.124.135

🇸🇬 194.5.82.54

🇮🇩 103.142.210.50

🇺🇸 44.66.105.96

🇩🇪 167.94.146.59

🇫🇮 147.185.133.12

🇧🇷 129.121.50.86

🇳🇵 113.199.224.101

🇯🇵 111.238.174.6

🇳🇬 105.112.125.202

🇧🇭 94.76.1.161

🇫🇷 85.217.140.3

🇦🇺 74.91.200.217

🇺🇸 47.251.61.115

🇳🇱 45.148.10.34

🇺🇸 44.242.9.75

🇻🇪 38.74.239.168

🇭🇰 35.241.77.139

🇷🇴 2.57.122.150

🇲🇽 189.147.19.238