JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.233.138.202

193.233.138.202 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 0%: ?

ISP	AEZA GROUP LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS210644
Domain Name	aeza.ru
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.233.138.202

Whois 193.233.138.202

IP Abuse Reports for 193.233.138.202:

This IP address has been reported a total of 16 times from 9 distinct sources. 193.233.138.202 was first reported on September 1st 2021, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-08-22 12:09:39 (10 months ago)	(mod_security) mod_security (id:210730) triggered by 193.233.138.202 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 193.233.138.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 22 08:09:31.938608 2025] [security2:error] [pid 28082:tid 28082] [client 193.233.138.202:41811] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.auditleverage.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.auditleverage.com"] [uri "/Download/mike/drwtsn32.log"] [unique_id "aKhd-2ye0kb-qrsA_T1kRQAAAA0"], referer: https://www.experts-exchange.com/questions/21447354/CPU-usage-jumps-to-100-and-stays-there.html show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 london2038.com	2025-07-09 22:20:36 (11 months ago)	Detected by WP fail2ban 2025-07-10T00:20:35.011352+02:00 wordpress: Authentication attempt from 193. ... show more Detected by WP fail2ban 2025-07-10T00:20:35.011352+02:00 wordpress: Authentication attempt from 193.233.138.202 show less	Brute-Force Web App Attack
🇯🇵 ki3	2025-07-06 10:01:00 (11 months ago)	Fail2Ban: Web App Attacks and Forum Spam 193.233.138.202 1751796059.0(JST)	Web Spam Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-20 23:03:34 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 193.233.138.202 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 193.233.138.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 20 19:03:25.773025 2025] [security2:error] [pid 2962316:tid 2962316] [client 193.233.138.202:21973] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Kristin/Thumbs.db"] [unique_id "aFXovQgVCM9bHoPzTUTKGAAAAAE"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Kristin/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-05-23 23:55:07 (1 year ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2025-02-19 07:23:40 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-02-17 08:27:09 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-11-10 22:07:11 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 193.233.138.202 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 193.233.138.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 10 17:07:03.498231 2024] [security2:error] [pid 2550679:tid 2550679] [client 193.233.138.202:24755] [client 193.233.138.202] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Briarwood II/Briarwood II/Stetson Bordeaux/originals/Thumbs.db"] [unique_id "ZzEuh2yTeJfwgTUup3As5wAAAAQ"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Briarwood%20II/Briarwood%20II/Stetson%20Bordeaux/originals/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 lp	2024-10-19 21:25:25 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 193.233.138.202 2024-10-19T17:57:41+0 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 193.233.138.202 2024-10-19T17:57:41+02:00 vpn Access-Reject 'xcutp00' station: 193.233.138.202 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇷🇺 sms.ru	2024-09-22 02:10:03 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
🇺🇸 TPI-Abuse	2024-08-07 18:01:39 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 193.233.138.202 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 193.233.138.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 07 14:01:33.453174 2024] [security2:error] [pid 12939:tid 12939] [client 193.233.138.202:12697] [client 193.233.138.202] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Churchill II Recliner/Art Burl 2/originals/Thumbs.db"] [unique_id "ZrO2ffaH90m7yP02CMsoxwAAAAM"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Churchill%20II%20Recliner/Art%20Burl%202/originals/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2024-05-15 16:20:10 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇬🇧 essinghigh	2024-04-30 02:12:52 (2 years ago)	1714443171 # Service_probe # SIGNATURE_SEND # source_ip:193.233.138.202 # dst_port:5607 ...	Port Scan
🇨🇭 backslash	2024-04-12 04:40:19 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇹🇼 kk_it_man	2021-09-01 23:40:27 (4 years ago)	hack	Hacking

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 34.178.21.247

🇺🇸 216.218.206.94

🇧🇷 177.11.196.79

🇺🇸 172.217.46.241

🇵🇰 103.82.123.220

🇮🇹 93.56.154.206

🇷🇺 83.239.108.218

🇷🇴 80.94.92.184

🇮🇶 65.20.250.93

🇳🇱 62.238.237.242

🇯🇵 47.245.56.147

🇪🇸 45.93.58.186

🇺🇸 2a04:c300:400::1a9

🇳🇱 204.76.203.49

🇺🇸 152.32.183.236

🇺🇸 139.144.239.98

🇺🇸 132.196.69.70

🇵🇰 103.74.21.23

🇺🇸 91.246.176.3

🇵🇱 83.97.117.38