JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.233.211.42

193.233.211.42 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 0%: ?

ISP	AEZA GROUP LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS210644
Domain Name	aeza.ru
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.233.211.42

Whois 193.233.211.42

IP Abuse Reports for 193.233.211.42:

This IP address has been reported a total of 19 times from 10 distinct sources. 193.233.211.42 was first reported on August 8th 2022, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-09-14 00:23:15 (9 months ago)	(mod_security) mod_security (id:210350) triggered by 193.233.211.42 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 193.233.211.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 13 20:23:09.396210 2025] [security2:error] [pid 17727:tid 17727] [client 193.233.211.42:15005] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|everydayrisks.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "everydayrisks.org"] [uri "/"] [unique_id "aMYK7SYKMD9NDRsXJAu4hAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-11 01:27:11 (9 months ago)	(mod_security) mod_security (id:210350) triggered by 193.233.211.42 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 193.233.211.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 10 21:27:06.981667 2025] [security2:error] [pid 8405:tid 8405] [client 193.233.211.42:31929] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|salvoni.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "salvoni.org"] [uri "/"] [unique_id "aMIlahaZ2p4q9fQfNToqJAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-01-09 00:45:38 (1 year ago)	Form spam	Web Spam
🇬🇧 Swiptly	2024-12-12 17:20:36 (1 year ago)	Aggressive SEO Bots ...	Bad Web Bot
🇺🇸 oncord	2024-12-11 15:08:55 (1 year ago)	Form spam	Web Spam
🇺🇸 oncord	2024-12-02 19:16:56 (1 year ago)	Form spam	Web Spam
🇸🇬 oncord	2024-11-02 13:56:31 (1 year ago)	Form spam	Web Spam
🇺🇸 oncord	2024-10-22 08:46:50 (1 year ago)	Form spam	Web Spam
Anonymous	2024-10-03 16:55:11 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2024-09-27 11:25:08 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2024-04-29 06:45:32 (2 years ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-02-29 14:10:17 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 193.233.211.42 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 193.233.211.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 29 09:10:13.551844 2024] [security2:error] [pid 14325] [client 193.233.211.42:41953] [client 193.233.211.42] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|portalvasco.com\|F\|2"] [data ".zencityapp.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "portalvasco.com"] [uri "/blog/2014/04/zencity-encuentra-y-difunde-las-incidencias-en-tu-zona/www.zencityapp.com"] [unique_id "ZeCQRdAxDTNvqP82m5wFegAAABg"], referer: https://portalvasco.com/blog/2014/04/zencity-encuentra-y-difunde-las-incidencias-en-tu-zona/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-01-17 10:23:29 (2 years ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 ChamberofCommerce.com	2023-12-14 04:13:00 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
Anonymous	2023-11-01 22:24:00 (2 years ago)	"Illegal redirection attempt"	Brute-Force

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 70.81.127.119

🇺🇸 3.133.137.146

🇺🇸 2604:a880:400:d1:0:4:9632:f001

🇺🇸 2604:a880:400:d1:0:4:9630:8001

🇺🇸 136.113.199.184

🇨🇳 117.26.227.218

🇸🇬 47.129.172.250

🇺🇸 45.92.229.102

🇺🇸 44.201.225.30

🇳🇱 43.250.54.196

🇨🇦 20.220.63.208

🇺🇸 20.64.106.222

🇩🇪 18.185.86.252

🇸🇪 13.60.156.119

🇨🇦 206.223.166.37

🇨🇳 202.112.47.27

🇰🇼 188.71.221.181

🇫🇷 185.177.72.12

🇸🇦 151.254.87.248

🇺🇸 64.23.140.124