JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.36.225.200

193.36.225.200 was found in our database!

This IP was reported 197 times. Confidence of Abuse is 58%: ?

58%

ISP	VPN Consumer Los Angeles, United States
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.36.225.200

Whois 193.36.225.200

IP Abuse Reports for 193.36.225.200:

This IP address has been reported a total of 197 times from 91 distinct sources. 193.36.225.200 was first reported on February 9th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 zam	2026-06-26 23:42:52 (1 day ago)	193.36.225.200 - - [26/Jun/2026:23:42:49 +0000] "POST /wp-login.php HTTP/1.1" 301 277	Web App Attack
🇩🇪 4server	2026-06-26 10:39:58 (1 day ago)	[FriJun2612:39:52.2920512026][security2:error][pid2950630:tid2950654][client193.36.225.200:0]ModSecu ... show more [FriJun2612:39:52.2920512026][security2:error][pid2950630:tid2950654][client193.36.225.200:0]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof\"rx/index\\\\\\\\.php\$\"against\"REQUEST_FILENAME\"required.[file\"/etc/apache2/conf.d/modsec_rules/51_asl_wordpress_extra.conf\"][line\"33\"][id\"333149\"][rev\"21\"][msg\"Atomicorp.comWAFRules:PossiblePHPwebshelldetectedandblocked\"][severity\"CRITICAL\"][hostname\"casacarmen.ch\"][uri\"/wp-content/uploads/wpcode/moon.php\"][unique_id\"aj5W-K2tMX-Jhf8SJijrwQAAAE8\"] show less	Port Scan Brute-Force Web App Attack
🇫🇷 Octopuce	2026-06-26 09:22:55 (1 day ago)	Aggressive web search of vulnerable pages: /wp-content/plugins/pwnd/as.php /wp-includes/theme-compat ... show more Aggressive web search of vulnerable pages: /wp-content/plugins/pwnd/as.php /wp-includes/theme-compat/network/ /we.php /wp-content/themes/chosen ... show less	Web App Attack
Anonymous	2026-06-21 00:05:37 (1 week ago)	Blocked: Reason='Suspicious traffic score=60 (review-based detection)'; Requests=105	Hacking
🇫🇷 dynamix	2026-06-10 17:49:11 (2 weeks ago)	Multiple WAF Violations	Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-09 15:17:09 (2 weeks ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 SodaAudit.app	2026-06-09 12:29:43 (2 weeks ago)	[sodaaudit.app] Web app attack. Timestamp: 2026-06-09T09:48:45.000Z. 1 probe events, 1 distinct path ... show more [sodaaudit.app] Web app attack. Timestamp: 2026-06-09T09:48:45.000Z. 1 probe events, 1 distinct path(s). Paths (payload): /wp-login.php show less	Web App Attack
🇫🇷 Octopuce	2026-06-07 09:22:30 (2 weeks ago)	Aggressive web search of vulnerable pages: /wp-login.php /file2.php /wp-includes/ID3/wp-work.php /al ... show more Aggressive web search of vulnerable pages: /wp-login.php /file2.php /wp-includes/ID3/wp-work.php /alfa.php /wp-admin/css/colors/blue/admin.php ... show less	Web App Attack
🇬🇧 consul.to	2026-06-07 06:39:15 (3 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-04 19:25:41 (3 weeks ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
Anonymous	2026-06-04 18:31:10 (3 weeks ago)	Attac	Brute-Force
🇦🇺 screwlooseit.com.au	2026-06-04 13:16:59 (3 weeks ago)	Blocked by CSF 13 firewall - Rule: XMLRPC US/United States/-	Web App Attack
🇷🇺 Deynekin.com	2026-06-03 20:45:48 (3 weeks ago)	This IP address has been identified as part of a botnet infrastructure used by threat actors, indica ... show more This IP address has been identified as part of a botnet infrastructure used by threat actors, indicating automated and malicious activity. show less	Fraud Orders Web App Attack SSH Web Spam FTP Brute-Force Phishing Email Spam Port Scan Brute-Force Exploited Host Hacking SQL Injection
🇪🇸 masterguru	2026-05-28 13:03:40 (4 weeks ago)	wp-login request blocked, no referer. Pattern match "wp-login.php" at REQUEST_URI. (5001900-122)	Web App Attack
🇫🇷 dynamix	2026-05-26 13:15:58 (1 month ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 15 of 197 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.106

🇺🇸 186.233.184.67

🇸🇪 170.168.99.111

🇫🇮 147.185.133.120

🇸🇪 146.19.140.24

🇸🇬 139.162.46.29

🇹🇼 101.13.5.30

🇫🇷 81.65.88.200

🇺🇸 64.62.156.93

🇨🇭 35.216.133.121

🇸🇬 165.154.200.214

🇻🇳 165.99.16.135

🇫🇷 161.97.144.146

🇰🇷 121.141.243.81

🇩🇪 94.26.106.19

🇭🇰 49.0.247.198

🇦🇺 45.134.20.122

🇹🇼 45.43.37.254

🇳🇱 34.178.21.247

🇺🇸 20.169.105.96