JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.36.225.225

193.36.225.225 was found in our database!

This IP was reported 197 times. Confidence of Abuse is 52%: ?

52%

ISP	VPN Consumer Los Angeles, United States
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.36.225.225

Whois 193.36.225.225

IP Abuse Reports for 193.36.225.225:

This IP address has been reported a total of 197 times from 95 distinct sources. 193.36.225.225 was first reported on February 22nd 2021, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nyt	2026-06-10 16:09:09 (2 weeks ago)	CGI Probe, Accessing phpMyAdmin plugin directory., Accessing SEO plugin directory., Unusual path, po ... show more CGI Probe, Accessing phpMyAdmin plugin directory., Accessing SEO plugin directory., Unusual path, potential probing for vulnerabilities. show less	Web App Attack
🇲🇹 Malta	2026-06-08 10:00:20 (2 weeks ago)	193.36.225.225 - - [08/Jun/2026:12:00:20 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 193.36.225.225 - - [08/Jun/2026:12:00:20 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/129.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇺🇸 chronos	2026-06-08 07:01:15 (2 weeks ago)	[AUTORAVALT][[08/06/2026 - 04:01:15 -03:00 UTC] Attack from [193.36.225.225] Action: BLocKed Hackin ... show more [AUTORAVALT][[08/06/2026 - 04:01:15 -03:00 UTC] Attack from [193.36.225.225] Action: BLocKed Hacking... Unauthorized attempts to access the server. Web App Attack -> Attempts to probe for or exploit installed web applications such as a CMS like WordPress/Drupal, e-commerce solutions, forum software, phpMyAdmin and various other software plugins/solutions. ] ... show less	Hacking Web App Attack
🇺🇸 chronos	2026-06-08 04:58:52 (2 weeks ago)	[AUTORAVALT][[08/06/2026 - 01:58:51 -03:00 UTC] Attack from [193.36.225.225] Action: BLocKed Hackin ... show more [AUTORAVALT][[08/06/2026 - 01:58:51 -03:00 UTC] Attack from [193.36.225.225] Action: BLocKed Hacking... Unauthorized attempts to access the server. Web App Attack -> Attempts to probe for or exploit installed web applications such as a CMS like WordPress/Drupal, e-commerce solutions, forum software, phpMyAdmin and various other software plugins/solutions. ] ... show less	Hacking Web App Attack
🇬🇧 consul.to	2026-06-07 05:59:43 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 02:15:39 (2 weeks ago)	(mod_security) mod_security (id:240000) triggered by 193.36.225.225 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 193.36.225.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 22:15:33.684594 2026] [security2:error] [pid 24328:tid 24328] [client 193.36.225.225:60413] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|web63.dnchosting.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "web63.dnchosting.com"] [uri "/images/stories/themes.php"] [unique_id "aiTURYTpona2IWW-BZSFjAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Octopuce	2026-06-07 00:57:33 (2 weeks ago)	Aggressive web search of vulnerable pages: /wp-login.php /wp.php /wp-admin/css/colors/blue/wp-trackb ... show more Aggressive web search of vulnerable pages: /wp-login.php /wp.php /wp-admin/css/colors/blue/wp-trackback.php /wp-content/themes/chosen.php /wp-h ... show less	Web App Attack
🇯🇵 beon	2026-06-06 18:57:25 (2 weeks ago)	[DateTime=>2026-06-06T18:57:25Z (UTC)] , [HoneyPot_Hit=>once] , [HoneyPot=>/wp-login.php] , [total_H ... show more [DateTime=>2026-06-06T18:57:25Z (UTC)] , [HoneyPot_Hit=>once] , [HoneyPot=>/wp-login.php] , [total_Hit=>once] , [Keyword=>WordPress] show less	Bad Web Bot Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-04 19:39:35 (2 weeks ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-04 13:26:25 (3 weeks ago)	Blocked by CSF 13 firewall - Rule: XMLRPC US/United States/-	Web App Attack
🇳🇱 Mangelot Hosting	2026-06-03 02:07:12 (3 weeks ago)	(wp_login_try) srv104 WP Login Attempt 193.36.225.225 (US/United States/-): 10 in the last 3600 secs ... show more (wp_login_try) srv104 WP Login Attempt 193.36.225.225 (US/United States/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇲🇾 Rizzy	2026-05-31 00:34:29 (3 weeks ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 julianalee.com	2026-05-27 01:54:00 (4 weeks ago)	26/May/26 10:24:29 #2167935 CRITICAL 1635 193.36.225.225 GET /index.php - WP vulnerability - [ ... show more 26/May/26 10:24:29 #2167935 CRITICAL 1635 193.36.225.225 GET /index.php - WP vulnerability - [Unauthenticated action] - real-estate-burlingame-ca.com show less	Hacking
🇬🇧 poundawebsiteltd	2026-05-24 20:11:38 (1 month ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 193.36.225.225 - - [24/May/2026:21:11:34 +0100] ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 193.36.225.225 - - [24/May/2026:21:11:34 +0100] POST /wp-login.php HTTP/1.1 200 7170 - Mozilla/5.0 (Windows NT 10.0; Win64; rv:143.0) Gecko/20100101 Firefox/143.0 show less	Web App Attack
🇫🇷 Octopuce	2026-05-24 08:34:18 (1 month ago)	Aggressive web search of vulnerable pages: /wp-admin/maint/bootstrap.php /themes/zMousse/otuz1.php / ... show more Aggressive web search of vulnerable pages: /wp-admin/maint/bootstrap.php /themes/zMousse/otuz1.php /wp-content/edit-wolf.php /wp-content/plugin ... show less	Web App Attack

Showing 1 to 15 of 197 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇿 190.197.31.229

🇳🇱 89.21.67.165

🇧🇬 79.124.62.134

🇩🇪 64.89.163.245

🇮🇳 49.207.40.162

🇬🇪 37.75.128.150

🇨🇦 15.235.98.10

🇨🇳 223.166.28.86

🇲🇩 195.178.106.224

🇫🇷 91.231.89.170

🇳🇱 45.148.10.152

🇺🇸 34.29.2.178

🇺🇸 20.98.137.43

🇨🇳 223.89.36.160

🇰🇷 222.116.9.180

🇺🇸 173.255.214.136

🇺🇸 162.243.147.237

🇪🇸 141.109.168.107

🇸🇬 136.110.55.85

🇧🇩 103.183.62.3