JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.42.245.26

193.42.245.26 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 7%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46475
Domain Name	finegroupservers.com
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.42.245.26

Whois 193.42.245.26

IP Abuse Reports for 193.42.245.26:

This IP address has been reported a total of 14 times from 6 distinct sources. 193.42.245.26 was first reported on January 24th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-28 17:54:23 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 13:54:16.225270 2026] [security2:error] [pid 28788:tid 28813] [client 193.42.245.26:12649] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mcdonaldmountainranch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mcdonaldmountainranch.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afD0SBU1YIkaMztSea4vmgAAAVc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 BlueWire Hosting	2026-04-27 12:12:29 (1 month ago)	Bad bot ignoring robot.txt	Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-27 01:49:21 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 21:49:15.038414 2026] [security2:error] [pid 15501:tid 15501] [client 193.42.245.26:53737] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|dpcfab.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "dpcfab.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ae7Am07itnaYaqS7gb6P2gAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-03-06 06:59:27 (3 months ago)	193.42.245.26 - - [06/Mar/2026:08:59:26 +0200] "GET /wp-login.php HTTP/1.1" 404 2688 "https://www.go ... show more 193.42.245.26 - - [06/Mar/2026:08:59:26 +0200] "GET /wp-login.php HTTP/1.1" 404 2688 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 193.42.245.26 - - [06/Mar/2026:08:59:26 +0200] "GET /wp-login.php HTTP/1.1" 404 2688 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-22 20:16:21 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 15:16:15.240513 2026] [security2:error] [pid 16569:tid 16569] [client 193.42.245.26:24023] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|desertautoworks.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "desertautoworks.com"] [uri "/mailto:[email protected]"] [unique_id "aZtkD_jj-wE77n2jBDCvDwAAABw"], referer: https://www.desertautoworks.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-22 15:19:09 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 10:19:00.627920 2026] [security2:error] [pid 25840:tid 25840] [client 193.42.245.26:12913] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|daveslawncare.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "daveslawncare.com"] [uri "/mailto:[email protected]"] [unique_id "aZseZFvzVgH9x7G8zNQsqQAAAAc"], referer: http://www.daveslawncare.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-22 01:08:57 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 21 20:08:50.579697 2026] [security2:error] [pid 1429:tid 1433] [client 193.42.245.26:52377] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|boxwoodgarden.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "boxwoodgarden.com"] [uri "/mailto:[email protected]"] [unique_id "aZpXIuaMtxnsGCRfAmpkcAAAAII"], referer: http://boxwoodgarden.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-21 17:40:27 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 21 12:40:24.176196 2026] [security2:error] [pid 22516:tid 22516] [client 193.42.245.26:21121] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mmmetalizing.com\|F\|2"] [data ".rr.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mmmetalizing.com"] [uri "/mailto:[email protected]"] [unique_id "aZnuCIJICic-sErHtRJS3AAAAAA"], referer: http://www.mmmetalizing.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-21 17:07:02 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 21 12:06:58.564727 2026] [security2:error] [pid 8656:tid 8656] [client 193.42.245.26:35827] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|melsjukeboxes.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "melsjukeboxes.com"] [uri "/mailto:[email protected]"] [unique_id "aZnmMr8_uorVRrNOYfZbtQAAAAY"], referer: http://www.melsjukeboxes.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-21 08:03:14 (3 months ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: FI, Attack patterns: Mali ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: FI, Attack patterns: Malicious User-Agent show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-21 00:39:16 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 20 19:39:09.640097 2026] [security2:error] [pid 26723:tid 26723] [client 193.42.245.26:15485] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|fadcometal.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "fadcometal.com"] [uri "/mailto:[email protected]"] [unique_id "aZj-rQ_cJ7Ht4b72gtcW8gAAAAY"], referer: http://www.fadcometal.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-02-05 20:00:04 (4 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
Anonymous	2026-02-04 20:21:19 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-01-24 20:19:38 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 193.42.245.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 24 15:19:35.317246 2026] [security2:error] [pid 17860:tid 17871] [client 193.42.245.26:30063] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|charlottesvilleclosets.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "charlottesvilleclosets.com"] [uri "/mailto:[email protected]"] [unique_id "aXUpV3dfCwNJ0f-aitCl9AAAAEQ"], referer: https://charlottesvilleclosets.com/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 183.99.228.131

🇺🇸 162.216.150.34

🇸🇦 142.247.88.142

🇮🇩 119.235.214.74

🇧🇷 45.164.39.253

🇺🇸 20.118.217.181

🇺🇸 13.223.12.30

🇺🇸 195.184.76.180

🇵🇱 194.180.49.217

🇺🇸 162.216.149.178

🇨🇳 162.14.80.253

🇲🇽 149.104.90.95

🇨🇳 117.185.86.210

🇮🇳 103.91.246.73

🇮🇳 103.84.236.222

🇮🇹 81.57.15.243

🇺🇸 46.202.59.114

🇻🇳 14.191.163.68

🇻🇳 14.190.200.84

🇯🇵 13.78.21.161