JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.42.96.106

193.42.96.106 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 15%: ?

15%

ISP	Packethub S.A.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136787
Domain Name	packethub.net
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.42.96.106

Whois 193.42.96.106

IP Abuse Reports for 193.42.96.106:

This IP address has been reported a total of 9 times from 5 distinct sources. 193.42.96.106 was first reported on April 10th 2024, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 pengpeng	2026-06-28 11:54:14 (14 hours ago)	monitor: on VM-0-7-ubuntu \| port: 41894 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on VM-0-7-ubuntu \| port: 41894 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-06-25 05:33:24 (3 days ago)	Blocked by UFW (TCP on 51413) Source port: 50685 TTL: 45 Packet length: 60 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 51413) Source port: 50685 TTL: 45 Packet length: 60 TOS: 0x08 This report (for 193.42.96.106) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 exxos	2025-09-01 20:05:15 (9 months ago)	Attacks with Bad user agents	Hacking
🇺🇸 TPI-Abuse	2025-01-03 11:37:19 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 193.42.96.106 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.42.96.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 03 06:37:14.178035 2025] [security2:error] [pid 374839:tid 374839] [client 193.42.96.106:40686] [client 193.42.96.106] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "firstlivingcell.com.ciid.info"] [uri "/.env"] [unique_id "Z3fL6uxDFXeRhEbgimZ3ZQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-01-03 10:47:43 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 193.42.96.106 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.42.96.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 03 05:47:38.936544 2025] [security2:error] [pid 1358769:tid 1358769] [client 193.42.96.106:45874] [client 193.42.96.106] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nextlevelcharge.savingshvac.com"] [uri "/.env"] [unique_id "Z3fASvAsLrUyr8ht2kMbZgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-01-03 10:21:11 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 193.42.96.106 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.42.96.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 03 05:21:05.039787 2025] [security2:error] [pid 10436:tid 10436] [client 193.42.96.106:47194] [client 193.42.96.106] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "howtolivegreener.com.easyweb-publishing.com"] [uri "/.env"] [unique_id "Z3e6EXs7o2pgPAmEDz6PjwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-01-03 09:49:56 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 193.42.96.106 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.42.96.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 03 04:49:51.337088 2025] [security2:error] [pid 18646:tid 18646] [client 193.42.96.106:63266] [client 193.42.96.106] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rentalmgt.mikelynchphoto.com"] [uri "/.env"] [unique_id "Z3eyv_oyaNdgYh85HWJzSwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 BestFans.com	2024-10-03 10:05:12 (1 year ago)	Credential brute-force attacks on webpage logins	Brute-Force
🇩🇪 BestFans.com	2024-04-10 18:54:38 (2 years ago)	Credential brute-force attacks on webpage logins	Brute-Force

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 187.188.229.242

🇺🇸 172.178.115.16

🇭🇰 156.251.179.157

🇨🇳 106.57.197.182

🇩🇪 92.246.88.77

🇽🇰 91.187.123.160

🇮🇶 62.201.212.54

🇸🇬 2a09:bac5:55fc:25c3::3c3:32

🇨🇳 218.0.56.30

🇨🇱 207.248.0.40

🇺🇸 185.223.152.75

🇸🇬 159.223.76.255

🇿🇼 143.105.233.201

🇮🇩 103.97.101.25

🇰🇪 102.210.149.105

🇹🇭 101.51.131.47

🇩🇪 92.246.88.137

🇬🇧 81.156.232.141

🇩🇪 77.110.107.31

🇺🇸 66.132.172.124