JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.56.116.220

193.56.116.220 was found in our database!

This IP was reported 163 times. Confidence of Abuse is 72%: ?

72%

ISP	VPN Consumer Atlanta, United States of America
Usage Type	Data Center/Web Hosting/Transit
ASN	AS62240
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Atlanta, Georgia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.56.116.220

Whois 193.56.116.220

IP Abuse Reports for 193.56.116.220:

This IP address has been reported a total of 163 times from 52 distinct sources. 193.56.116.220 was first reported on June 4th 2022, and the most recent report was 33 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇹 Malta	2026-06-27 11:51:20 (33 minutes ago)	193.56.116.220 - - [27/Jun/2026:13:51:20 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0" Brute-fo ... show more 193.56.116.220 - - [27/Jun/2026:13:51:20 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇳🇱 Site.eu	2026-06-24 22:47:33 (2 days ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇳🇱 homeshowdomain.nl	2026-06-18 21:59:25 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-18	Web App Attack SSH Hacking
🇨🇿 plzenskypruvodce.cz	2026-06-16 07:37:07 (1 week ago)	2026-06-16T09:27:42.214581+02:00 web wordpress(choteborky.cz)[3243026]: Authentication attempt for u ... show more 2026-06-16T09:27:42.214581+02:00 web wordpress(choteborky.cz)[3243026]: Authentication attempt for unknown user root from 193.56.116.220 2026-06-16T09:27:47.293864+02:00 web wordpress(choteborky.cz)[3242943]: Authentication attempt for unknown user root from 193.56.116.220 2026-06-16T09:37:06.936590+02:00 web wordpress(choteborky.cz)[3244592]: Authentication attempt for unknown user wp-system from 193.56.116.220 ... show less	Brute-Force
🇨🇿 plzenskypruvodce.cz	2026-06-16 07:16:10 (1 week ago)	2026-06-16T09:15:52.010438+02:00 web wordpress(choteborky.cz)[3240891]: Authentication failure for z ... show more 2026-06-16T09:15:52.010438+02:00 web wordpress(choteborky.cz)[3240891]: Authentication failure for zmok from 193.56.116.220 2026-06-16T09:15:59.024621+02:00 web wordpress(choteborky.cz)[3240825]: Authentication attempt for unknown user jakubhruby from 193.56.116.220 2026-06-16T09:16:10.561878+02:00 web wordpress(choteborky.cz)[3240891]: Authentication attempt for unknown user administrator from 193.56.116.220 ... show less	Brute-Force
🇩🇪 stinpriza	2026-06-16 01:33:35 (1 week ago)	Web App Attack	Web App Attack
🇫🇮 bittiguru.fi	2026-06-15 14:15:25 (1 week ago)	193.56.116.220 - [15/Jun/2026:17:13:43 +0300] "POST /wp-login.php HTTP/1.1" 403 3410 "https://binder ... show more 193.56.116.220 - [15/Jun/2026:17:13:43 +0300] "POST /wp-login.php HTTP/1.1" 403 3410 "https://binderholznordic.fi/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15" "3.32" 193.56.116.220 - [15/Jun/2026:17:14:07 +0300] "POST /wp-login.php HTTP/1.1" 403 3414 "https://binderholznordic.fi/wp-login.php" "Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0" "3.32" 193.56.116.220 - [15/Jun/2026:17:14:40 +0300] "POST /wp-login.php HTTP/1.1" 403 3414 "https://binderholznordic.fi/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "3.32" 193.56.116.220 - [15/Jun/2026:17:15:01 +0300] "POST /wp-login.php HTTP/1.1" 403 3415 "https://binderholznordic.fi/wp-login.php" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" "3.32" 193.56.116.220 - [15/Jun/2026:17:15:24 ... show less	Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 03:42:23 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 193.56.116.220 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 193.56.116.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 23:42:18.570999 2026] [security2:error] [pid 20058:tid 20058] [client 193.56.116.220:41213] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|certifiedfarmersmarkets.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "certifiedfarmersmarkets.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ai90mmNDxW3boc-jPFlOpAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-14 15:48:46 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247	Exploited Host Web App Attack
Anonymous	2026-06-14 12:47:04 (1 week ago)	Bot / scanning and/or hacking attempts: POST /wp-login.php HTTP/1.1, GET /wp-admin/index.php HTTP/1. ... show more Bot / scanning and/or hacking attempts: POST /wp-login.php HTTP/1.1, GET /wp-admin/index.php HTTP/1.1, GET /wp-admin/profile.php HTTP/1.1 show less	Hacking Web App Attack
🇬🇧 blik2108	2026-06-14 10:08:10 (1 week ago)	blog.blacknellsatsea.co.uk:443 193.56.116.220 - - [14/Jun/2026:11:08:01 +0100] "POST /wp-login.php H ... show more blog.blacknellsatsea.co.uk:443 193.56.116.220 - - [14/Jun/2026:11:08:01 +0100] "POST /wp-login.php HTTP/1.1" 200 7276 "https://blog.blacknellsatsea.co.uk/wp-login.php" "Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0" blog.blacknellsatsea.co.uk:443 193.56.116.220 - - [14/Jun/2026:11:08:02 +0100] "GET /wp-login.php?redirect_to=https%3A%2F%2Fblog.blacknellsatsea.co.uk%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 5929 "https://blog.blacknellsatsea.co.uk/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15" blog.blacknellsatsea.co.uk:443 193.56.116.220 - - [14/Jun/2026:11:08:04 +0100] "POST /wp-login.php HTTP/1.1" 200 3950 "https://blog.blacknellsatsea.co.uk/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15" blog.blacknellsatsea.co.uk:443 193.56.116.220 - - [14/Jun/2026:11:08:06 +0100] "GET /wp-log ... show less	Brute-Force Web App Attack
🇺🇸 mnsf	2026-06-14 04:10:35 (1 week ago)	Login Too Frequent (7)	Brute-Force Web App Attack
🇦🇺 MAGIC	2026-06-14 03:04:47 (1 week ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇫🇷 masterguru	2026-06-13 00:16:13 (2 weeks ago)	wp-login request blocked, no referer. Pattern match "wp-login.php" at REQUEST_URI. (88020-197)	Hacking
🇸🇬 serverutama	2026-06-12 21:03:02 (2 weeks ago)	Nginx scanner: 193.56.116.220 - - [13/Jun/2026:03:04:05 +0700] "GET /wp-login.php HTTP/1.1" 444 0 "- ... show more Nginx scanner: 193.56.116.220 - - [13/Jun/2026:03:04:05 +0700] "GET /wp-login.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/129.0.0.0 Safari/537.36" "-" show less	Web App Attack Bad Web Bot

Showing 1 to 15 of 163 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇮 154.0.30.137

🇵🇭 124.83.9.140

🇨🇳 123.160.233.134

🇰🇷 61.98.8.154

🇺🇸 23.234.78.205

🇨🇳 14.154.62.128

🇹🇳 197.5.145.150

🇧🇷 177.200.34.8

🇰🇷 112.216.108.62

🇬🇧 82.33.42.19

🇱🇹 45.227.254.170

🇺🇸 35.212.211.38

🇺🇸 34.228.104.231

🇵🇭 160.250.6.80

🇨🇳 115.190.125.207

🇺🇸 66.132.195.26

🇰🇷 64.110.90.250

🇳🇱 5.255.103.55

🇵🇰 223.123.35.45

🇨🇳 182.151.41.228