JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.56.20.123

193.56.20.123 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 8%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.56.20.123

Whois 193.56.20.123

IP Abuse Reports for 193.56.20.123:

This IP address has been reported a total of 29 times from 20 distinct sources. 193.56.20.123 was first reported on January 3rd 2022, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇯🇵 VXG-NET	2026-05-27 12:13:47 (4 weeks ago)	port=80, indicator_type=sql-injection	SQL Injection
🇺🇸 remyMns	2026-04-30 11:04:09 (1 month ago)	apache-sqli: Brute force or malicious activity detected	Brute-Force Hacking
🇺🇸 Psycho Solutions LLC	2026-03-13 00:02:17 (3 months ago)	Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N ... show more Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N/A - Timestamp: 3/13/2026 12:02 am (UTC-6) show less	Web App Attack Bad Web Bot Web Spam Hacking
🇺🇦 URAN Publishing Service	2026-03-04 05:27:57 (3 months ago)	193.56.20.123 - - [04/Mar/2026:07:27:54 +0200] "GET /wp-login.php HTTP/1.1" 404 2689 "https://www.go ... show more 193.56.20.123 - - [04/Mar/2026:07:27:54 +0200] "GET /wp-login.php HTTP/1.1" 404 2689 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 193.56.20.123 - - [04/Mar/2026:07:27:56 +0200] "GET /wp-login.php HTTP/1.1" 404 2689 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" ... show less	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-03-02 10:09:26 (3 months ago)	WP Login Scan Activities: "2026-03-02T17:09:26.807+07:00" "/wp-login.php" "193.56.20.123" "Mozilla/5 ... show more WP Login Scan Activities: "2026-03-02T17:09:26.807+07:00" "/wp-login.php" "193.56.20.123" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Web App Attack
🇪🇸 el-brujo	2026-03-02 00:36:22 (3 months ago)	[Mon Mar 02 01:36:20.555891 2026] [proxy_fcgi:error] [pid 2300494:tid 2300735] [remote 193.56.20.123 ... show more [Mon Mar 02 01:36:20.555891 2026] [proxy_fcgi:error] [pid 2300494:tid 2300735] [remote 193.56.20.123:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com [Mon Mar 02 01:36:22.088337 2026] [proxy_fcgi:error] [pid 2300494:tid 2300832] [remote 193.56.20.123:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com ... show less	Hacking Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-02-25 09:04:23 (4 months ago)	WP Login Scan Activities: "2026-02-25T16:04:23.668+07:00" "/wp-login.php" "193.56.20.123" "Mozilla/5 ... show more WP Login Scan Activities: "2026-02-25T16:04:23.668+07:00" "/wp-login.php" "193.56.20.123" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Web App Attack
🇪🇸 el-brujo	2026-02-24 12:10:47 (4 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Chrome/ ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Chrome/98.8 Safari/538.58 Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: POST Timestamp: 2026-02-24T12:10:47Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2026-02-24 01:28:42 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 193.56.20.123 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 193.56.20.123 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 20:28:35.876898 2026] [security2:error] [pid 9742:tid 9742] [client 193.56.20.123:42499] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|velvetculture.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "velvetculture.com"] [uri "/"] [unique_id "aZz-w6ohjI2MP7inRePXkwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-02-20 11:18:12 (4 months ago)	Accessed trap at '/xmlrpc.php'	Web App Attack
🇮🇩 sockominfo	2026-02-06 14:00:13 (4 months ago)	Reported by TangerangKota-CSIRT. Status: MALICIOUS	Hacking Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-01-27 19:07:40 (4 months ago)	WP Login Scan Activities	Web App Attack
Anonymous	2026-01-24 21:43:35 (5 months ago)	"GET /wp-login.php HTTP/1.1"	Hacking Web App Attack
🇺🇸 Psycho Solutions LLC	2026-01-22 16:30:29 (5 months ago)	Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N ... show more Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N/A - Timestamp: 1/22/2026 4:30 pm (UTC-6) show less	Web Spam Hacking Bad Web Bot Web App Attack
🇺🇸 www.winos.me	2026-01-21 21:12:42 (5 months ago)	Banned due to high error rate on HTTP/1.1 protocol	Brute-Force Web App Attack

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.125.189.160

🇳🇱 172.235.173.150

🇨🇦 138.197.164.175

🇺🇸 136.107.110.232

🇨🇳 101.126.71.100

🇧🇬 79.124.62.230

🇺🇸 66.132.195.29

🇺🇸 2a04:c300:400::169

🇺🇸 216.25.89.72

🇰🇷 211.216.58.204

🇺🇸 207.90.244.22

🇺🇸 207.90.244.4

🇧🇪 158.173.67.191

🇺🇸 66.132.195.21

🇸🇬 47.84.117.97

🇺🇸 24.199.126.56

🇺🇸 20.163.14.102

🇮🇳 2404:6800:4000:1001::122

🇨🇳 221.131.2.4

🇮🇹 217.26.179.25