JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.56.20.25

193.56.20.25 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 2%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.56.20.25

Whois 193.56.20.25

IP Abuse Reports for 193.56.20.25:

This IP address has been reported a total of 17 times from 9 distinct sources. 193.56.20.25 was first reported on December 11th 2020, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 gadix	2026-05-26 17:13:15 (2 weeks ago)	[26/May/2026:19:13:13.124903 +0200] ahXUqRDJShUkVK-Dl8GIpwAAAAo 193.56.20.25 48492 127.0.0.1 7081 [2 ... show more [26/May/2026:19:13:13.124903 +0200] ahXUqRDJShUkVK-Dl8GIpwAAAAo 193.56.20.25 48492 127.0.0.1 7081 [26/May/2026:19:13:14.187079 +0200] ahXUqtbwrcBi2UpslhO0ZQAAAEI 193.56.20.25 43788 127.0.0.1 7081 [26/May/2026:19:13:15.262373 +0200] ahXUq9bwrcBi2UpslhO0aAAAAFQ 193.56.20.25 43826 127.0.0.1 7081 ... show less	Web App Attack
🇮🇩 securejdprop	2026-02-05 14:25:37 (4 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing. crowdsecurity/http-probing	Hacking Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-11-29 00:42:48 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇦🇺 MAGIC	2025-06-25 19:28:52 (11 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-06-20 23:01:56 (11 months ago)	(mod_security) mod_security (id:210730) triggered by 193.56.20.25 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 193.56.20.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 20 19:01:49.625091 2025] [security2:error] [pid 2960870:tid 2960870] [client 193.56.20.25:48025] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Giovanni 4405/Thumbs.db"] [unique_id "aFXoXdt4FR_G33z4jKyVwQAAAAg"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Giovanni%204405/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-05-10 04:56:41 (1 year ago)		Bad Web Bot
🇺🇸 TPI-Abuse	2024-12-01 09:05:33 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 193.56.20.25 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 193.56.20.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 01 04:05:29.122438 2024] [security2:error] [pid 3740087:tid 3740087] [client 193.56.20.25:10605] [client 193.56.20.25] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Lectern II/Lectern II/Brighton Chocolate/originals/Thumbs.db"] [unique_id "Z0wm2Vor3TdkvCCC2iyuEQAAAAY"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Lectern%20II/Lectern%20II/Brighton%20Chocolate/originals/ show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 sms.ru	2024-09-22 12:15:05 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
🇬🇧 SilverZippo	2024-08-27 06:21:46 (1 year ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2024-05-24 01:41:25 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 193.56.20.25 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 193.56.20.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 23 21:41:18.663216 2024] [security2:error] [pid 29220] [client 193.56.20.25:40511] [client 193.56.20.25] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Kendall/Thumbs.db"] [unique_id "Zk_wPqeDukCHqumTRkt1fQAAAAg"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Kendall/ show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2024-05-02 06:10:01 (2 years ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇨🇭 backslash	2024-04-05 00:35:02 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2024-03-10 02:48:14 (2 years ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2023-12-24 21:28:15 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 193.56.20.25 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 193.56.20.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 24 16:28:07.587931 2023] [security2:error] [pid 24599] [client 193.56.20.25:13455] [client 193.56.20.25] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Kendall II/Thumbs.db"] [unique_id "ZYiiZ1oiyoRuE7mKvkojFQAAAAI"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Kendall%20II/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2023-01-13 14:20:11 (3 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 2a04:c900:1d00:258::2

🇧🇷 205.164.104.23

🇭🇰 172.253.4.29

🇺🇸 72.10.32.138

🇺🇸 66.42.91.96

🇷🇺 5.200.33.20

🇨🇳 222.75.105.94

🇬🇧 217.146.80.117

🇨🇱 200.54.96.2

🇳🇱 195.178.110.135

🇩🇪 185.249.74.198

🇺🇸 142.93.206.115

🇧🇩 123.49.60.158

🇵🇱 84.10.42.166

🇮🇳 45.250.249.14

🇨🇳 42.178.17.143

🇺🇸 20.65.195.97

🇰🇷 183.109.124.136

🇬🇭 154.160.53.7

🇺🇸 138.68.61.2