JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.56.20.91

193.56.20.91 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 16%: ?

16%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.56.20.91

Whois 193.56.20.91

IP Abuse Reports for 193.56.20.91:

This IP address has been reported a total of 20 times from 12 distinct sources. 193.56.20.91 was first reported on April 11th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Oakley	2026-05-26 16:09:23 (1 week ago)	(mod_security) mod_security (id:900177) triggered by 193.56.20.91 (US/United States/-): 5 in the las ... show more (mod_security) mod_security (id:900177) triggered by 193.56.20.91 (US/United States/-): 5 in the last 900 secs show less	Web App Attack Hacking
🇱🇻 garmtech.com	2026-05-12 03:26:52 (3 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 06-26.193.56.20.91.web-spammer ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 06-26.193.56.20.91.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
Anonymous	2026-05-11 08:44:24 (3 weeks ago)	Forum/form spam	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-11-29 00:42:59 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-09-06 21:42:18 (9 months ago)	(mod_security) mod_security (id:210730) triggered by 193.56.20.91 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 193.56.20.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 06 17:42:13.393059 2025] [security2:error] [pid 13325:tid 13325] [client 193.56.20.91:39221] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Golden-Technologies/pics/Golden Technologies 2009 Marketing CD/Lift Chairs/Maxicomfort Series/Thumbs.db"] [unique_id "aLyqtcSshnxD1e2pbBflRQAAABE"], referer: https://vitalitywebb.com/backstore/Golden-Technologies/pics/Golden%20Technologies%202009%20Marketing%20CD/Lift%20Chairs/Maxicomfort%20Series/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2025-08-31 04:07:07 (9 months ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇺🇸 TPI-Abuse	2025-06-20 22:57:05 (11 months ago)	(mod_security) mod_security (id:210730) triggered by 193.56.20.91 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 193.56.20.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 20 18:56:58.205888 2025] [security2:error] [pid 2955297:tid 2955297] [client 193.56.20.91:64765] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Cooper/Thumbs.db"] [unique_id "aFXnOtkzr_VVJiE1puruPwAAAA4"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Cooper/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-06-19 11:40:11 (11 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇺🇸 TPI-Abuse	2024-11-05 00:31:04 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 193.56.20.91 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 193.56.20.91 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 04 19:30:59.715152 2024] [security2:error] [pid 3673876:tid 3673876] [client 193.56.20.91:52553] [client 193.56.20.91] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Golden-Technologies/pics/Golden Technologies 2009 Marketing CD/Lift Chairs/Brisa Fabric Swatches/Thumbs.db"] [unique_id "ZylnQ04jKjXld4n_fNQpowAAAAo"], referer: https://vitalitywebb.com/backstore/Golden-Technologies/pics/Golden%20Technologies%202009%20Marketing%20CD/Lift%20Chairs/Brisa%20Fabric%20Swatches/ show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 sms.ru	2024-09-29 07:20:04 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
🇨🇦 wil.com	2024-09-24 04:25:14 (1 year ago)	GlobalProtect login attempts with user ovalerio.	VPN IP Brute-Force
Anonymous	2024-06-14 11:33:39 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-05-22 08:00:37 (2 years ago)	Web App Attack	Hacking Web App Attack
🇨🇭 backslash	2024-05-15 22:45:05 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2024-05-05 05:32:44 (2 years ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇭 185.211.94.76

🇩🇪 46.249.99.46

🇩🇪 213.209.159.11

🇳🇱 185.242.226.81

🇺🇸 172.245.25.163

🇭🇰 152.32.189.59

🇵🇱 138.124.242.51

🇮🇳 98.70.50.166

🇷🇴 92.118.39.236

🇺🇸 49.51.39.209

🇺🇸 47.251.188.112

🇱🇹 45.227.254.170

🇺🇸 40.77.167.73

🇮🇳 203.192.232.180

🇸🇾 185.225.41.192

🇧🇷 179.51.153.37

🇨🇳 124.66.78.109

🇺🇸 75.127.15.105

🇺🇸 64.62.156.24

🇺🇸 45.8.19.12