JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.56.28.237

193.56.28.237 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.56.28.237

Whois 193.56.28.237

IP Abuse Reports for 193.56.28.237:

This IP address has been reported a total of 21 times from 9 distinct sources. 193.56.28.237 was first reported on September 26th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 relianoid.com	2026-04-23 11:34:34 (1 month ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
Anonymous	2026-03-30 17:08:24 (2 months ago)	Forum/form spam	Web Spam
Anonymous	2026-03-23 08:36:30 (2 months ago)	193.56.28.237 - - [23/Mar/2026:09:36:29 +0100] "GET /product/profuel-vitamin-b-komplex-forte-180-tab ... show more 193.56.28.237 - - [23/Mar/2026:09:36:29 +0100] "GET /product/profuel-vitamin-b-komplex-forte-180-tabletten/ HTTP/1.1" 200 63537 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/537.36" show less	Bad Web Bot
🇳🇱 jjnxpct	2026-03-16 04:49:44 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /contact (Rule ID: 942540) - SQL Authentication bypass (split query) [Suspicious: 38'; found within ARGS:catid: 38';--] show less	Web App Attack SQL Injection Brute-Force
Anonymous	2026-03-01 05:09:55 (3 months ago)	Forum/form spam	Web Spam
🇬🇧 relianoid.com	2026-02-03 01:29:38 (4 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇦🇺 2000cn.com.au	2025-12-02 20:54:41 (6 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 20:47:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 15:47:29.788975 2025] [security2:error] [pid 2873:tid 2873] [client 193.56.28.237:58875] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "buffaloweddingreception.com"] [uri "/.git/HEAD"] [unique_id "aS9QYTiV7Jj4dFxIxrtfzQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 14:31:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 09:31:48.993647 2025] [security2:error] [pid 25346:tid 25346] [client 193.56.28.237:26713] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "disenowebprofesional.com"] [uri "/.git/HEAD"] [unique_id "aS74VDoy-Gf4uaPdA2KaRAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 08:28:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 03:27:57.235801 2025] [security2:error] [pid 14005:tid 14005] [client 193.56.28.237:57555] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ericgwin.com"] [uri "/.svn/wc.db"] [unique_id "aS6jDQMCJTQm6cZM3vKiEQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 07:14:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 02:14:03.050803 2025] [security2:error] [pid 19443:tid 19456] [client 193.56.28.237:32051] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lakebridge.com"] [uri "/.git/HEAD"] [unique_id "aS6RuzufS__gaNU5_bPYMAAAAQs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 06:57:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 01:57:49.133362 2025] [security2:error] [pid 19222:tid 19222] [client 193.56.28.237:34787] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "antimu.com"] [uri "/.svn/wc.db"] [unique_id "aS6N7Qtqowde2rBPkt2HegAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:43:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:43:19.985571 2025] [security2:error] [pid 13327:tid 13327] [client 193.56.28.237:51315] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jmgrigg.com"] [uri "/.git/HEAD"] [unique_id "aS5uZyb73T09QwtXuwGYtwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:10:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:10:09.999344 2025] [security2:error] [pid 16762:tid 16762] [client 193.56.28.237:9305] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.thegreatleapforward.com"] [uri "/.git/HEAD"] [unique_id "aSVWUTUbMXxlpzisbOTA4wAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-16 15:30:48 (8 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇹 83.229.8.197

🇳🇱 45.148.10.157

🇺🇸 192.220.50.39

🇧🇴 181.115.211.47

🇬🇧 167.99.197.34

🇩🇪 69.5.169.188

🇰🇷 220.118.173.234

🇬🇧 185.219.142.110

🇳🇱 159.223.5.135

🇺🇸 135.119.112.132

🇹🇭 118.194.250.245

🇨🇳 118.123.1.31

🇨🇳 112.86.225.236

🇭🇰 103.112.173.87

🇸🇬 45.78.198.199

🇺🇸 34.69.220.128

🇺🇸 3.229.213.129

🇲🇽 189.203.163.10

🇸🇪 155.4.244.179

🇺🇸 136.111.117.11