JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.180.232.32

194.180.232.32 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 16%: ?

16%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.180.232.32

Whois 194.180.232.32

IP Abuse Reports for 194.180.232.32:

This IP address has been reported a total of 12 times from 7 distinct sources. 194.180.232.32 was first reported on November 9th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-22 11:21:21 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 194.180.232.32 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 194.180.232.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 07:21:14.989663 2026] [security2:error] [pid 10213:tid 10219] [client 194.180.232.32:18627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.blog.juantrece.com"] [uri "/wp-config.php.old"] [unique_id "ahA8KqFB2nVRXNUXTt2BBQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 21:17:49 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.180.232.32 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 194.180.232.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 17:17:45.919268 2026] [security2:error] [pid 15451:tid 15451] [client 194.180.232.32:35409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "altoshp.com"] [uri "/wp-config.php.old"] [unique_id "ag4k-XRUp1qjSENGCoeYUwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 15:34:46 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.180.232.32 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 194.180.232.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 11:34:38.376989 2026] [security2:error] [pid 3548:tid 3548] [client 194.180.232.32:15807] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.txt" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "site.ablogisticsgroup.com"] [uri "/wp-config.txt"] [unique_id "ag3UjmW8lAIQx5kvAOAdMgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 13:00:37 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.180.232.32 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 194.180.232.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 09:00:31.669547 2026] [security2:error] [pid 23027:tid 23027] [client 194.180.232.32:21867] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.dixiegeek.cosentient.com"] [uri "/wp-config.php~"] [unique_id "ag2wbz5eaocK46fRMgdjuwAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 12:17:18 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.180.232.32 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 194.180.232.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 08:17:14.630452 2026] [security2:error] [pid 32044:tid 32044] [client 194.180.232.32:48489] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.drgracetomastolentino.corepsychotherapycenter.com"] [uri "/wp-config.php~"] [unique_id "ag2mSi8_8unaNyQQg4xW-wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 04:12:13 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 194.180.232.32 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 194.180.232.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 00:12:06.292128 2026] [security2:error] [pid 6214:tid 6214] [client 194.180.232.32:44783] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|newsite.harbouronline.com\|F\|2"] [data ".inc"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "newsite.harbouronline.com"] [uri "/wp-config.inc"] [unique_id "ag00lm03Jt1vVdOVsu0c7AAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 [email protected]	2026-05-13 08:23:35 (3 weeks ago)	194.180.232.32 - - [13/May/2026:10:23:28 +0200] "GET /wp-config.php.bak HTTP/1.1" 404 5043 "-" "Mozi ... show more 194.180.232.32 - - [13/May/2026:10:23:28 +0200] "GET /wp-config.php.bak HTTP/1.1" 404 5043 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Web App Attack
Anonymous	2026-05-04 08:11:39 (1 month ago)	194.180.232.32 - - [04/May/2026:16:11:38 +0800] "GET /wp-config.php.orig HTTP/1.1" 301 - "-" "Mozill ... show more 194.180.232.32 - - [04/May/2026:16:11:38 +0800] "GET /wp-config.php.orig HTTP/1.1" 301 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
Anonymous	2026-02-20 03:06:21 (3 months ago)	GlobalProtect Password Spraying	Brute-Force
Anonymous	2026-01-20 05:19:09 (4 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2026.01.20 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2026.01.20 is noted in report timestamp show less	Hacking Brute-Force
🇨🇦 wil.com	2025-11-29 16:00:33 (6 months ago)	GlobalProtect login attempts with user fhkll.	VPN IP Brute-Force
🇮🇩 Burayot	2025-11-09 19:42:41 (6 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 194.180.232.32 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 194.180.232.32 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.116

🇲🇾 47.254.242.172

🇬🇧 35.203.211.65

🇨🇳 223.93.164.218

🇰🇷 218.52.254.90

🇺🇸 205.210.31.110

🇹🇼 198.235.24.100

🇷🇼 197.243.14.52

🇺🇸 173.255.212.137

🇻🇺 138.226.239.10

🇻🇳 123.16.119.38

🇨🇳 120.198.61.146

🇨🇬 102.141.53.174

🇸🇬 101.47.158.56

🇮🇹 83.224.159.245

🇩🇪 69.5.169.47

🇺🇸 67.205.189.163

🇺🇸 67.205.159.167

🇮🇳 64.227.136.45

🇨🇳 42.180.54.76