JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.243.52.135

194.243.52.135 was found in our database!

This IP was reported 64 times. Confidence of Abuse is 24%: ?

24%

ISP	WIN S.R.L.
Usage Type	Fixed Line ISP
ASN	AS3269
Hostname(s)	virgo.wineuropa.it aries-web5.wineuropa.it
Domain Name	win.be
Country	🇮🇹 Italy
City	Prato, Tuscany

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.243.52.135

Whois 194.243.52.135

IP Abuse Reports for 194.243.52.135:

This IP address has been reported a total of 64 times from 35 distinct sources. 194.243.52.135 was first reported on April 21st 2023, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-21 10:41:19 (2 hours ago)	(mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 06:41:12.005796 2026] [security2:error] [pid 9704:tid 9704] [client 194.243.52.135:56080] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.stop902.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.stop902.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aje_x7hxnyY962-fOgfUogAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 08:17:19 (5 hours ago)	(mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 04:17:14.600655 2026] [security2:error] [pid 26316:tid 26316] [client 194.243.52.135:56336] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.calvaryadminservices.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.calvaryadminservices.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajeeCkKZIYPccHChuqMjoQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 03:29:53 (9 hours ago)	(mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 23:29:46.680355 2026] [security2:error] [pid 26803:tid 26803] [client 194.243.52.135:35428] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|drgtek.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "drgtek.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajdaqucS05QT0fLhzhcX8AAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 00:18:58 (12 hours ago)	(mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 20:18:53.232017 2026] [security2:error] [pid 10098:tid 10098] [client 194.243.52.135:38680] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.mundanestudies.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.mundanestudies.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajct7QzhvYpfM110HWPA9gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 22:35:24 (14 hours ago)	(mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 18:35:19.222646 2026] [security2:error] [pid 20164:tid 20164] [client 194.243.52.135:45286] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.texascottagebakers.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.texascottagebakers.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajcVp2x8IbjNphp1pEhDgwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-19 22:28:15 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 19 18:28:08.867979 2026] [security2:error] [pid 4292:tid 4292] [client 194.243.52.135:47894] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.fatcaverecords.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.fatcaverecords.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agzj-AA_ndXThKQwlZz91AAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 bigwavedave	2026-05-19 03:45:01 (1 month ago)	Wordpress Attack	Web App Attack
🇫🇷 dynamix	2026-05-19 01:43:31 (1 month ago)	Multiple WAF Violations	Web App Attack
🇮🇹 VHosting	2026-05-19 01:40:04 (1 month ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-18 18:54:25 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 14:54:18.632682 2026] [security2:error] [pid 28524:tid 28524] [client 194.243.52.135:56728] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.jacquelineperriam.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.jacquelineperriam.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agtgWrdXK72lJQPg9rIpawAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-17 19:25:15 (1 month ago)	Failed Wordpress Logins	Web App Attack
🇺🇸 TPI-Abuse	2026-05-17 18:01:31 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 14:01:26.665494 2026] [security2:error] [pid 4024:tid 4024] [client 194.243.52.135:47144] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|eatcakecup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "eatcakecup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agoCds14NxrfIy-1AURswAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-17 10:13:15 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 194.243.52.135 (aries-web5.wineuropa.it): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 194.243.52.135 (aries-web5.wineuropa.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 06:13:09.677410 2026] [security2:error] [pid 26146:tid 26146] [client 194.243.52.135:60682] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.bonvivantorganics.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bonvivantorganics.com"] [uri "/wp/wp-json/wp/v2/users"] [unique_id "agmUtT3FpfG93EcxvXE7BQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-16 19:03:53 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 194.243.52.135 (virgo.wineuropa.it): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 16 15:03:49.631154 2026] [security2:error] [pid 18942:tid 18942] [client 194.243.52.135:56764] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.rochesterhistorical.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.rochesterhistorical.org"] [uri "/wp-json/wp/v2/users"] [unique_id "agi_lbbN8_nS3cQPX00Y-wAAAE0"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Joe-Mark	2025-02-14 03:15:50 (1 year ago)	RecipientDoesNotExist (From . [email protected]) Listed on spamcop ... show more RecipientDoesNotExist (From . [email protected]) Listed on spamcop (53) show less	Email Spam

Showing 1 to 15 of 64 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 167.86.93.178

🇰🇷 112.217.188.122

🇦🇹 109.70.100.9

🇺🇸 107.152.44.215

🇺🇸 85.208.96.211

🇧🇷 45.205.1.240

🇹🇼 35.229.179.231

🇬🇧 35.203.211.4

🇺🇸 20.9.87.223

🇺🇸 207.241.173.104

🇵🇱 194.180.49.70

🇨🇭 179.43.146.227

🇮🇳 172.253.229.219

🇺🇸 166.157.77.115

🇱🇹 81.30.98.144

🇷🇺 78.36.7.89

🇭🇰 36.255.220.145

🇳🇱 176.65.139.242

🇫🇮 147.185.133.75

🇺🇸 143.42.1.128