JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.61.41.93

194.61.41.93 was found in our database!

This IP was reported 47 times. Confidence of Abuse is 22%: ?

22%

ISP	VPN Consumer Manila, Philippines
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	vpnconsumer.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.61.41.93

Whois 194.61.41.93

IP Abuse Reports for 194.61.41.93:

This IP address has been reported a total of 47 times from 31 distinct sources. 194.61.41.93 was first reported on March 9th 2023, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-06-21 04:58:46 (1 hour ago)	Multiple WAF Violations	Web App Attack
🇬🇧 consul.to	2026-06-20 23:16:41 (6 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 Site.eu	2026-06-18 21:34:25 (2 days ago)	Excessive 404/403 errors	Brute-Force
🇫🇷 dynamix	2026-03-02 22:43:53 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇦 URAN Publishing Service	2026-03-02 14:38:12 (3 months ago)	194.61.41.93 - - [02/Mar/2026:16:38:11 +0200] "GET /wp-content/uploads/ HTTP/1.1" 404 275 "-" "Mozil ... show more 194.61.41.93 - - [02/Mar/2026:16:38:11 +0200] "GET /wp-content/uploads/ HTTP/1.1" 404 275 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.61.41.93 - - [02/Mar/2026:16:38:12 +0200] "GET /wp-content/themes/tflow/ HTTP/1.1" 404 275 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" ... show less	Web App Attack
🇳🇱 Site.eu	2026-03-02 12:22:18 (3 months ago)	Excessive 404/403 errors	Brute-Force
🇫🇷 dynamix	2026-03-01 14:34:49 (3 months ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-02-24 11:54:03 (3 months ago)	Bot / scanning and/or hacking attempts: GET /administrator/ HTTP/1.1, GET /Admin/uploads/ HTTP/1.1, ... show more Bot / scanning and/or hacking attempts: GET /administrator/ HTTP/1.1, GET /Admin/uploads/ HTTP/1.1, GET /wp-admin/css/colors/ HTTP/1.1, GET /admin/images/slider/ HTTP/1.1, GET /wp-content/mu-plugins/ HTTP/1.1, GET /admin/tmp/ HTTP/1.1, GET /admin/controller/extension/extension/ HTTP/1.1, GET /wordpress/wp-content/uploads/ HTTP/1.1, GET /wp-admin/js/widget/ HTTP/1.1, GET /wp-admin/images/ HTTP/1.1, GET /admin/editor/ HTTP/1.1, GET /wp-admin/js/ HTTP/1.1, GET /upload/image/ HTTP/1.1, GET /ALFA_DATA/alfacgiapi/ HTTP/1.1, GET /wordpress/wp-includes/ HTTP/1.1, GET /assets/ HTTP/1.1, GET /wp-content/plugins/elementor/ HTTP/1.1, GET /sites/default/files/ HTTP/1.1, GET /wp-includes/css/ HTTP/1.1, GET /admin/uploads/ HTTP/1.1, GET /ALFA_DATA/ HTTP/1.1, GET /blog/wp-includes/ HTTP/1.1, GET /admin/uploads/images/ HTTP/1.1 show less	Hacking Web App Attack
Anonymous	2026-02-24 10:28:35 (3 months ago)	[redacted] 194.61.41.93 - - [24/Feb/2026:11:28:30 +0100] "GET /wp-admin/js/widgets/ HTTP/1.1" 404 23 ... show more [redacted] 194.61.41.93 - - [24/Feb/2026:11:28:30 +0100] "GET /wp-admin/js/widgets/ HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" [redacted] 194.61.41.93 - - [24/Feb/2026:11:28:30 +0100] "GET /wp-content/plugins/wp-file-manager/admin/ HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" [redacted] 194.61.41.93 - - [24/Feb/2026:11:28:30 +0100] "GET /wp-admin/js/widget/ HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" [redacted] 194.61.41.93 - - [24/Feb/2026:11:28:32 +0100] "GET /wp-admin/ HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" [redacted] 194.61.41.93 - - [24/Feb/2026:11:28:32 +0100] "GET /wordpress/wp-admin/includes HTTP/1.1" 404 236 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident ... show less	Hacking Web App Attack
🇧🇪 cmbplf	2026-02-11 09:29:39 (4 months ago)	264 requests with url.path /.well-known/acme-challenge/.php	Brute-Force Bad Web Bot
🇦🇺 aranguren.org	2026-02-11 07:21:40 (4 months ago)	194.61.41.93 - - [11/Feb/2026:18:21:37 +1100] "GET /xmrlpc.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Ma ... show more 194.61.41.93 - - [11/Feb/2026:18:21:37 +1100] "GET /xmrlpc.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.61.41.93 - - [11/Feb/2026:18:21:37 +1100] "GET /ae.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.61.41.93 - - [11/Feb/2026:18:21:37 +1100] "GET /moon.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.61.41.93 - - [11/Feb/2026:18:21:37 +1100] "GET /blog.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.61.41.93 - - [11/Feb/2026:18:21:37 +1100] "GET /themes.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.61.41.93 - - [11/Feb/2 ... show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-10 21:54:58 (4 months ago)	(mod_security) mod_security (id:240000) triggered by 194.61.41.93 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240000) triggered by 194.61.41.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 16:45:46.102898 2026] [security2:error] [pid 14510:tid 14510] [client 194.61.41.93:62405] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|reciprodyne.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "reciprodyne.com"] [uri "/images/stories/themes.php"] [unique_id "aYunCqaOy3OHra7-WoMy2gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-08 09:10:02 (4 months ago)	suspicious request in access.log	Web App Attack
🇮🇩 RasyiidWho	2025-10-27 15:10:12 (7 months ago)	ip112.20 . 194.61.41.93 - - [27/Oct/2025:22:08:22 +0700] "GET //wp-admin/fmadmin.php HTTP/1.1" 404 1 ... show more ip112.20 . 194.61.41.93 - - [27/Oct/2025:22:08:22 +0700] "GET //wp-admin/fmadmin.php HTTP/1.1" 404 146 "-" "Go-http-client/1.1" ... show less	DDoS Attack Port Scan Brute-Force Bad Web Bot Web App Attack SSH
Anonymous	2025-10-21 16:37:41 (7 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 15 of 47 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇮 176.65.134.34

🇯🇵 172.104.93.159

🇮🇩 36.92.41.115

🇨🇳 180.153.236.48

🇨🇳 115.190.160.80

🇨🇳 112.86.225.114

🇫🇷 85.217.140.51

🇬🇧 45.198.224.46

🇬🇧 2a06:4880:c000::dc

🇫🇮 178.20.210.208

🇳🇱 176.65.149.180

🇷🇴 141.98.83.240

🇷🇴 94.156.152.50

🇷🇺 90.151.171.109

🇩🇪 69.5.169.196

🇳🇱 45.148.10.157

🇺🇸 17.253.31.132

🇺🇸 2607:f8b0:4001:c32::128

🇺🇸 216.25.89.131

🇷🇺 213.180.203.179