JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 195.66.93.188

195.66.93.188 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 0%: ?

ISP	Load.me sp. z o. o.
Usage Type	Fixed Line ISP
ASN	AS1820
Hostname(s)	188.unassigned.w-net.us
Domain Name	load.me
Country	🇵🇱 Poland
City	Krakow, Lesser Poland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 195.66.93.188

Whois 195.66.93.188

IP Abuse Reports for 195.66.93.188:

This IP address has been reported a total of 38 times from 14 distinct sources. 195.66.93.188 was first reported on September 4th 2024, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 Mcshield.org	2025-12-01 08:45:15 (6 months ago)	GET /.env HTTP/1.1" 403 - "sqlmap/1.8"	Web Spam Port Scan Hacking
🇺🇸 TPI-Abuse	2024-10-11 03:13:03 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 195.66.93.188 (188.unassigned.w-net.us): 1 in t ... show more (mod_security) mod_security (id:210730) triggered by 195.66.93.188 (188.unassigned.w-net.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 10 23:12:57.377823 2024] [security2:error] [pid 4166:tid 4166] [client 195.66.93.188:42762] [client 195.66.93.188] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|otfes.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "otfes.com"] [uri "/mailto:[email protected]"] [unique_id "ZwiXucQQszFZRDCEZ7jOKQAAAAs"], referer: http://otfes.com/mailto:contactus%40otfes.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-10-10 13:49:06 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 195.66.93.188 (188.unassigned.w-net.us): 1 in t ... show more (mod_security) mod_security (id:210730) triggered by 195.66.93.188 (188.unassigned.w-net.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 10 09:48:59.111006 2024] [security2:error] [pid 23869:tid 24078] [client 195.66.93.188:5540] [client 195.66.93.188] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|lavonnesells.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "lavonnesells.com"] [uri "/mailto:[email protected]"] [unique_id "ZwfbS8Qb2Dx4Bq1HCcR_vwAAANU"], referer: http://lavonnesells.com/AboutOldNorthwestLandCoinc.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-10-10 06:01:51 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 195.66.93.188 (188.unassigned.w-net.us): 1 in t ... show more (mod_security) mod_security (id:240335) triggered by 195.66.93.188 (188.unassigned.w-net.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 10 02:01:46.873057 2024] [security2:error] [pid 21448:tid 21448] [client 195.66.93.188:36818] [client 195.66.93.188] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 213.152.187.225 (+1 hits since last alert)\|dandksupply.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "dandksupply.com"] [uri "/xmlrpc.php"] [unique_id "ZwdtymobTRrtpohOnzoBvQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 nyuuzyou	2024-10-08 12:10:56 (1 year ago)	Intensive scraping: /web?s=%22Sad%20Raven%27s%20Guestbook%22&country=mt-mt&scraper=ddg. User-Agent: ... show more Intensive scraping: /web?s=%22Sad%20Raven%27s%20Guestbook%22&country=mt-mt&scraper=ddg. User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68. show less	Bad Web Bot
🇫🇮 bittiguru.fi	2024-10-08 05:26:40 (1 year ago)	195.66.93.188 - [08/Oct/2024:08:26:39 +0300] "POST /xmlrpc.php HTTP/1.1" 200 260 "-" "Mozilla/5.0 (X ... show more 195.66.93.188 - [08/Oct/2024:08:26:39 +0300] "POST /xmlrpc.php HTTP/1.1" 200 260 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.6613.138 Safari/537.36" "1.84" 195.66.93.188 - [08/Oct/2024:08:26:40 +0300] "POST /xmlrpc.php HTTP/1.1" 200 260 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.6613.138 Safari/537.36" "1.84" ... show less	Hacking Brute-Force Web App Attack
🇲🇹 Malta	2024-10-07 08:15:39 (1 year ago)	195.66.93.188 - - [07/Oct/2024:10:15:39 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux ... show more 195.66.93.188 - - [07/Oct/2024:10:15:39 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.6613.138 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack
Anonymous	2024-10-06 04:41:00 (1 year ago)	notenschluessel-fulda.de 195.66.93.188 [06/Oct/2024:06:40:58 +0200] "POST /xmlrpc.php HTTP/1.1" 200 ... show more notenschluessel-fulda.de 195.66.93.188 [06/Oct/2024:06:40:58 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4350 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.6613.138 Safari/537.36" notenschluessel-fulda.de 195.66.93.188 [06/Oct/2024:06:40:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4350 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.6613.138 Safari/537.36" show less	Web App Attack
🇵🇱 sefinek.net	2024-10-05 21:49:43 (1 year ago)	Triggered Cloudflare WAF (firewallCustom) from PL. Action taken: CHALLENGE ASN: 1820 (WNET) Protocol ... show more Triggered Cloudflare WAF (firewallCustom) from PL. Action taken: CHALLENGE ASN: 1820 (WNET) Protocol: HTTP/1.1 (method GET) Domain: sefinek.net Endpoint: /genshin-stella-mod Timestamp: 2024-10-05T12:40:15Z Ray ID: 8cdd7aabcc729226 Rule ID: cc5e7a6277d447eca9c1818934ba65c8 UA: Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 Report generated by Node-Cloudflare-WAF-AbuseIPDB https://github.com/sefinek24/Node-Cloudflare-WAF-AbuseIPDB show less	Bad Web Bot
🇲🇹 Malta	2024-10-05 12:12:41 (1 year ago)	195.66.93.188 - - [05/Oct/2024:14:12:40 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows N ... show more 195.66.93.188 - - [05/Oct/2024:14:12:40 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" show less	Hacking Web App Attack
🇲🇹 Malta	2024-10-03 15:47:00 (1 year ago)	195.66.93.188 - - [03/Oct/2024:17:47:00 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux ... show more 195.66.93.188 - - [03/Oct/2024:17:47:00 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.6613.138 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack
🇩🇪 Ba-Yu	2024-10-02 23:53:34 (1 year ago)	WP-xmlrpc exploit	Web Spam Blog Spam Hacking Exploited Host Web App Attack
🇩🇪 ger-stg-sifi1	2024-10-01 17:44:41 (1 year ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇩🇪 lewisakura	2024-10-01 08:34:34 (1 year ago)	195.66.93.188 - - [01/Oct/2024:08:31:59 +0000] "POST /wp-login.php HTTP/1.1" 404 156 "-" "Mozilla/5. ... show more 195.66.93.188 - - [01/Oct/2024:08:31:59 +0000] "POST /wp-login.php HTTP/1.1" 404 156 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 195.66.93.188 - - [01/Oct/2024:08:34:33 +0000] "POST /wp-login.php HTTP/1.1" 404 156 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-09-30 19:56:04 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 195.66.93.188 (188.unassigned.w-net.us): 1 in t ... show more (mod_security) mod_security (id:240335) triggered by 195.66.93.188 (188.unassigned.w-net.us): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 30 15:55:57.003918 2024] [security2:error] [pid 24495:tid 24495] [client 195.66.93.188:41530] [client 195.66.93.188] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 213.152.161.240 (+1 hits since last alert)\|honweneedthis.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "honweneedthis.com"] [uri "/xmlrpc.php"] [unique_id "ZvsCTapGEqWYLRayx-YfqgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.245

🇨🇳 139.196.54.61

🇯🇵 168.138.213.115

🇳🇱 77.83.39.14

🇦🇺 74.91.200.217

🇺🇸 2607:f8b0:4002:c02::12e

🇺🇸 2604:a880:400:d1:0:4:9e91:e001

🇸🇬 2404:6800:4003:c20::12a

🇰🇷 218.149.228.143

🇺🇸 205.210.31.74

🇨🇳 183.227.103.109

🇦🇷 181.46.245.47

🇺🇸 162.216.150.170

🇫🇮 147.185.133.65

🇷🇴 141.98.83.240

🇨🇳 112.38.109.72

🇳🇱 91.92.40.202

🇬🇧 85.203.46.90

🇨🇳 47.97.56.233

🇨🇳 36.57.115.43