JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 92.223.85.64

92.223.85.64 was found in our database!

This IP was reported 185 times. Confidence of Abuse is 0%: ?

ISP	G-Core Labs Customer assignment
Usage Type	Data Center/Web Hosting/Transit
ASN	AS199524
Hostname(s)	free.ds
Domain Name	gcore.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 92.223.85.64

Whois 92.223.85.64

IP Abuse Reports for 92.223.85.64:

This IP address has been reported a total of 185 times from 79 distinct sources. 92.223.85.64 was first reported on July 28th 2021, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2025-07-23 05:45:40 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-07-18 05:06:53 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-07-15 06:28:09 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇮🇩 Burayot	2025-06-04 16:46:13 (1 year ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 92.223.85.64 (SG/Singapore/vpn-gw-p ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 92.223.85.64 (SG/Singapore/vpn-gw-prod-009.sin0-gcl.ff.avast.com): 1 in the last 3600 secs show less	Web App Attack
🇮🇩 penjaga BRIN	2025-06-04 16:16:24 (1 year ago)	nginx-alfa-240	Web App Attack
Anonymous	2025-06-04 15:04:08 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 mawan	2025-06-04 14:39:38 (1 year ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack
🇹🇷 rtbh.com.tr	2024-12-24 20:52:25 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇧🇪 cmbplf	2024-09-24 15:25:56 (1 year ago)	2.161 requests to */xmlrpc.php	Brute-Force Bad Web Bot
Anonymous	2024-08-27 14:45:50 (1 year ago)	[Tue Aug 27 11:45:49.435213 2024] [proxy_fcgi:error] [pid 236407:tid 236407] [client 92.223.85.64:19 ... show more [Tue Aug 27 11:45:49.435213 2024] [proxy_fcgi:error] [pid 236407:tid 236407] [client 92.223.85.64:1956] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
🇪🇸 Gem	2024-07-13 03:28:14 (1 year ago)	Unauthorized web scan.	Web App Attack
Anonymous	2024-07-11 06:59:41 (1 year ago)	Ports: 20,21,25,53,80,110,143,443,465,587,993,995,2077,2078,2079,2080,2082,2083,2086,2087,2095,2096, ... show more Ports: 20,21,25,53,80,110,143,443,465,587,993,995,2077,2078,2079,2080,2082,2083,2086,2087,2095,2096,3306,2195; Direction: 0; Trigger: LF_CUSTOMTRIGGER show less	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-07-11 05:58:58 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 92.223.85.64 (vpn-gw-prod-009.sin0-gcl.ff.avast ... show more (mod_security) mod_security (id:210492) triggered by 92.223.85.64 (vpn-gw-prod-009.sin0-gcl.ff.avast.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 11 01:58:53.583715 2024] [security2:error] [pid 30528:tid 47294023612160] [client 92.223.85.64:15128] [client 92.223.85.64] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "culturallyyours.org"] [uri "/wp-config.php"] [unique_id "Zo90nbU5jSyJi22Ja60JPAAAAgU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-07-11 03:04:19 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-07-10 19:57:17 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 92.223.85.64 (vpn-gw-prod-009.sin0-gcl.ff.avast ... show more (mod_security) mod_security (id:210492) triggered by 92.223.85.64 (vpn-gw-prod-009.sin0-gcl.ff.avast.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 10 15:57:08.994647 2024] [security2:error] [pid 7347] [client 92.223.85.64:6678] [client 92.223.85.64] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "drbolen.com"] [uri "/wp-config.php"] [unique_id "Zo7nlAdhfjcBIfAorjQ8vgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 185 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.53

🇩🇪 213.209.159.56

🇨🇭 209.99.190.200

🇨🇳 180.76.202.69

🇧🇷 168.197.205.20

🇸🇬 138.2.98.41

🇭🇰 101.79.167.192

🇳🇱 195.178.110.30

🇮🇩 180.148.24.118

🇺🇸 172.217.107.156

🇨🇳 120.92.105.170

🇻🇳 103.176.179.183

🇭🇰 8.217.192.50

🇬🇧 193.176.29.16

🇸🇦 87.109.145.25

🇯🇵 54.248.17.61

🇺🇸 44.254.217.77

🇺🇸 32.199.170.134

🇭🇰 199.45.154.179

🇮🇳 182.95.232.18