JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 93.177.94.198

93.177.94.198 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 3%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 93.177.94.198

Whois 93.177.94.198

IP Abuse Reports for 93.177.94.198:

This IP address has been reported a total of 6 times from 4 distinct sources. 93.177.94.198 was first reported on August 20th 2025, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 JimArchon72	2026-06-18 18:40:03 (5 days ago)	2026/06/18 18:38:18 "GET /wp-login.php?action=register HTTP/1.1"	Web App Attack
🇺🇸 TPI-Abuse	2025-10-23 23:21:32 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 93.177.94.198 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 93.177.94.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 23 19:21:25.614214 2025] [security2:error] [pid 554:tid 554] [client 93.177.94.198:42591] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.genesis-castle.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.genesis-castle.com"] [uri "/totosupreme/"] [unique_id "aPq4dYXemwY-sNCvRQOdGwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-11 00:43:14 (9 months ago)	(mod_security) mod_security (id:210350) triggered by 93.177.94.198 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 93.177.94.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 10 20:43:10.428758 2025] [security2:error] [pid 9245:tid 9245] [client 93.177.94.198:56043] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|surrenderhouse.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "surrenderhouse.com"] [uri "/contact.html"] [unique_id "aMIbHglt7AaDBy9JB1fI-QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-21 16:46:47 (10 months ago)	(mod_security) mod_security (id:210831) triggered by 93.177.94.198 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 93.177.94.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Aug 21 12:46:39.756952 2025] [security2:error] [pid 6536:tid 6536] [client 93.177.94.198:43353] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|backstore.com\|F\|4"] [data "a href="] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "backstore.com"] [uri "/webalizer/"] [unique_id "aKdNbybYUdQHmq9eDmQfrwAAACI"], referer: http://backstore.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-08-21 06:19:25 (10 months ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
🇳🇱 exxos	2025-08-20 05:05:40 (10 months ago)	Attacks with Bad user agents	Hacking

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 155.103.69.40

🇰🇷 121.155.163.79

🇧🇩 114.130.85.36

🇮🇳 103.93.114.51

🇳🇱 64.225.66.10

🇳🇱 45.148.10.151

🇬🇧 35.203.211.212

🇵🇭 27.110.166.67

🇺🇸 20.168.122.17

🇫🇷 2001:41d0:33d:9200::409

🇺🇸 216.25.89.125

🇺🇿 213.230.93.127

🇵🇹 185.182.21.100

🇳🇱 176.65.148.120

🇹🇼 165.154.227.158

🇨🇩 102.206.241.111

🇭🇰 101.36.121.72

🇺🇸 91.230.168.207

🇱🇻 81.30.98.62

🇩🇪 69.5.169.169