JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 93.177.94.211

93.177.94.211 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 93.177.94.211

Whois 93.177.94.211

IP Abuse Reports for 93.177.94.211:

This IP address has been reported a total of 11 times from 5 distinct sources. 93.177.94.211 was first reported on October 13th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ps-center	2026-03-04 14:04:03 (3 months ago)	ABV: Web Attack GET /wp-login.php	Web Spam Hacking Bad Web Bot Web App Attack
Anonymous	2026-02-22 22:06:19 (3 months ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 92%, Country: US, Attack patterns: Auto ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 92%, Country: US, Attack patterns: Automated scanning show less	Bad Web Bot Web App Attack
Anonymous	2026-02-22 19:56:39 (3 months ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-22 15:19:10 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 10:19:04.250555 2026] [security2:error] [pid 30331:tid 30331] [client 93.177.94.211:42875] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|daveslawncare.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "daveslawncare.com"] [uri "/mailto:[email protected]"] [unique_id "aZseaN5vcFJzHKtNeOki8wAAAA8"], referer: http://www.daveslawncare.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-22 01:09:03 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 21 20:08:54.655603 2026] [security2:error] [pid 1429:tid 1446] [client 93.177.94.211:31019] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|boxwoodgarden.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "boxwoodgarden.com"] [uri "/mailto:[email protected]"] [unique_id "aZpXJuaMtxnsGCRfAmpkdgAAAI8"], referer: http://boxwoodgarden.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-21 17:40:32 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 21 12:40:28.031473 2026] [security2:error] [pid 22520:tid 22520] [client 93.177.94.211:49473] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mmmetalizing.com\|F\|2"] [data ".rr.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mmmetalizing.com"] [uri "/mailto:[email protected]"] [unique_id "aZnuDG5gkCF8iuj-kx7DngAAAAI"], referer: http://www.mmmetalizing.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-21 17:07:07 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 21 12:07:02.648447 2026] [security2:error] [pid 8657:tid 8657] [client 93.177.94.211:18483] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|melsjukeboxes.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "melsjukeboxes.com"] [uri "/mailto:[email protected]"] [unique_id "aZnmNsPQcNdoQltbsnGGUwAAAAg"], referer: http://www.melsjukeboxes.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-21 00:39:20 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 20 19:39:13.388660 2026] [security2:error] [pid 12211:tid 12211] [client 93.177.94.211:64375] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|fadcometal.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "fadcometal.com"] [uri "/mailto:[email protected]"] [unique_id "aZj-sXsI9_8t4Nra2uYJ-gAAAAo"], referer: http://www.fadcometal.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-24 20:19:43 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 24 15:19:39.579154 2026] [security2:error] [pid 17860:tid 17883] [client 93.177.94.211:60033] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|charlottesvilleclosets.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "charlottesvilleclosets.com"] [uri "/mailto:[email protected]"] [unique_id "aXUpW3dfCwNJ0f-aitCl-QAAAFA"], referer: https://charlottesvilleclosets.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 wil.com	2025-11-15 17:50:48 (6 months ago)	GlobalProtect login attempts with user amelia.	VPN IP Brute-Force
🇺🇸 TPI-Abuse	2025-10-13 00:04:50 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 93.177.94.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Oct 12 20:04:42.504989 2025] [security2:error] [pid 21593:tid 21593] [client 93.177.94.211:38777] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|saratogaequity.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "saratogaequity.com"] [uri "/admin"] [unique_id "aOxCGpg22-gie8itu-zwHAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 182.8.68.134

🇹🇼 114.33.12.13

🇰🇪 197.248.8.33

🇪🇸 85.87.5.30

🇺🇸 72.253.251.3

🇺🇸 66.132.172.180

🇫🇷 62.210.142.173

🇺🇸 34.11.79.150

🇨🇳 218.21.182.228

🇭🇰 199.45.154.150

🇲🇾 183.171.7.160

🇨🇳 182.34.229.161

🇸🇬 159.223.33.252

🇩🇪 79.212.240.25

🇺🇸 54.80.25.3

🇺🇸 47.77.231.77

🇧🇷 45.164.251.67

🇮🇷 45.8.162.15

🇻🇳 27.79.120.174

🇮🇩 2406:da19:776:6e01:3b2e:2e0b:1f57:df1e