JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 93.180.222.223

93.180.222.223 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 39%: ?

39%

ISP	Horizon Scope Mobile Telecom WLL
Usage Type	Fixed Line ISP
ASN	AS211908
Domain Name	horizonscope.com
Country	🇮🇶 Iraq
City	Basrah, Basra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 93.180.222.223

Whois 93.180.222.223

IP Abuse Reports for 93.180.222.223:

This IP address has been reported a total of 24 times from 19 distinct sources. 93.180.222.223 was first reported on February 5th 2025, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 SOC PR	2026-06-03 09:34:02 (23 hours ago)	IPS: RCE attempt via web shell endpoint with JAWS malware dropper. Attempt to download and execute J ... show more IPS: RCE attempt via web shell endpoint with JAWS malware dropper. Attempt to download and execute JAWS botnet payload. User-Agent: terrabot-owned-you. show less	Web App Attack
🇨🇭 ALPHANET	2026-05-25 08:46:04 (1 week ago)	Botnet or web spider not respecting robots.txt	DDoS Attack Exploited Host
Anonymous	2026-05-23 06:46:25 (1 week ago)	Unauthorized connection to Telnet port 23	Port Scan
Anonymous	2026-05-21 18:35:15 (1 week ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-05-21 18:20:15 (1 week ago)	tcp/23	Port Scan
🇬🇧 PeravixGroup	2026-05-21 18:04:43 (1 week ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
Anonymous	2026-05-06 21:27:10 (4 weeks ago)	Unauthorized connection attempt on Port 2323	Port Scan Hacking Exploited Host
Anonymous	2026-04-17 22:12:07 (1 month ago)	Automated bot traffic — residential proxy, fake browser fingerprint. UA="Mozilla/5.0 (Windows NT 10. ... show more Automated bot traffic — residential proxy, fake browser fingerprint. UA="Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" show less	Bad Web Bot Web App Attack
🇸🇪 vaia.cloud	2026-04-17 00:15:03 (1 month ago)	trying wp-login.php/xmlrpc.php 38 times in 1 minutes	Brute-Force Web App Attack
🇩🇪 bescared	2026-03-10 01:03:00 (2 months ago)	Malicious path pattern detected.	Bad Web Bot Web App Attack
🇺🇸 matt	2026-03-04 02:10:02 (3 months ago)	DDOS attack with query parameters attempting to overload WordPress site.	DDoS Attack
🇺🇸 TPI-Abuse	2026-03-03 17:52:44 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 93.180.222.223 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 93.180.222.223 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 03 12:52:39.233185 2026] [security2:error] [pid 7291:tid 7316] [client 93.180.222.223:60292] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|daydreambeliever.us\|F\|2"] [data ".zingerpropeller.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "daydreambeliever.us"] [uri "/DOCUME~1/rcam/LOCALS~1/Temp/FrontPageTempDir/www.zingerpropeller.com"] [unique_id "aacf57sLXxuiuUn9ZLQ2qQAAAFc"], referer: http://daydreambeliever.us/ show less	Brute-Force Bad Web Bot Web App Attack
🇭🇰 PingMeMaybe	2026-01-10 19:09:47 (4 months ago)	Blocked by UFW on hk [23/tcp] Source port: 60362 TTL: 45 Packet length: 60 TOS: 0x00 This report wa ... show more Blocked by UFW on hk [23/tcp] Source port: 60362 TTL: 45 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan IoT Targeted
🇨🇭 ALPHANET	2025-12-17 03:40:02 (5 months ago)	Botnet or web spider not respecting robots.txt	DDoS Attack Exploited Host
🇫🇷 Sklurk	2025-12-10 13:49:45 (5 months ago)	Web App Attack	Web App Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.198

🇺🇸 195.184.76.62

🇳🇱 192.42.116.103

🇵🇪 190.119.63.98

🇨🇴 179.33.186.150

🇺🇸 162.216.150.66

🇺🇸 147.185.132.200

🇩🇪 142.93.105.218

🇫🇮 77.105.161.120

🇺🇸 50.249.199.198

🇬🇧 35.203.210.194

🇬🇧 35.203.210.184

🇯🇵 8.216.8.217

🇺🇸 216.25.89.152

🇬🇧 194.50.235.140

🇷🇴 193.29.13.247

🇧🇷 187.107.88.97

🇨🇳 183.227.4.142

🇳🇱 176.65.148.29

🇭🇰 165.154.41.50