JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 89.117.27.93

89.117.27.93 was found in our database!

This IP was reported 94 times. Confidence of Abuse is 100%: ?

100%

ISP	IPXO
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	telecentras.lt
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 89.117.27.93

Whois 89.117.27.93

IP Abuse Reports for 89.117.27.93:

This IP address has been reported a total of 94 times from 56 distinct sources. 89.117.27.93 was first reported on June 1st 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Starburst SysOp Team	2026-06-08 07:35:19 (6 days ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-mnz6-1)	Hacking Web App Attack
🇹🇷 baku.hosting	2026-06-08 03:36:36 (6 days ago)	CSF Auto Report: (mod_security) mod_security (id:949110) triggered by 89.117.27.93 (IN/India/-): 5 i ... show more CSF Auto Report: (mod_security) mod_security (id:949110) triggered by 89.117.27.93 (IN/India/-): 5 in the last 3600 secs show less	Brute-Force Web App Attack
🇸🇪 SkyDancer	2026-06-08 03:33:16 (6 days ago)	Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blo ... show more Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blocked by SkyDancer Ai(web-X). show less	Hacking Brute-Force
🇩🇪 4server	2026-06-08 01:35:11 (6 days ago)	[MonJun0803:35:08.7777172026][security2:error][pid457473:tid457511][client89.117.27.93:0]ModSecurity ... show more [MonJun0803:35:08.7777172026][security2:error][pid457473:tid457511][client89.117.27.93:0]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"204\"][id\"390709\"][rev\"30\"][msg\"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely\"][data\"/.env\"][severity\"CRITICAL\"][hostname\"worldgoldfundltd.com\"][uri\"/core/.env\"][unique_id\"aiYcTG73PIFNtALedqaOVgAAABc\"] show less	Port Scan Brute-Force Web App Attack
🇨🇭 Sophie Nina	2026-06-08 00:30:01 (6 days ago)	Automatically blocked by server	Fraud Orders
Anonymous	2026-06-07 20:20:41 (1 week ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇩🇪 big-cloud.nl	2026-06-07 19:28:28 (1 week ago)	Try to access /.env	Web App Attack
🇫🇷 masterguru	2026-06-07 12:02:12 (1 week ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-193)	Hacking Web App Attack
🇬🇧 consul.to	2026-06-07 11:26:39 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 e.fierstra	2026-06-07 08:20:32 (1 week ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇨🇭 TheCoon	2026-06-07 01:00:02 (1 week ago)	Automated: Credential theft attempt - JSON bomb served	Web App Attack Hacking
🇲🇾 Rizzy	2026-06-06 23:36:46 (1 week ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-06 21:39:08 (1 week ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-195)	Hacking Web App Attack
🇸🇬 securejdprop	2026-06-06 20:38:46 (1 week ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(🐾 - 🚨 Network 🕵 sc ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(🐾 - 🚨 Network 🕵 scan 🎩 Nuclei 👨‍💻). Ip 89.117.27.93 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-06 20:38:45.701231579 +0000 UTC show less	Hacking Web App Attack
🇩🇪 FeG Deutschland	2026-06-06 18:41:36 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack

Showing 1 to 15 of 94 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 208.104.193.93

🇸🇬 129.212.237.224

🇱🇰 124.43.13.253

🇧🇷 34.39.145.198

🇵🇰 223.123.46.48

🇺🇸 192.169.233.115

🇧🇷 191.242.55.29

🇨🇳 114.138.96.202

🇿🇦 105.245.161.152

🇷🇴 92.118.39.62

🇧🇬 79.124.49.174

🇷🇺 77.232.137.205

🇺🇸 47.251.123.229

🇺🇸 45.79.207.111

🇮🇳 34.100.199.1

🇮🇳 34.100.143.55

🇺🇸 209.107.195.228

🇪🇨 191.99.67.82

🇦🇷 186.22.245.42

🇮🇳 168.144.95.137