JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.132.198.27

91.132.198.27 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 24%: ?

24%

ISP	TrafficTransitSolution LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS43444
Domain Name	traffictransitsolution.us
Country	🇺🇸 United States of America
City	SeaTac, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.132.198.27

Whois 91.132.198.27

IP Abuse Reports for 91.132.198.27:

This IP address has been reported a total of 12 times from 8 distinct sources. 91.132.198.27 was first reported on December 10th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 Burayot	2026-06-26 05:30:55 (2 days ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 91.132.198.27 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 91.132.198.27 (US/United States/-): 2 in the last 3600 secs show less	Web App Attack
🇬🇧 Oakley	2026-06-07 17:02:16 (2 weeks ago)	(mod_security) mod_security (id:900177) triggered by 91.132.198.27 (US/United States/-): 5 in the la ... show more (mod_security) mod_security (id:900177) triggered by 91.132.198.27 (US/United States/-): 5 in the last 900 secs show less	Web App Attack Hacking
🇦🇺 MAGIC	2026-05-30 02:17:21 (4 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-21 16:04:14 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 91.132.198.27 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 91.132.198.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 12:04:10.104328 2026] [security2:error] [pid 24108:tid 24108] [client 91.132.198.27:46753] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.21-0322.dynamic-therapy-mn.com"] [uri "/wp-config.php.save"] [unique_id "ag8s-vSLnok7cxXfI_3p1gAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 20:42:15 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 91.132.198.27 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 91.132.198.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 16:42:11.577106 2026] [security2:error] [pid 4340:tid 4352] [client 91.132.198.27:49507] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "property-management.company"] [uri "/wp-config.php.orig"] [unique_id "ag4co2ypN9svpit-8HPKLgAAAIo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 20:03:17 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 91.132.198.27 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 91.132.198.27 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 16:03:10.807293 2026] [security2:error] [pid 25796:tid 25796] [client 91.132.198.27:60853] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.dpcfab.com"] [uri "/wp-config.php.orig"] [unique_id "ag4TfvO--IhSlO2NYRw8ugAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Tha_14	2026-05-17 09:23:56 (1 month ago)	Multiple erroneous requests	Web App Attack
🇮🇹 ciccio diddo	2026-04-15 06:11:24 (2 months ago)	CMS/WP Exploit multiple 404 port:Tcp/80,443	Brute-Force Web App Attack
🇫🇷 tilellit.pro	2026-02-12 09:14:05 (4 months ago)	Fail2Ban banned 91.132.198.27 for security violations in jail wp-armour. Log: 2026/02/12 09:14:04 [e ... show more Fail2Ban banned 91.132.198.27 for security violations in jail wp-armour. Log: 2026/02/12 09:14:04 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 91.132.198.27 \| Target: wplogin" , client: 91.132.198.27, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 tilellit.pro	2026-02-12 00:16:45 (4 months ago)	Fail2Ban banned 91.132.198.27 for security violations in jail wp-armour. Log: 2026/02/12 00:16:45 [e ... show more Fail2Ban banned 91.132.198.27 for security violations in jail wp-armour. Log: 2026/02/12 00:16:45 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 91.132.198.27 \| Target: wplogin" , client: 91.132.198.27, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 tilellit.pro	2026-02-06 04:30:24 (4 months ago)	Fail2Ban banned 91.132.198.27 for security violations in jail wp-armour. Log: 2026/02/06 04:30:24 [e ... show more Fail2Ban banned 91.132.198.27 for security violations in jail wp-armour. Log: 2026/02/06 04:30:24 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 91.132.198.27 \| Target: wplogin" , client: 91.132.198.27, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-12-10 14:34:51 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 206.221.176.60

🇳🇱 93.123.109.105

🇬🇧 35.203.210.29

🇧🇪 34.53.242.126

🇳🇴 20.100.178.199

🇹🇼 198.235.24.87

🇷🇺 95.108.213.5

🇯🇵 92.113.142.203

🇭🇰 46.247.61.252

🇺🇸 20.65.136.87

🇷🇴 2.57.121.112

🇺🇸 173.255.223.149

🇺🇸 162.216.150.40

🇹🇭 147.50.103.212

🇺🇸 134.122.115.47

🇨🇳 123.57.51.183

🇺🇸 66.132.186.142

🇺🇸 64.62.156.217

🇺🇸 18.189.74.1

🇺🇸 216.180.246.177