JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.142.218.1

91.142.218.1 was found in our database!

This IP was reported 57 times. Confidence of Abuse is 0%: ?

ISP	AXARNET COMUNICACIONES, S.L.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS50926
Hostname(s)	ns1.ev25.com
Domain Name	axarnet.es
Country	🇪🇸 Spain
City	Valencia, Valencia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.142.218.1

Whois 91.142.218.1

IP Abuse Reports for 91.142.218.1:

This IP address has been reported a total of 57 times from 28 distinct sources. 91.142.218.1 was first reported on February 23rd 2024, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 rtbh.com.tr	2025-07-30 20:07:57 (10 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 antlac1	2025-07-30 03:14:35 (10 months ago)	crowdsecurity/http-probing	Brute-Force Web App Attack
🇹🇷 rtbh.com.tr	2025-07-29 20:07:56 (10 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 mnsf	2025-07-28 23:05:09 (10 months ago)	Too many Status 40X (12) Scanning/Probing (12)	Brute-Force Web App Attack
🇩🇪 SpaceHost-Server	2025-07-28 22:36:06 (10 months ago)		Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-07-28 22:25:52 (10 months ago)	(mod_security) mod_security (id:225170) triggered by 91.142.218.1 (ns1.ev25.com): 1 in the last 300 ... show more (mod_security) mod_security (id:225170) triggered by 91.142.218.1 (ns1.ev25.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 28 18:25:46.346305 2025] [security2:error] [pid 20362:tid 20362] [client 91.142.218.1:50864] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|rkhindustries.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rkhindustries.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aIf46j-ohwzv3Y5m6d27JQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-28 19:36:33 (10 months ago)	(mod_security) mod_security (id:225170) triggered by 91.142.218.1 (ns1.ev25.com): 1 in the last 300 ... show more (mod_security) mod_security (id:225170) triggered by 91.142.218.1 (ns1.ev25.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 28 15:36:27.342974 2025] [security2:error] [pid 20012:tid 20014] [client 91.142.218.1:39798] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|aafm.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "aafm.us"] [uri "/wp-json/wp/v2/users"] [unique_id "aIfRO0_5wodqchWcbzMJRwAAAEA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-07-28 19:22:35 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇩🇪 stinpriza	2025-07-28 19:19:54 (10 months ago)	WP Authentication attempt for unknown user	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-06-17 17:56:43 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 91.142.218.1 (ns1.ev25.com): 1 in the last 300 ... show more (mod_security) mod_security (id:225170) triggered by 91.142.218.1 (ns1.ev25.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 17 13:56:38.986833 2025] [security2:error] [pid 2305417:tid 2305417] [client 91.142.218.1:36282] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.bb103.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bb103.us"] [uri "/wp-json/wp/v2/users"] [unique_id "aFGsVqSJKAmgocqghBDn-AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-16 21:25:22 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 91.142.218.1 (ns1.ev25.com): 1 in the last 300 ... show more (mod_security) mod_security (id:225170) triggered by 91.142.218.1 (ns1.ev25.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 16 17:25:17.081217 2025] [security2:error] [pid 2610942:tid 2610942] [client 91.142.218.1:39382] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.turnofthecenturyfinearts.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.turnofthecenturyfinearts.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aFCLvVWJk5eno73KEFWqNgAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-15 00:40:59 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 91.142.218.1 (ns1.ev25.com): 1 in the last 300 ... show more (mod_security) mod_security (id:225170) triggered by 91.142.218.1 (ns1.ev25.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 14 20:40:54.564585 2025] [security2:error] [pid 1911664:tid 1911664] [client 91.142.218.1:59914] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.doreenkimura.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.doreenkimura.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aE4Wlvx7BFrfs14i9PV8lAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-03 11:56:43 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇪🇸 librebit	2025-03-17 08:23:52 (1 year ago)	Brute force	Brute-Force
🇩🇰 wnbhosting.dk	2025-01-24 02:13:50 (1 year ago)	WP xmlrpc [2025-01-24T03:13:50+01:00]	Hacking Web App Attack

Showing 1 to 15 of 57 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.242.226.114

🇫🇮 147.185.133.5

🇳🇱 89.46.223.188

🇺🇸 72.195.34.59

🇨🇳 183.6.115.88

🇯🇵 58.98.197.137

🇺🇸 45.154.153.15

🇳🇱 45.148.10.240

🇺🇸 44.121.94.218

🇺🇸 44.93.217.30

🇧🇪 198.235.24.174

🇨🇳 182.204.158.35

🇸🇬 172.253.211.81

🇫🇮 147.185.133.47

🇺🇸 128.8.124.68

🇮🇳 103.250.149.148

🇧🇩 103.78.255.133

🇳🇱 89.46.223.225

🇺🇸 44.248.159.60

🇺🇸 34.194.226.74