JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.230.121.134

91.230.121.134 was found in our database!

This IP was reported 56 times. Confidence of Abuse is 100%: ?

100%

ISP	OWL PROTECT LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS6698
Hostname(s)	pizzaahte.com
Domain Name	owlprotect.net
Country	🇺🇦 Ukraine
City	Kyiv, Kyiv City

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.230.121.134

Whois 91.230.121.134

IP Abuse Reports for 91.230.121.134:

This IP address has been reported a total of 56 times from 38 distinct sources. 91.230.121.134 was first reported on June 10th 2026, and the most recent report was 8 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 XICTRON	2026-06-17 00:40:04 (8 minutes ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack
🇩🇪 ecs.ge	2026-06-16 23:47:56 (1 hour ago)	Automatic Fail2Ban report from jail plesk-modsecurity: multiple matching events detected.	Web App Attack Hacking
🇩🇪 ut-addicted.com	2026-06-16 23:44:12 (1 hour ago)	\[17/Jun/2026:01:01:58 +0200\] ajHV5vBApzMVrDc54Ifr6QAAANE 91.230.121.134 24800 78.46.187.162 80 \[1 ... show more \[17/Jun/2026:01:01:58 +0200\] ajHV5vBApzMVrDc54Ifr6QAAANE 91.230.121.134 24800 78.46.187.162 80 \[17/Jun/2026:01:02:02 +0200\] ajHV6gVGBhf9ukL7gGKQ3gAAAJM 91.230.121.134 43040 78.46.187.162 80 \[17/Jun/2026:01:44:10 +0200\] ajHfyvBApzMVrDc54IfvvwAAANE 91.230.121.134 48844 78.46.187.162 80 show less	Brute-Force Web App Attack
Anonymous	2026-06-16 23:32:28 (1 hour ago)	Aggressive Robot or Attack DDOS	DDoS Attack
🇫🇷 dynamix	2026-06-16 23:13:04 (1 hour ago)	Multiple WAF Violations	Web App Attack
🇩🇪 webanyone	2026-06-16 23:00:30 (1 hour ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇬🇧 Apache	2026-06-16 15:53:13 (8 hours ago)	(mod_security) mod_security (id:920350) triggered by 91.230.121.134 (UA/Ukraine/pizzaahte.com): 5 in ... show more (mod_security) mod_security (id:920350) triggered by 91.230.121.134 (UA/Ukraine/pizzaahte.com): 5 in the last 300 secs (CF_ENABLE) show less	Brute-Force Web App Attack
Anonymous	2026-06-16 13:22:43 (11 hours ago)	91.230.121.134 - - [16/Jun/2026:10:22:39 -0300] "GET /apps/graphapi/vendor/microsoft/microsoft-graph ... show more 91.230.121.134 - - [16/Jun/2026:10:22:39 -0300] "GET /apps/graphapi/vendor/microsoft/microsoft-graph/tests/GetPhpInfo.php/test.css HTTP/1.1" 404 353 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36" 91.230.121.134 - - [16/Jun/2026:10:22:42 -0300] "GET /nacos/actuator/heapdump HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36" 91.230.121.134 - - [16/Jun/2026:10:22:42 -0300] "GET /actuator/jolokia/exec/com.sun.management:type=DiagnosticCommand/compilerDirectivesAdd/!/etc!/passwd HTTP/1.1" 404 399 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36" 91.230.121.134 - - [16/Jun/2026:10:22:42 -0300] "GET /.kubeconfig HTTP/1.1" 403 186 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36" 91.230.121.134 - - [16/Jun/ ... show less	Port Scan
🇫🇷 LiloBzH	2026-06-16 12:38:36 (12 hours ago)	91.230.121.134 - - [16/Jun/2026:14:37:48 +0200] "GET /.git/config HTTP/1.1" 404 181 "-" "Mozilla/5.0 ... show more 91.230.121.134 - - [16/Jun/2026:14:37:48 +0200] "GET /.git/config HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36" 91.230.121.134 - - [16/Jun/2026:14:38:10 +0200] "GET /wp-content/plugins/wordpress-file-upload/wfu_file_downloader.php?file=../../../../../wp-config.php HTTP/1.1" 200 935 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36" 91.230.121.134 - - [16/Jun/2026:14:38:35 +0200] "GET /api/v1/db/meta/nocodb/info HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36" show less	Web App Attack
🇳🇱 e.fierstra	2026-06-16 12:28:59 (12 hours ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇺🇸 VanKoh	2026-06-16 12:09:38 (12 hours ago)	91.230.121.134 - - [16/Jun/2026:06:09:28 -0600] "HEAD / HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT ... show more 91.230.121.134 - - [16/Jun/2026:06:09:28 -0600] "HEAD / HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36" 91.230.121.134 - - [16/Jun/2026:06:09:34 -0600] "GET /apps/graphapi/vendor/microsoft/microsoft-graph/tests/GetPhpInfo.php/test.css HTTP/1.1" 404 43945 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36" 91.230.121.134 - - [16/Jun/2026:06:09:37 -0600] "GET /kubeconfig HTTP/1.1" 404 43945 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36" ... show less	Port Scan Web App Attack
🇩🇪 ut-addicted.com	2026-06-16 11:44:59 (13 hours ago)	\[16/Jun/2026:13:00:08 +0200\] ajEsuPBApzMVrDc54Ieu9QAAAMw 91.230.121.134 14126 78.46.187.162 80 \[1 ... show more \[16/Jun/2026:13:00:08 +0200\] ajEsuPBApzMVrDc54Ieu9QAAAMw 91.230.121.134 14126 78.46.187.162 80 \[16/Jun/2026:13:00:10 +0200\] ajEsuvBApzMVrDc54Ieu9gAAANY 91.230.121.134 49660 78.46.187.162 80 \[16/Jun/2026:13:44:57 +0200\] ajE3OfBApzMVrDc54IezcgAAAM4 91.230.121.134 5182 78.46.187.162 80 show less	Brute-Force Web App Attack
🇩🇪 Richie	2026-06-16 10:58:41 (13 hours ago)	[HOST1] Web probe: GET /public/plugins/dashlist/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd - ... show more [HOST1] Web probe: GET /public/plugins/dashlist/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd -> HTTP 400; UA: - show less	Bad Web Bot Web App Attack
🇨🇦 alexbfr	2026-06-15 20:17:05 (1 day ago)	Fail2Ban Report, nginx-bot-trap jail: Automated honeypot detection.	Port Scan
Anonymous	2026-06-15 19:35:08 (1 day ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host

Showing 1 to 15 of 56 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 218.188.154.30

🇨🇳 211.97.69.110

🇻🇳 203.205.37.233

🇫🇷 194.163.162.229

🇺🇸 173.230.153.19

🇫🇷 146.70.194.236

🇧🇩 116.12.36.76

🇻🇳 113.166.244.247

🇨🇳 112.5.66.5

🇨🇳 110.87.158.87

🇮🇳 103.158.140.157

🇪🇸 89.44.32.243

🇱🇹 81.30.98.44

🇩🇪 69.5.169.105

🇫🇮 65.108.19.62

🇨🇳 42.87.65.112

🇺🇸 2400:cb00:125:1000:f715:5841:8f1:279d

🇺🇸 173.50.93.33

🇧🇷 168.205.233.19

🇩🇪 167.94.146.57