JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.239.78.69

91.239.78.69 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 65%: ?

65%

ISP	SOLLUTIUM EU Sp z.o.o.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS6698
Hostname(s)	dedicated.vsys.host
Domain Name	sollutium.com
Country	🇺🇦 Ukraine
City	Kyiv, Kyiv City

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.239.78.69

Whois 91.239.78.69

IP Abuse Reports for 91.239.78.69:

This IP address has been reported a total of 34 times from 17 distinct sources. 91.239.78.69 was first reported on May 19th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-05-22 22:01:22 (2 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-21. show less	Web App Attack SSH Hacking
🇧🇷 Sabrina Soto	2026-05-22 06:22:22 (2 weeks ago)	Probe for vulnerabilities. Path attempted: /.env.production	Web App Attack
Anonymous	2026-05-22 05:43:22 (2 weeks ago)	(PERMBLOCK) 91.239.78.69 (UA/Ukraine/dedicated.vsys.host) has had more than 4 temp blocks in the las ... show more (PERMBLOCK) 91.239.78.69 (UA/Ukraine/dedicated.vsys.host) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: show less	Port Scan
🇫🇷 dynamix	2026-05-22 02:15:34 (2 weeks ago)	Multiple WAF Violations	Web App Attack
🇫🇮 mnazibo	2026-05-22 02:00:05 (2 weeks ago)	Date: 22/May/2026 04:20:00 \| Reported IP: 91.239.78.69 mod_security \| id: 930130 \| UA/group.my_domai ... show more Date: 22/May/2026 04:20:00 \| Reported IP: 91.239.78.69 mod_security \| id: 930130 \| UA/group.my_domain/- \| Connections: 18 \| Blocked: Permanent Block: [LF_MODSEC] \| URIs: /api/.env; /app/.env; /backend/.env; /config/.env; /core/.env; /.env.backup; /.env.bak; /.env.example; /.env.old; /.env.save; /.git/config; /laravel/.env; /public/.env; /server/.env; /shared/.env; /src/.env; /.vercel/.env.production.local; /web/.env \| Logs: Restricted File Access Attempt show less	SQL Injection Brute-Force Bad Web Bot
🇺🇸 mnsf	2026-05-22 00:05:31 (2 weeks ago)	Scanning/Probing (20)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-21 22:42:35 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 91.239.78.69 (dedicated.vsys.host): 1 in the la ... show more (mod_security) mod_security (id:210492) triggered by 91.239.78.69 (dedicated.vsys.host): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 18:42:29.918963 2026] [security2:error] [pid 25323:tid 25323] [client 91.239.78.69:35293] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.catholicshoppercom.frankpollicino.com"] [uri "/.env"] [unique_id "ag-KVYC3uUqAYJCiFFnYrwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-21 21:59:28 (2 weeks ago)	Auto-ban: >3000 req/min op 2026-05-21	Web App Attack SSH Hacking
🇳🇱 e.fierstra	2026-05-21 18:05:12 (2 weeks ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-21 17:52:37 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 91.239.78.69 (dedicated.vsys.host): 1 in the la ... show more (mod_security) mod_security (id:210492) triggered by 91.239.78.69 (dedicated.vsys.host): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 13:52:33.359804 2026] [security2:error] [pid 25913:tid 25913] [client 91.239.78.69:43681] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.best-dating.asiaan.net"] [uri "/.env"] [unique_id "ag9GYRw2XLdPcl1flQcZsAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-05-21 17:48:24 (2 weeks ago)	497 requests with url.path *.env	Brute-Force Bad Web Bot
🇨🇭 4server	2026-05-21 15:51:10 (2 weeks ago)	[ThuMay2117:51:05.0079522026][security2:error][pid423772:tid423798][client91.239.78.69:0]ModSecurity ... show more [ThuMay2117:51:05.0079522026][security2:error][pid423772:tid423798][client91.239.78.69:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"www.avvocato.urbani.ch\"][uri\"/.env\"][unique_id\"ag8p6bjgSWC8O_wMJfcWtgAAANg\"] show less	Hacking Web App Attack
🇬🇧 consul.to	2026-05-21 13:10:12 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-05-21 12:53:03 (2 weeks ago)	Bot / scanning and/or hacking attempts: GET /.env.development HTTP/1.1, GET /.env.production HTTP/1. ... show more Bot / scanning and/or hacking attempts: GET /.env.development HTTP/1.1, GET /.env.production HTTP/1.1, GET /.env.local HTTP/1.1, GET /.env HTTP/1.1, POST / HTTP/1.1 show less	Hacking Web App Attack
🇫🇷 masterguru	2026-05-21 12:11:56 (2 weeks ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-193)	Hacking Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇹 194.165.16.164

🇫🇷 143.244.57.82

🇺🇸 136.144.33.15

🇨🇳 106.58.173.254

🇺🇸 47.251.126.28

🇺🇸 23.28.14.179

🇮🇪 207.254.71.129

🇩🇪 172.70.248.20

🇨🇳 159.75.115.184

🇺🇸 147.185.132.95

🇮🇳 116.193.137.209

🇻🇳 116.99.174.61

🇸🇬 45.78.235.96

🇨🇳 27.223.194.41

🇵🇪 2800:1e0:1040:5:9999::198

🇫🇷 2001:41d0:33d:9200::404

🇺🇸 144.24.4.150

🇸🇬 47.79.11.15

🇫🇮 46.62.225.115

🇺🇸 34.46.89.108