JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.243.94.215

91.243.94.215 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 0%: ?

ISP	Grand Ltd
Usage Type	Fixed Line ISP
ASN	AS56340
Domain Name	umnyeseti.ru
Country	🇷🇺 Russian Federation
City	Lytkarino, Moscow Oblast

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.243.94.215

Whois 91.243.94.215

IP Abuse Reports for 91.243.94.215:

This IP address has been reported a total of 14 times from 8 distinct sources. 91.243.94.215 was first reported on September 6th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-05-06 05:20:49 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 91.243.94.215 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 91.243.94.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 06 01:20:45.337882 2025] [security2:error] [pid 619888:tid 619888] [client 91.243.94.215:20647] [client 91.243.94.215] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Churchill II Recliner/Double Fudge/Thumbs.db"] [unique_id "aBmcLbLbeKynwx8koG-67QAAABA"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Churchill%20II%20Recliner/Double%20Fudge/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-02-23 10:56:36 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-12-01 09:08:03 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 91.243.94.215 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 91.243.94.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 01 04:07:59.559398 2024] [security2:error] [pid 3736205:tid 3736205] [client 91.243.94.215:36105] [client 91.243.94.215] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Ashton II Recliner/Ashton II Recliner/Havana Brown/Thumbs.db"] [unique_id "Z0wnb6pCD9A3yQKgpDdVBgAAAAE"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Ashton%20II%20Recliner/Ashton%20II%20Recliner/Havana%20Brown/ show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 sms.ru	2024-09-26 06:30:08 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
🇨🇦 wil.com	2024-09-23 09:14:34 (1 year ago)	GlobalProtect login attempts with user dporchia.	VPN IP Brute-Force
🇺🇸 TPI-Abuse	2024-08-07 18:00:32 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 91.243.94.215 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 91.243.94.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 07 14:00:26.347224 2024] [security2:error] [pid 20642:tid 20642] [client 91.243.94.215:56487] [client 91.243.94.215] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Churchill II Recliner/Churchill II/Double Fudge/Thumbs.db"] [unique_id "ZrO2OiDt0b74NYqalSJ4IwAAAB0"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Churchill%20II%20Recliner/Churchill%20II/Double%20Fudge/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-07-11 06:24:10 (1 year ago)	Malicious activity detected	Hacking Web App Attack
Anonymous	2024-04-15 00:39:21 (2 years ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 mnsf	2024-03-16 18:05:09 (2 years ago)	Login Too Frequent (7)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-02-09 04:13:07 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 91.243.94.215 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 91.243.94.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 08 23:13:01.833716 2024] [security2:error] [pid 29969] [client 91.243.94.215:49371] [client 91.243.94.215] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Lochmere II Recliner/Broughton Saddle/Thumbs.db"] [unique_id "ZcWmTR719UToLqVHou1zQwAAAAc"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Lochmere%20II%20Recliner/Broughton%20Saddle/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2023-11-12 06:02:12 (2 years ago)	Wordpress malicious attack:[octa404]	Web App Attack
🇺🇸 octageeks.com	2023-11-11 06:01:57 (2 years ago)	Wordpress malicious attack:[octa404]	Web App Attack
🇨🇭 backslash	2023-10-07 05:50:01 (2 years ago)		Bad Web Bot
🇨🇭 backslash	2023-09-06 11:53:19 (2 years ago)	honeypot	Bad Web Bot

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 128.199.231.249

🇮🇳 103.91.246.101

🇫🇮 95.217.117.189

🇵🇾 190.52.136.123

🇧🇷 186.226.56.134

🇨🇳 183.6.72.120

🇩🇪 162.19.221.192

🇮🇩 103.49.239.217

🇨🇳 61.179.73.179

🇺🇸 47.77.225.225

🇧🇼 41.216.215.133

🇨🇱 34.176.240.26

🇧🇪 34.156.90.220

🇧🇪 34.34.171.65

🇷🇴 2.57.121.112

🇺🇸 212.46.142.168

🇮🇩 210.79.142.221

🇭🇰 199.45.155.68

🇪🇹 196.190.64.249

🇬🇾 190.80.51.96