JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.92.40.117

91.92.40.117 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 68%: ?

68%

ISP	TechTies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS197170
Domain Name	tech-ties.net
Country	🇳🇱 Netherlands
City	Lelystad, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.92.40.117

Whois 91.92.40.117

IP Abuse Reports for 91.92.40.117:

This IP address has been reported a total of 16 times from 15 distinct sources. 91.92.40.117 was first reported on June 15th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 nakordoni.eu	2026-06-27 22:00:04 (2 days ago)	Blocked by nakordoni.eu automated security: 404 flood / bad web bot. Jail: nakordoni-404-flood, 30 m ... show more Blocked by nakordoni.eu automated security: 404 flood / bad web bot. Jail: nakordoni-404-flood, 30 matches. ISP: TechTies Inc. (NL), Usage: Data Center/Web Hosting/Transit. Prior AbuseIPDB score at ban time: 67/100. show less	Bad Web Bot Web App Attack
🇩🇪 BlueWire Hosting	2026-06-27 18:12:52 (2 days ago)	Suspicious HTTP(s) activity without a user agent provided	Bad Web Bot
🇩🇪 ramazan	2026-06-27 11:59:30 (2 days ago)	Fail2Ban: nginx-4xx \| Failures: 13 \| Log: /.map /:[ /:[%7B.map /category/genel/.map /category/wazuh/ ... show more Fail2Ban: nginx-4xx \| Failures: 13 \| Log: /.map /:[ /:[%7B.map /category/genel/.map /category/wazuh/.map show less	Web App Attack Hacking
Anonymous	2026-06-26 18:29:15 (3 days ago)	Spam registration attempt on forum.	Web Spam Blog Spam
🇺🇸 wordpresshosting.solutions	2026-06-21 17:58:27 (1 week ago)	Web app vulnerability scanning detected. Evidence: 91.92.40.117 - - [21/Jun/2026:17:58:26 +0000] "GE ... show more Web app vulnerability scanning detected. Evidence: 91.92.40.117 - - [21/Jun/2026:17:58:26 +0000] "GET /phpinfo HTTP/1.1" 404 67950 "https://[DOMAIN]/phpinfo" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Mobile/15E148 Safari/604.1" 91.92.40.117 - - [21/Jun/2026:17:58:27 +0000] "GET /_profiler/phpinfo HTTP/1.1" 404 64606 "https://[DOMAIN]/_profiler/phpinfo" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Web App Attack
🇫🇷 dynamix	2026-06-21 08:11:38 (1 week ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 06:03:08 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 91.92.40.117 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 91.92.40.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 02:03:04.207719 2026] [security2:error] [pid 22568:tid 22568] [client 91.92.40.117:57162] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kln.ne.jp"] [uri "/jehovah/.env"] [unique_id "ajd-mG3ubrfOu4QPOo8mbgAAAAE"], referer: http://xn--ick3d6az397ak06a.net/.env show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 alessio loto	2026-06-17 12:35:45 (1 week ago)	WAF Detection: Empty_UserAgent (Abusive IP). AI Confirmed Attack Payload.	Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 11:56:33 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 91.92.40.117 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 91.92.40.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 07:56:26.359550 2026] [security2:error] [pid 7625:tid 7743] [client 91.92.40.117:56904] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mwcecommerce.com"] [uri "/.env"] [unique_id "ajKLapPzWDAqfE9qEnZl0wAAAs8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 AGEPCom	2026-06-16 10:17:12 (1 week ago)	Smart-Ban: IP bannie via score AbuseIPDB	Brute-Force Web App Attack
🇩🇪 Ba-Yu	2026-06-16 07:53:42 (1 week ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
Anonymous	2026-06-16 02:06:09 (2 weeks ago)	Blocked: Reason='Vulnerability probing — PHP scan detected (16/60 min)'; Requests=16	Port Scan
🇬🇧 Mendip_Defender	2026-06-15 23:26:45 (2 weeks ago)	91.92.40.117 - - [16/Jun/2026:00:26:30 +0100] "GET /amenities/ashwick-church-rooms/.map HTTP/1.1" 40 ... show more 91.92.40.117 - - [16/Jun/2026:00:26:30 +0100] "GET /amenities/ashwick-church-rooms/.map HTTP/1.1" 404 51294 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0" 91.92.40.117 - - [16/Jun/2026:00:26:32 +0100] "GET /amenities/ashwick-oakhill-village-hall/booking-information/.map HTTP/1.1" 404 51294 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0" 91.92.40.117 - - [16/Jun/2026:00:26:39 +0100] "GET /amenities/post-office/.map HTTP/1.1" 404 51294 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" ... show less	Hacking Web App Attack
Anonymous	2026-06-15 16:01:21 (2 weeks ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇫🇷 ELYAZ	2026-06-15 10:37:51 (2 weeks ago)	(y3) Failed access -byebye- from 91.92.40.117 (BG/Bulgaria/-): (CF_ENABLE)	Hacking

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇯 217.8.46.32

🇺🇿 213.230.90.23

🇰🇬 212.241.14.93

🇺🇸 193.151.188.64

🇺🇿 188.113.211.8

🇩🇪 167.94.146.53

🇹🇭 165.154.118.215

🇭🇰 165.154.40.10

🇰🇿 145.255.161.104

🇫🇮 135.181.34.178

🇮🇷 93.118.154.234

🇩🇪 69.5.169.198

🇹🇯 46.20.202.56

🇬🇧 37.10.113.213

🇬🇧 35.203.210.70

🇬🇧 35.203.210.69

🇰🇷 1.220.82.178

🇰🇬 213.145.141.66

🇰🇬 212.241.24.18

🇰🇬 212.42.117.239