JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.92.42.136

91.92.42.136 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 69%: ?

69%

ISP	Euro Crypt EOOD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS209630
Domain Name	evro.net
Country	🇳🇱 Netherlands
City	Rotterdam, South Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.92.42.136

Whois 91.92.42.136

IP Abuse Reports for 91.92.42.136:

This IP address has been reported a total of 14 times from 12 distinct sources. 91.92.42.136 was first reported on May 27th 2026, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 2000cn.com.au	2026-06-06 04:08:00 (20 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-admin-interface-probing	Web App Attack Hacking
🇩🇪 EGP Abuse Dept	2026-06-06 01:39:45 (23 hours ago)	Scanning for web/db/file exploits on www.stekdenhaag.nl	SQL Injection Bad Web Bot Web App Attack
🇩🇪 Aufpasser_1973	2026-06-05 21:37:59 (1 day ago)	Fail2Ban: Attack from 91.92.42.136 with <uri>	Port Scan Bad Web Bot SSH
🇺🇸 mnsf	2026-06-05 07:06:29 (1 day ago)	Too many Status 40X (16)	Brute-Force Web App Attack
🇩🇪 ghostwarriors	2026-06-04 17:20:03 (2 days ago)	Attempts against non-existent wp-login	Brute-Force Web App Attack
🇩🇪 maxpower	2026-06-04 11:06:27 (2 days ago)	(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 91.92.42.136 (BG/Bulgaria/-): 1 in the last 3 ... show more (aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 91.92.42.136 (BG/Bulgaria/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 91.92.42.136 - - [04/Jun/2026:13:06:05 +0200] "GET /administrator/index2.php HTTP/1.1" 301 295 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36" "-" host=johnfante.info show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-04 10:56:47 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 91.92.42.136 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 91.92.42.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 06:56:42.587831 2026] [security2:error] [pid 27768:tid 27768] [client 91.92.42.136:60806] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|johnedwardsconsulting.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "johnedwardsconsulting.com"] [uri "/home/tancedi1/johnedwardsconsulting.com"] [unique_id "aiFZ6jGoxuqWkeMMQqwdigAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 el-brujo	2026-06-03 22:44:20 (3 days ago)	Cloudflare WAF: Request Path: /web/administrator/ Request Query: Host: foro.elhacker.net userAgent: ... show more Cloudflare WAF: Request Path: /web/administrator/ Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 Action: block Source: ratelimit ASN Description: LLC VASH KREDIT BANK Country: NL Method: GET Timestamp: 2026-06-03T22:44:20Z ruleId: 11a71ad4659e48b29b5173e3bcc61b4a. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇪🇸 el-brujo	2026-06-02 02:19:07 (4 days ago)	Cloudflare WAF: Request Path: /web/administrator/ Request Query: Host: foro.elhacker.net userAgent: ... show more Cloudflare WAF: Request Path: /web/administrator/ Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 Action: block Source: ratelimit ASN Description: LLC VASH KREDIT BANK Country: NL Method: GET Timestamp: 2026-06-02T02:19:07Z ruleId: 11a71ad4659e48b29b5173e3bcc61b4a. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇪🇸 el-brujo	2026-06-01 20:17:04 (5 days ago)	Cloudflare WAF: Request Path: /web/administrator/ Request Query: Host: foro.elhacker.net userAgent: ... show more Cloudflare WAF: Request Path: /web/administrator/ Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 Action: block Source: ratelimit ASN Description: LLC VASH KREDIT BANK Country: NL Method: GET Timestamp: 2026-06-01T20:17:04Z ruleId: 11a71ad4659e48b29b5173e3bcc61b4a. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 monn45888	2026-06-01 05:16:56 (5 days ago)	$f2bV_matches	Web App Attack
🇬🇧 Oakley	2026-06-01 00:53:15 (6 days ago)	(confirmed_bot_sig) Confirmed bot	Hacking
🇫🇷 conseilgouz	2026-05-28 16:03:18 (1 week ago)	joe-Joomla Authentification : try to force the door...	Hacking
Anonymous	2026-05-27 22:22:47 (1 week ago)	"GET /administrator/index2.php HTTP/1.1"	Hacking Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 208.87.243.51

🇧🇪 198.235.24.167

🇪🇹 196.188.168.148

🇳🇱 195.178.110.30

🇨🇦 142.44.247.134

🇰🇷 118.193.69.67

🇳🇬 102.88.137.145

🇺🇸 91.230.168.121

🇱🇹 81.30.98.158

🇺🇸 66.132.172.234

🇺🇸 66.132.172.219

🇺🇸 66.132.172.125

🇳🇱 45.148.10.141

🇺🇸 2607:f8b0:400e:c17::121

🇨🇳 222.176.201.24

🇹🇭 202.29.236.76

🇧🇪 198.235.24.163

🇹🇼 198.235.24.121

🇹🇼 198.235.24.115

🇪🇹 196.188.93.169