JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 92.112.182.141

92.112.182.141 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 100%: ?

100%

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	netutils.io
Country	🇱🇹 Lithuania
City	Vilnius, Vilnius

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 92.112.182.141

Whois 92.112.182.141

IP Abuse Reports for 92.112.182.141:

This IP address has been reported a total of 40 times from 34 distinct sources. 92.112.182.141 was first reported on June 11th 2026, and the most recent report was 25 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-06-13 06:10:26 (25 minutes ago)	dot file probe	Web App Attack
Anonymous	2026-06-13 00:38:39 (5 hours ago)	Probing for known exploit paths (.env, .git, wp-admin, shell files, etc.). Single-strike ban policy ... show more Probing for known exploit paths (.env, .git, wp-admin, shell files, etc.). Single-strike ban policy — zero tolerance for exploit scanning. Banned Jun 13, 00:38 UTC. Origin: LT, Vilnius. show less	Hacking Bad Web Bot Web App Attack
🇪🇸 elcruzado.es	2026-06-12 23:55:23 (6 hours ago)	(mod_security) mod_security triggered on hostname [redacted] 92.112.182.141 (LT/Lithuania/-)	SQL Injection
🇺🇸 kosada.com	2026-06-12 23:22:31 (7 hours ago)	Web vulnerability probing: /app/.env	Web App Attack
🇺🇸 antlac1	2026-06-12 21:52:09 (8 hours ago)	crowdsecurity/http-probing	Brute-Force Web App Attack
🇩🇪 paissangroup	2026-06-12 20:09:03 (10 hours ago)	Multiple WAF Violations	Web App Attack
🇩🇪 Nevermind	2026-06-12 19:57:48 (10 hours ago)	92.112.182.141 - - [12/Jun/2026:21:57:47 +0200] "GET /.env HTTP/1.1" 403 4173 "-" "Mozilla/5.0 (Maci ... show more 92.112.182.141 - - [12/Jun/2026:21:57:47 +0200] "GET /.env HTTP/1.1" 403 4173 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 92.112.182.141 - - [12/Jun/2026:21:57:47 +0200] "GET /laravel/.env HTTP/1.1" 403 4173 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 92.112.182.141 - - [12/Jun/2026:21:57:47 +0200] "GET /api/.env HTTP/1.1" 403 4173 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 92.112.182.141 - - [12/Jun/2026:21:57:47 +0200] "GET /app/.env HTTP/1.1" 403 4173 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" ... show less	Web App Attack
Anonymous	2026-06-12 18:58:03 (11 hours ago)	Bot / scanning and/or hacking attempts: GET /core/.env.save HTTP/1.1, GET /api/.env HTTP/1.1, GET /l ... show more Bot / scanning and/or hacking attempts: GET /core/.env.save HTTP/1.1, GET /api/.env HTTP/1.1, GET /laravel/.env HTTP/1.1, GET /backend/.env HTTP/1.1, GET /api/.env.save HTTP/1.1, GET /.env.save HTTP/1.1, GET /app/.env HTTP/1.1, GET /members/.env HTTP/1.1, GET /core/.env HTTP/1.1, GET /dev/.env HTTP/1.1 show less	Hacking Web App Attack
Anonymous	2026-06-12 18:20:56 (12 hours ago)	(caddyscan) Scanner path probe from 92.112.182.141 (LT/Lithuania/-): 5 in the last 3600 secs; Ports: ... show more (caddyscan) Scanner path probe from 92.112.182.141 (LT/Lithuania/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 92.112.182.141 - - [12/Jun/2026:18:20:56 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 92.112.182.141 - - [12/Jun/2026:18:20:56 +0000] "GET /admin/.env HTTP/1.1" [REDACTED] 200 2627 92.112.182.141 - - [12/Jun/2026:18:20:56 +0000] "GET /core/.env.save HTTP/1.1" [REDACTED] 200 2627 92.112.182.141 - - [12/Jun/2026:18:20:56 +0000] "GET /dev/.env HTTP/1.1" [REDACTED] 200 2627 92.112.182.141 - - [12/Jun/2026:18:20:56 +0000] "GET /api/.env.save HTTP/1.1" show less	Port Scan
Anonymous	2026-06-12 15:30:01 (15 hours ago)	suspicious request in access.log	Web App Attack
🇨🇭 4server	2026-06-12 15:29:41 (15 hours ago)	[FriJun1217:29:36.5168462026][security2:error][pid768876:tid769132][client92.112.182.141:0]ModSecuri ... show more [FriJun1217:29:36.5168462026][security2:error][pid768876:tid769132][client92.112.182.141:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"fondazionemontgrand.ch\"][uri\"/api/.env.save\"][unique_id\"aiwl4CRBl0JSw6eYnDDC4AAAANI\"] show less	Hacking Web App Attack
🇬🇧 consul.to	2026-06-12 15:26:58 (15 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇲🇾 Rizzy	2026-06-12 15:21:15 (15 hours ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-12 13:55:03 (16 hours ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-193)	Hacking Web App Attack
🇩🇪 sdos.es	2026-06-12 13:52:15 (16 hours ago)	"Restricted File Access Attempt - Matched Data: /.env found within REQUEST_FILENAME: /laravel/.env"	Web App Attack

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 172.71.118.175

🇨🇱 136.248.242.166

🇺🇸 20.65.193.176

🇹🇼 198.235.24.11

🇧🇷 192.140.101.28

🇺🇸 172.185.24.228

🇺🇸 146.190.40.252

🇫🇷 84.247.162.143

🇩🇪 69.5.169.175

🇯🇵 58.98.197.137

🇺🇸 20.14.89.155

🇧🇷 205.210.31.215

🇺🇸 189.81.122.141

🇬🇧 185.216.145.164

🇮🇶 185.158.22.150

🇨🇦 107.159.19.15

🇫🇷 86.239.217.44

🇨🇳 61.145.190.218

🇯🇵 35.194.101.62

🇺🇸 2604:a940:300:5b6:0:14::