JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 92.113.18.146

92.113.18.146 was found in our database!

This IP was reported 47 times. Confidence of Abuse is 100%: ?

100%

ISP	JSC Ukrtelecom
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	ukrtelecom.ua
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 92.113.18.146

Whois 92.113.18.146

IP Abuse Reports for 92.113.18.146:

This IP address has been reported a total of 47 times from 29 distinct sources. 92.113.18.146 was first reported on June 6th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 jcbriar	2026-06-08 09:14:53 (2 hours ago)	Searching for vulnerable scripts	Hacking Web App Attack
🇬🇧 openstrike.co.uk	2026-06-08 05:13:19 (6 hours ago)	9 attacks on env grabbing URLs: GET /backend/.env HTTP/1.1	Hacking
🇬🇧 consul.to	2026-06-08 02:02:11 (9 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇦🇺 paulshipley.com.au	2026-06-07 22:49:10 (12 hours ago)	[Mon Jun 08 08:49:09.708536 2026] [security2:error] [pid 34361] [client 92.113.18.146:37366] [client ... show more [Mon Jun 08 08:49:09.708536 2026] [security2:error] [pid 34361] [client 92.113.18.146:37366] [client 92.113.18.146] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "talentaymerch.com.au"] [uri "/backend/.env"] [unique_id "aiX1ZbKnxOh_x9zEEkJ6pQAAAAs"] ... show less	Web App Attack
🇳🇱 globcom	2026-06-07 21:13:12 (14 hours ago)	General hacking/exploits/scanning	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-07 19:04:25 (16 hours ago)	92.113.18.146 - - [07/Jun/2026:22:04:24 +0300] "GET /admin/.env HTTP/1.1" 404 3315 "-" "Mozilla/5.0 ... show more 92.113.18.146 - - [07/Jun/2026:22:04:24 +0300] "GET /admin/.env HTTP/1.1" 404 3315 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 92.113.18.146 - - [07/Jun/2026:22:04:24 +0300] "GET /backend/.env HTTP/1.1" 404 3315 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" ... show less	Web App Attack
🇳🇱 wlt-blocker	2026-06-07 18:58:54 (16 hours ago)	Unauthorized access to webpage admin	Web App Attack
🇩🇪 paissangroup	2026-06-07 18:21:26 (16 hours ago)	Multiple WAF Violations	Web App Attack
🇩🇪 FeG Deutschland	2026-06-07 17:08:46 (18 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 127	Exploited Host Web App Attack
🇮🇩 Burayot	2026-06-07 13:23:32 (21 hours ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 92.113.18.146 (DE/Germany/-): 2 in t ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 92.113.18.146 (DE/Germany/-): 2 in the last 3600 secs show less	Web App Attack
🇫🇷 masterguru	2026-06-07 13:14:25 (22 hours ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-197)	Hacking Web App Attack
🇮🇹 Inartis	2026-06-07 12:42:27 (22 hours ago)	92.113.18.146 - - [07/Jun/2026:14:42:25 +0200] "GET /.env HTTP/1.1" 403 4992 "-" "Mozilla/5.0 (Macin ... show more 92.113.18.146 - - [07/Jun/2026:14:42:25 +0200] "GET /.env HTTP/1.1" 403 4992 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-07 09:54:48 (1 day ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-201)	Hacking Web App Attack
🇩🇪 Bedios GmbH	2026-06-07 09:27:08 (1 day ago)	Login credentials theft attempt	Hacking
Anonymous	2026-06-07 09:01:08 (1 day ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 15 of 47 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.233.219.44

🇫🇷 161.97.72.101

🇨🇳 123.160.175.59

🇫🇷 91.231.89.10

🇫🇷 91.196.152.183

🇹🇷 88.255.67.248

🇨🇳 47.100.210.183

🇨🇳 14.103.116.192

🇺🇸 209.222.101.194

🇨🇳 112.94.190.146

🇺🇸 65.49.1.170

🇮🇪 34.245.149.55

🇷🇺 212.164.38.32

🇳🇱 195.211.191.112

🇧🇷 187.33.59.116

🇮🇱 185.162.127.214

🇨🇳 175.30.48.31

🇺🇸 172.253.1.30

🇹🇼 111.253.92.137

🇨🇳 101.96.203.52