JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 92.36.155.222

92.36.155.222 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 38%: ?

38%

ISP	BH Telecom d.d. Sarajevo
Usage Type	Fixed Line ISP
ASN	AS9146
Domain Name	bhtelecom.ba
Country	🇧🇦 Bosnia and Herzegovina
City	Sarajevo, Federation of B&H

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 92.36.155.222

Whois 92.36.155.222

IP Abuse Reports for 92.36.155.222:

This IP address has been reported a total of 9 times from 5 distinct sources. 92.36.155.222 was first reported on June 28th 2026, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 rh24	2026-06-29 09:29:21 (15 hours ago)	(wordpress) Failed wordpress login from 92.36.155.222 (BA/Bosnia and Herzegovina/-): (CF_ENABLE)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-29 08:28:19 (16 hours ago)	(mod_security) mod_security (id:240335) triggered by 92.36.155.222 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 92.36.155.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 04:28:14.031585 2026] [security2:error] [pid 9973:tid 9973] [client 92.36.155.222:64210] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 92.36.155.222 (+1 hits since last alert)\|iconconstructors.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "iconconstructors.com"] [uri "/xmlrpc.php"] [unique_id "akIsnv3g1XjBbyHc2JtP_gAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-29 08:00:34 (17 hours ago)	(mod_security) mod_security (id:240335) triggered by 92.36.155.222 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 92.36.155.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 04:00:26.304057 2026] [security2:error] [pid 25755:tid 25755] [client 92.36.155.222:59253] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 92.36.155.222 (+1 hits since last alert)\|newcitypark.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "newcitypark.com"] [uri "/xmlrpc.php"] [unique_id "akImGsXnaajymbFPWEwHsAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 Rizzy	2026-06-29 06:48:20 (18 hours ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇩🇪 dbmwebdesign	2026-06-29 05:50:38 (19 hours ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-28 22:24:57 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 92.36.155.222 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 92.36.155.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 18:24:52.939720 2026] [security2:error] [pid 22050:tid 22050] [client 92.36.155.222:50490] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 92.36.155.222 (+1 hits since last alert)\|knoxbestos.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "knoxbestos.com"] [uri "/xmlrpc.php"] [unique_id "akGfNI1lFK-6kFFBUJDujgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-28 22:23:12 (1 day ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇺🇸 TPI-Abuse	2026-06-28 20:53:49 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 92.36.155.222 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 92.36.155.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 16:53:41.625041 2026] [security2:error] [pid 14780:tid 14780] [client 92.36.155.222:61021] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 92.36.155.222 (+1 hits since last alert)\|phoboschildren.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "phoboschildren.com"] [uri "/xmlrpc.php"] [unique_id "akGJ1V0mAJDp-sWHP_PpGwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-28 17:17:51 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 92.36.155.222 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 92.36.155.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 13:17:43.975677 2026] [security2:error] [pid 22489:tid 22489] [client 92.36.155.222:51528] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 92.36.155.222 (+1 hits since last alert)\|magacine.tv\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "magacine.tv"] [uri "/xmlrpc.php"] [unique_id "akFXNwzcfszNLK9ytX5XhwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 219.151.187.107

🇳🇱 195.178.110.30

🇬🇧 193.163.125.34

🇮🇳 185.100.212.141

🇳🇱 160.119.76.32

🇪🇨 157.100.140.253

🇬🇧 139.59.160.236

🇨🇳 120.195.141.100

🇨🇳 120.132.55.252

🇨🇳 117.89.249.222

🇨🇳 112.5.233.47

🇷🇸 109.106.239.77

🇳🇱 91.92.40.231

🇺🇸 64.62.197.91

🇩🇪 5.75.164.28

🇩🇪 185.207.107.77

🇺🇸 184.34.85.144

🇻🇳 171.231.182.149

🇨🇳 115.192.225.154

🇩🇪 69.5.169.9