AbuseIPDB » 92.92.126.117
92.92.126.117
This IP was reported 9 times. Confidence of
Abuse
is 4% : ?
ISP
DSL
Usage Type
Mobile ISP
ASN
AS15557
Hostname(s)
117.126.92.92.rev.sfr.net
Domain Name
sfr.fr
Country
π«π·
France
City
Paris, Ile-de-France
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 92.92.126.117 :
This IP address has been reported a total of
9
times from
6 distinct
sources.
92.92.126.117 was first reported on
October 4th 2025 , and the most recent report was
20 hours ago
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
π©πͺ
Vegascosmetics
2026-06-11 17:14:32
(20 hours ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security
DDoS Attack
Hacking
Exploited Host
πΊπΈ
TPI-Abuse
2026-04-12 01:05:13
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 92.92.126.117 (117.126.92.92.rev.sfr.net): 1 in ...
show more
(mod_security) mod_security (id:240335) triggered by 92.92.126.117 (117.126.92.92.rev.sfr.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 11 21:05:07.248342 2026] [security2:error] [pid 1573239:tid 1573251] [client 92.92.126.117:63951] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 92.92.126.117 (+1 hits since last alert)|abusaimeh.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "abusaimeh.com"] [uri "/xmlrpc.php"] [unique_id "adrvw7kv45wSQsn9HHVk4QAAAIk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¬π§
consul.to
2026-04-11 23:19:04
(2 months ago)
Web attack/malicious scanning detected
Web App Attack
π©πͺ
Mario Silber
2026-04-11 23:09:02
(2 months ago)
(wordpress) Failed wordpress login from 92.92.126.117 (FR/France/117.126.92.92.rev.sfr.net)
Brute-Force
πΊπΈ
TPI-Abuse
2026-04-11 21:58:44
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 92.92.126.117 (117.126.92.92.rev.sfr.net): 1 in ...
show more
(mod_security) mod_security (id:240335) triggered by 92.92.126.117 (117.126.92.92.rev.sfr.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 11 17:58:37.922980 2026] [security2:error] [pid 2346884:tid 2346884] [client 92.92.126.117:60583] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 92.92.126.117 (+1 hits since last alert)|oakvillenaturopathicclinic.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "oakvillenaturopathicclinic.com"] [uri "/xmlrpc.php"] [unique_id "adrEDT5jzoIV_wS59AdsQAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-11 20:34:12
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 92.92.126.117 (117.126.92.92.rev.sfr.net): 1 in ...
show more
(mod_security) mod_security (id:240335) triggered by 92.92.126.117 (117.126.92.92.rev.sfr.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 11 16:34:06.639841 2026] [security2:error] [pid 639820:tid 639820] [client 92.92.126.117:61505] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 92.92.126.117 (+1 hits since last alert)|hotelausland.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "hotelausland.com"] [uri "/xmlrpc.php"] [unique_id "adqwPmxxwjFyNMSP15Ki1gAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-11 19:40:13
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 92.92.126.117 (117.126.92.92.rev.sfr.net): 1 in ...
show more
(mod_security) mod_security (id:240335) triggered by 92.92.126.117 (117.126.92.92.rev.sfr.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 11 15:40:09.804372 2026] [security2:error] [pid 1742725:tid 1742725] [client 92.92.126.117:58923] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 92.92.126.117 (+1 hits since last alert)|techsunlimited.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "techsunlimited.net"] [uri "/xmlrpc.php"] [unique_id "adqjmUvpcCFtQURGtSR9NAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
Kenshin869
2026-04-11 15:45:19
(2 months ago)
Wordpress unauthorized access attempt
Brute-Force
π³π±
exxos
2025-10-04 23:05:43
(8 months ago)
Attacks with Bad user agents
Hacking
Showing 1 to
9
of 9 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: