JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 93.241.91.154

93.241.91.154 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 50%: ?

50%

ISP	Deutsche Telekom AG
Usage Type	Fixed Line ISP
ASN	AS3320
Hostname(s)	p5df15b9a.dip0.t-ipconnect.de
Domain Name	telekom.de
Country	🇩🇪 Germany
City	Hamburg, Hamburg

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 93.241.91.154

Whois 93.241.91.154

IP Abuse Reports for 93.241.91.154:

This IP address has been reported a total of 10 times from 10 distinct sources. 93.241.91.154 was first reported on June 2nd 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-28 11:01:59 (1 day ago)	Blocked by UFW (TCP on 443) Source port: 3685 TTL: 55 Packet length: 60 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 443) Source port: 3685 TTL: 55 Packet length: 60 TOS: 0x00 This report (for 93.241.91.154) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇺🇸 gumbysoft	2026-06-24 23:51:50 (4 days ago)	Invalid Host header in HTTP request	Web App Attack
Anonymous	2026-06-22 02:26:02 (1 week ago)	Malicious activity detected	Hacking Web App Attack
Anonymous	2026-06-19 05:06:35 (1 week ago)	Blocked: Reason='Suspicious traffic score=60 (review-based detection)'; Requests=18	Hacking
🇮🇹 abuseiphack	2026-06-19 03:43:04 (1 week ago)	Automatic report for brute force attack	Web App Attack
🇫🇮 kumiko	2026-06-14 18:45:11 (2 weeks ago)	[2026-06-14 21:45:10] Apache auth failure: brute force attempt, file probing	Brute-Force Bad Web Bot
Anonymous	2026-06-10 12:20:02 (2 weeks ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇺🇸 rsa	2026-06-09 15:48:00 (2 weeks ago)	excessive crawling ddos	DDoS Attack Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 01:27:08 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 93.241.91.154 (p5df15b9a.dip0.t-ipconnect.de): ... show more (mod_security) mod_security (id:210730) triggered by 93.241.91.154 (p5df15b9a.dip0.t-ipconnect.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 21:27:02.450022 2026] [security2:error] [pid 14470:tid 14470] [client 93.241.91.154:42490] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|new-bethel-baptist-church.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "new-bethel-baptist-church.com"] [uri "/home/tancedi1/new-bethel-baptist-church.com"] [unique_id "aidr5u5toZq0no01OJa9ZQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Phenix Info	2026-06-02 05:46:51 (3 weeks ago)	SmallGuard.fr - Empty User Agent	Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.169.244.109

🇧🇷 177.70.170.165

🇩🇪 167.71.55.243

🇩🇪 164.90.172.242

🇮🇩 157.85.210.56

🇧🇷 152.67.46.203

🇺🇸 147.182.177.180

🇺🇸 104.129.205.36

🇨🇦 85.217.149.44

🇧🇷 45.165.151.218

🇺🇸 45.63.4.69

🇨🇦 24.212.56.34

🇧🇷 200.203.143.154

🇪🇸 196.196.150.5

🇫🇷 185.177.72.11

🇺🇸 173.239.240.55

🇩🇪 159.65.112.25

🇫🇷 144.91.103.178

🇮🇳 125.16.27.190

🇬🇧 78.150.56.35