AbuseIPDB » 91.239.78.110
91.239.78.110
This IP was reported 9 times. Confidence of
Abuse
is 35% : ?
ISP
SOLLUTIUM EU Sp z.o.o.
Usage Type
Data Center/Web Hosting/Transit
ASN
AS6698
Hostname(s)
dedicated.vsys.host
Domain Name
sollutium.com
Country
๐บ๐ฆ
Ukraine
City
Kyiv, Kyiv City
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 91.239.78.110 :
This IP address has been reported a total of
9
times from
7 distinct
sources.
91.239.78.110 was first reported on
May 19th 2026 , and the most recent report was
2 weeks ago
Old Reports:
The most recent abuse report for this IP address is from
2 weeks ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ณ๐ฑ
BellFix
2026-05-22 14:14:07
(2 weeks ago)
Fail2ban reported 91.239.78.110 for npm-admin
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-05-20 22:04:36
(2 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-19.
show less
Web App Attack
SSH
Hacking
๐ฉ๐ช
Blexyel
2026-05-20 16:38:52
(2 weeks ago)
91.239.78.110 - - [20/May/2026:18:38:47 +0200] "GET /.git/config HTTP/1.1" 200 2116 "-" "Mozilla/5.0 ...
show more
91.239.78.110 - - [20/May/2026:18:38:47 +0200] "GET /.git/config HTTP/1.1" 200 2116 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
...
show less
Brute-Force
Web App Attack
๐ฉ๐ช
seal
2026-05-20 14:41:31
(2 weeks ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
SSH
Brute-Force
๐ณ๐ฑ
BellFix
2026-05-20 14:31:33
(2 weeks ago)
Fail2ban reported 91.239.78.110 for npm-admin
Web App Attack
๐ซ๐ท
dynamix
2026-05-20 12:41:52
(2 weeks ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-20 10:09:30
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 91.239.78.110 (dedicated.vsys.host): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 91.239.78.110 (dedicated.vsys.host): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 06:09:22.282866 2026] [security2:error] [pid 28194:tid 28194] [client 91.239.78.110:52811] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arapi.org"] [uri "/.env"] [unique_id "ag2IUs-V_CvaA_c-p7NfrAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
conrad10781
2026-05-19 13:32:04
(2 weeks ago)
nginx-dot-env
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-19 12:04:36
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 91.239.78.110 (dedicated.vsys.host): 1 in the l ...
show more
(mod_security) mod_security (id:210492) triggered by 91.239.78.110 (dedicated.vsys.host): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 19 08:04:32.235082 2026] [security2:error] [pid 15803:tid 15803] [client 91.239.78.110:55689] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "albrittonmcclain.com"] [uri "/.env"] [unique_id "agxR0IlYUHgRvLQnGAYAHwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
9
of 9 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: