JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 158.94.209.67

158.94.209.67 was found in our database!

This IP was reported 63 times. Confidence of Abuse is 65%: ?

65%

ISP	OMEGATECH
Usage Type	Fixed Line ISP
ASN	AS202412
Domain Name	omegatech.sc
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 158.94.209.67

Whois 158.94.209.67

IP Abuse Reports for 158.94.209.67:

This IP address has been reported a total of 63 times from 37 distinct sources. 158.94.209.67 was first reported on December 7th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 as211431.net	2026-06-15 18:01:08 (1 day ago)	Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇳🇿 Antinson	2026-06-15 15:09:35 (1 day ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇨🇭 zynex	2026-06-15 14:48:28 (1 day ago)	URL Probing: /config/database.php	Web App Attack
Anonymous	2026-06-15 12:47:46 (1 day ago)	158.94.209.67 - - [15/Jun/2026:12:47:46 +0000] "GET //.git/config HTTP/1.1" 404 575 "-" "Mozilla/5.0 ... show more 158.94.209.67 - - [15/Jun/2026:12:47:46 +0000] "GET //.git/config HTTP/1.1" 404 575 "-" "Mozilla/5.0" ... show less	Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-15 10:32:11 (1 day ago)	[MonJun1512:32:04.5207082026][security2:error][pid4004241:tid4004340][client158.94.209.67:0]ModSecur ... show more [MonJun1512:32:04.5207082026][security2:error][pid4004241:tid4004340][client158.94.209.67:0]ModSecurity:Accessdeniedwithcode403$phase2$.OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded$TotalScore:5$\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"akastudio.ch\"][uri\"/.git/config\"][unique_id\"ai_UpEyGx7UKdA1Nq0uMkwAAAQM\"] show less	Port Scan Brute-Force Web App Attack
Anonymous	2026-06-08 23:42:09 (1 week ago)	(mod_security) mod_security triggered on hostname [redacted])	SQL Injection
🇵🇱 sefinek.net	2026-06-08 22:20:49 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from NL. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoi ... show more Triggered Cloudflare WAF (firewallCustom) from NL. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoint: / \| UA: Mozilla/5.0 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 0tsystems	2026-06-08 07:18:24 (1 week ago)	Automated scan detected on 0t.systems: /.git	Web App Attack
🇫🇷 Rat_Crusher	2026-06-07 23:28:28 (1 week ago)	A rat searching for: GET /.aws/credentials GET /.aws/config GET /config.php GET /config.json GET /se ... show more A rat searching for: GET /.aws/credentials GET /.aws/config GET /config.php GET /config.json GET /secrets.json show less	Bad Web Bot
🇦🇺 nzhost.co.nz	2026-06-07 21:29:07 (1 week ago)	$f2bV_matches	Hacking Brute-Force
🇨🇦 1gz	2026-06-05 04:52:08 (1 week ago)	Triggered Cloudflare WAF (firewallManaged) from NL. Action taken: BLOCK Protocol: HTTP/1.1 (GET meth ... show more Triggered Cloudflare WAF (firewallManaged) from NL. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /wp-config.php UA: Mozilla/5.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 ambor	2026-06-05 04:46:48 (1 week ago)	L0ss Honeypot: Git configuration file access attempt. Path: /.git/config	Web App Attack
🇯🇵 HeliJP	2026-04-22 20:45:36 (1 month ago)	2026-04-22T20:28:23Z - Recognized attacks\bad behavior from IP address 158.94.209.67 on port 443\80 ... show more 2026-04-22T20:28:23Z - Recognized attacks\bad behavior from IP address 158.94.209.67 on port 443\80 (3 daily hits): Restricted File Access Attempt show less	Hacking Web App Attack
🇺🇸 ambor	2026-04-20 22:17:46 (1 month ago)	L0ss Honeypot: Git configuration file access attempt. Path: /.git/config	Web App Attack
🇬🇧 Oakley	2026-04-06 06:53:27 (2 months ago)	(mod_security) mod_security (id:949110) triggered by 158.94.209.67 (-): 5 in the last 900 secs	Web App Attack Hacking

Showing 1 to 15 of 63 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.226.197.62

🇯🇵 151.242.36.122

🇫🇷 51.75.24.242

🇺🇸 23.33.28.197

🇨🇳 202.112.47.207

🇬🇧 195.206.182.205

🇺🇸 192.241.157.226

🇿🇦 165.73.170.40

🇵🇰 153.117.40.208

🇫🇮 95.217.230.151

🇭🇺 79.139.59.58

🇺🇸 65.110.40.33

🇺🇸 50.6.228.111

🇸🇬 47.82.11.204

🇮🇪 3.250.153.192

🇩🇪 202.61.240.82

🇹🇷 185.255.95.139

🇳🇱 185.226.197.63

🇺🇸 185.106.96.20

🇮🇳 182.156.80.11