JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 158.94.210.138

158.94.210.138 was found in our database!

This IP was reported 369 times. Confidence of Abuse is 100%: ?

100%

ISP	OMEGATECH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS202412
Domain Name	omegatech.sc
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 158.94.210.138

Whois 158.94.210.138

IP Abuse Reports for 158.94.210.138:

This IP address has been reported a total of 369 times from 173 distinct sources. 158.94.210.138 was first reported on January 6th 2026, and the most recent report was 2 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇼 AndCycle	2026-06-09 19:18:17 (2 minutes ago)	Jun 10 03:18:17 bacztwo courieresmtpd[413955]: error,relay=::ffff:158.94.210.138,port=50682,msg="535 ... show more Jun 10 03:18:17 bacztwo courieresmtpd[413955]: error,relay=::ffff:158.94.210.138,port=50682,msg="535 Authentication failed.",cmd: AUTH LOGIN avis ... show less	Email Spam Brute-Force
🇹🇼 AndCycle	2026-06-09 16:38:09 (2 hours ago)	Jun 10 00:38:07 bacztwo courieresmtpd[116582]: error,relay=::ffff:158.94.210.138,port=62536,msg="535 ... show more Jun 10 00:38:07 bacztwo courieresmtpd[116582]: error,relay=::ffff:158.94.210.138,port=62536,msg="535 Authentication failed.",cmd: AUTH LOGIN facturacion ... show less	Email Spam Brute-Force
🇹🇼 AndCycle	2026-06-09 15:16:58 (4 hours ago)	Jun 9 23:16:57 bacztwo courieresmtpd[4152972]: error,relay=::ffff:158.94.210.138,port=53669,msg="53 ... show more Jun 9 23:16:57 bacztwo courieresmtpd[4152972]: error,relay=::ffff:158.94.210.138,port=53669,msg="535 Authentication failed.",cmd: AUTH LOGIN staff ... show less	Email Spam Brute-Force
🇹🇼 AndCycle	2026-06-09 14:36:24 (4 hours ago)	Jun 9 22:35:17 bacztwo courieresmtpd[4075131]: error,relay=::ffff:158.94.210.138,port=61577,msg="53 ... show more Jun 9 22:35:17 bacztwo courieresmtpd[4075131]: error,relay=::ffff:158.94.210.138,port=61577,msg="535 Authentication failed.",cmd: AUTH LOGIN tester Jun 9 22:36:24 bacztwo courieresmtpd[4079099]: error,relay=::ffff:158.94.210.138,port=51452,msg="535 Authentication failed.",cmd: AUTH LOGIN testing Jun 9 22:36:24 bacztwo courieresmtpd[4079099]: error,relay=::ffff:158.94.210.138,port=51452,msg="535 Authentication failed.",cmd: AUTH LOGIN testing ... show less	Email Spam Brute-Force
🇹🇼 AndCycle	2026-06-09 14:02:20 (5 hours ago)	Jun 9 21:57:33 bacztwo courieresmtpd[4007108]: error,relay=::ffff:158.94.210.138,port=55895,msg="53 ... show more Jun 9 21:57:33 bacztwo courieresmtpd[4007108]: error,relay=::ffff:158.94.210.138,port=55895,msg="535 Authentication failed.",cmd: AUTH LOGIN tester Jun 9 21:58:45 bacztwo courieresmtpd[4008337]: error,relay=::ffff:158.94.210.138,port=52009,msg="535 Authentication failed.",cmd: AUTH LOGIN testtest Jun 9 21:59:56 bacztwo courieresmtpd[4010060]: error,relay=::ffff:158.94.210.138,port=53743,msg="535 Authentication failed.",cmd: AUTH LOGIN hr Jun 9 22:01:07 bacztwo courieresmtpd[4015947]: error,relay=::ffff:158.94.210.138,port=55367,msg="535 Authentication failed.",cmd: AUTH LOGIN test2 Jun 9 22:02:18 bacztwo courieresmtpd[4017131]: error,relay=::ffff:158.94.210.138,port=49501,msg="535 Authentication failed.",cmd: AUTH LOGIN test123 ... show less	Email Spam Brute-Force
🇺🇸 LotPhantom	2026-06-09 10:13:22 (9 hours ago)	2026-06-09T10:13:18.704932+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1 ... show more 2026-06-09T10:13:18.704932+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=158.94.210.138 DST=157.230.217.55 LEN=52 TOS=0x02 PREC=0x00 TTL=116 ID=8296 DF PROTO=TCP SPT=53109 DPT=25 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 2026-06-09T10:13:21.699635+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=158.94.210.138 DST=157.230.217.55 LEN=52 TOS=0x02 PREC=0x00 TTL=116 ID=8441 DF PROTO=TCP SPT=53109 DPT=25 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 ... show less	Port Scan Hacking
🇩🇪 samba.org	2026-06-09 06:16:08 (13 hours ago)	spam (f2b h2)	Brute-Force
🇦🇹 keechi	2026-06-08 22:01:50 (21 hours ago)	2026-06-05T03:44:19.115411+02:00 nextcloudpi postfix/smtpd[2874711]: NOQUEUE: reject: RCPT from unkn ... show more 2026-06-05T03:44:19.115411+02:00 nextcloudpi postfix/smtpd[2874711]: NOQUEUE: reject: RCPT from unknown[158.94.210.138]: 554 5.7.1 <[email protected]>: Relay access denied; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<WIN-7N1FIECL6IC> ... show less	Brute-Force
🇹🇷 pamircil	2026-06-08 08:00:28 (1 day ago)	🍯 WinnieThePooh Honeypot : Detected email spam/flood attempt 💀	Web App Attack Hacking
🇦🇹 keechi	2026-06-06 22:03:43 (2 days ago)	2026-06-05T03:44:19.115411+02:00 nextcloudpi postfix/smtpd[2874711]: NOQUEUE: reject: RCPT from unkn ... show more 2026-06-05T03:44:19.115411+02:00 nextcloudpi postfix/smtpd[2874711]: NOQUEUE: reject: RCPT from unknown[158.94.210.138]: 554 5.7.1 <[email protected]>: Relay access denied; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<WIN-7N1FIECL6IC> ... show less	Brute-Force
🇵🇱 KZGM	2026-06-06 08:36:51 (3 days ago)	smtp - too many invalid logins. Banned by fail2ban.	Brute-Force
🇨🇦 Luhte	2026-06-06 04:47:49 (3 days ago)	Unsolicited TCP connection from 158.94.210.138 to port 0 at 2026-06-06T04:47:49Z. Source IP complete ... show more Unsolicited TCP connection from 158.94.210.138 to port 0 at 2026-06-06T04:47:49Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring. show less	Port Scan Hacking
🇩🇪 guldkage	2026-06-06 03:55:21 (3 days ago)	Unauthorized connection attempt detected from IP address 158.94.210.138 to port 25 (ger-03) [h]	Brute-Force Exploited Host
🇧🇷 ICS Labs	2026-06-05 19:50:28 (3 days ago)	ICS Labs identified 158.94.210.138 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇯🇵 knock	2026-06-05 10:55:38 (4 days ago)	Knock-Knock honeypot brute-force: SMTP (13 total hits)	Brute-Force

Showing 1 to 15 of 369 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 216.73.162.117

🇨🇳 203.76.241.18

🇹🇼 198.235.24.95

🇷🇺 178.216.165.187

🇧🇷 177.36.214.46

🇺🇸 162.216.149.18

🇺🇸 162.216.149.16

🇺🇸 147.185.132.183

🇮🇳 110.225.255.179

🇿🇦 102.129.56.147

🇳🇱 185.242.226.103

🇵🇰 139.135.41.154

🇻🇳 123.20.139.168

🇳🇱 77.91.71.10

🇫🇮 62.238.27.170

🇷🇴 2.57.121.25

🇺🇸 2607:f8b0:400c:c05::120

🇩🇪 213.209.159.158

🇨🇳 182.43.164.191

🇰🇷 175.203.23.245