JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 158.94.210.233

158.94.210.233 was found in our database!

This IP was reported 598 times. Confidence of Abuse is 100%: ?

100%

ISP	OMEGATECH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS202412
Domain Name	omegatech.sc
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 158.94.210.233

Whois 158.94.210.233

IP Abuse Reports for 158.94.210.233:

This IP address has been reported a total of 598 times from 207 distinct sources. 158.94.210.233 was first reported on April 28th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Mangelot Hosting	2026-06-03 20:58:02 (1 hour ago)	(modsecurity) srv101 ModSecurity 158.94.210.233 (NL/The Netherlands/-): 10 in the last 3600 secs; Po ... show more (modsecurity) srv101 ModSecurity 158.94.210.233 (NL/The Netherlands/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 antlac1	2026-06-03 20:25:49 (1 hour ago)	crowdsecurity/http-sensitive-files	Brute-Force Web App Attack
🇺🇸 Epimetheus	2026-06-03 20:04:30 (1 hour ago)	Unauthorized access attempts: [GET] /.git/HEAD UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; r ... show more Unauthorized access attempts: [GET] /.git/HEAD UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:109.0) Gecko/20100101 Firefox/115.0 show less	Web App Attack
🇳🇴 Bots.go.to.hell	2026-06-03 18:29:52 (3 hours ago)	This IP was detected by CrowdSec triggering LePresidente/http-generic-403-bf	Web App Attack Brute-Force
🇬🇧 Smish	2026-06-03 17:29:39 (4 hours ago)	HONEYPOT HIT --> Fail2ban time=1780507778 log=2026-06-03T18:29:38+01:00 ip=158.94.210.233 host=grafa ... show more HONEYPOT HIT --> Fail2ban time=1780507778 log=2026-06-03T18:29:38+01:00 ip=158.94.210.233 host=grafana.as210667.net method=GET uri="/.git/HEAD" status=404 ua="Mozilla/5.0 (X11; Linux x86_64; rv:136.0) Gecko/20100101 Firefox/136.0" ref="-" rid=9addce1699c28e6bfd70cdce4cdce9d8 show less	Web App Attack
🇳🇿 Antinson	2026-06-03 17:01:59 (5 hours ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇭🇰 i553041	2026-06-03 16:46:58 (5 hours ago)	158.94.210.233 - - [04/Jun/2026:00:46:56 +0800] "GET /laravel/.env HTTP/1.1" 401 0 "-" "Mozilla/5.0 ... show more 158.94.210.233 - - [04/Jun/2026:00:46:56 +0800] "GET /laravel/.env HTTP/1.1" 401 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" "158.94.210.233" 158.94.210.233 - - [04/Jun/2026:00:46:56 +0800] "GET /vendor/.env HTTP/1.1" 401 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" "158.94.210.233" 158.94.210.233 - - [04/Jun/2026:00:46:57 +0800] "GET /storage/.env HTTP/1.1" 401 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" "158.94.210.233" 158.94.210.233 - - [04/Jun/2026:00:46:57 +0800] "GET /config/.env HTTP/1.1" 401 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.9 ... show less	Brute-Force SSH
🇩🇪 gadix	2026-06-03 16:30:35 (5 hours ago)	[03/Jun/2026:18:30:33.104694 +0200] aiBWqb3xQESbhSv-tmImGwAAAAg 158.94.210.233 40384 127.0.0.1 7081 ... show more [03/Jun/2026:18:30:33.104694 +0200] aiBWqb3xQESbhSv-tmImGwAAAAg 158.94.210.233 40384 127.0.0.1 7081 [03/Jun/2026:18:30:33.394688 +0200] aiBWqWIyjQZZ_MeUBRSvkwAAAAk 158.94.210.233 40400 127.0.0.1 7081 [03/Jun/2026:18:30:33.706888 +0200] aiBWqa2DRfAT5hNr2XkSNQAAABI 158.94.210.233 40402 127.0.0.1 7081 ... show less	Web App Attack
🇩🇪 AetherFox	2026-06-03 16:25:48 (5 hours ago)	AetherFox VoidGuard detected: [Wed Jun 03 16:25:42.444570 2026] [authz_core:error] [pid 2977433:tid ... show more AetherFox VoidGuard detected: [Wed Jun 03 16:25:42.444570 2026] [authz_core:error] [pid 2977433:tid 2977455] [client 158.94.210.233:41584] AH01630: client denied by server configuration: proxy:https://[MASKED]/ [Wed Jun 03 16:25:43.643561 2026] [authz_core:error] [pid 2977433:tid 2977449] [client 158.94.210.233:41584] AH01630: client denied by server configuration: proxy:https://[MASKED]/ [Wed Jun 03 16:25:46.373710 2026] [authz_core:error] [pid 2977433:tid 2977437] [client 158.94.210.233:41590] AH01630: client denied by server configuration: proxy:https://[MASKED]/.env [Wed Jun 03 16:25:46.882745 2026] [authz_core:error] [pid 2977433:tid 2977448] [client 158.94.210.233:41590] AH01630: client denied by server configuration: proxy:https://[MASKED]/.env.backup [Wed Jun 03 16:25:48.146217 2026] [authz_core:error] [pid 2977433:tid 2977468] [client 158.94.210.233:41590] AH01630: client denied by server configuration: proxy:https://[MASKED]/.env.old ... show less	Bad Web Bot Web App Attack
🇦🇩 bakunin1848	2026-06-03 15:42:04 (6 hours ago)	Firewall IPS Detection on 03-06-2026 at 17:42:04	Port Scan Exploited Host
🇩🇪 dbmwebdesign	2026-06-03 14:50:04 (7 hours ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇦🇹 René Hickersberger	2026-06-03 14:37:15 (7 hours ago)	malicious bot detected: violations="hit-honeypot"; user_agent="Mozilla/5.0 (Macintosh; Intel Mac OS ... show more malicious bot detected: violations="hit-honeypot"; user_agent="Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.4 Safari/605.1.15" show less	Web App Attack
Anonymous	2026-06-03 14:34:37 (7 hours ago)	Aggressive web scan	Web App Attack
🇦🇩 bakunin1848	2026-06-03 14:33:05 (7 hours ago)	Firewall IPS Detection on 03-06-2026 at 16:33:05	Port Scan Exploited Host
🇩🇪 macrob	2026-06-03 13:56:17 (8 hours ago)	2026/06/03 13:56:15 [error] 832606#832606: 278200712 access forbidden by rule, client: 158.94.210.2 ... show more 2026/06/03 13:56:15 [error] 832606#832606: 278200712 access forbidden by rule, client: 158.94.210.233, server: bonocom.org, request: "GET /.env HTTP/2.0", host: "bonocom.org" 2026/06/03 13:56:15 [error] 832606#832606: 278200725 access forbidden by rule, client: 158.94.210.233, server: bonocom.org, request: "GET /.env.backup HTTP/2.0", host: "bonocom.org" 2026/06/03 13:56:16 [error] 832606#832606: 278200743 access forbidden by rule, client: 158.94.210.233, server: bonocom.org, request: "GET /.env.old HTTP/2.0", host: "bonocom.org" ... show less	Web App Attack

Showing 1 to 15 of 598 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 186.96.145.241

🇨🇦 143.110.223.69

🇸🇬 47.129.246.126

🇸🇬 45.78.204.254

🇺🇸 44.244.57.21

🇩🇪 43.228.157.17

🇰🇷 43.200.179.60

🇺🇸 37.140.223.200

🇺🇸 37.140.223.157

🇺🇸 37.140.223.49

🇺🇸 18.145.33.32

🇸🇬 18.140.243.39

🇸🇬 13.214.132.17

🇫🇷 5.39.49.245

🇺🇸 3.235.223.20

🇨🇳 222.189.98.67

🇩🇪 217.181.92.86

🇩🇪 217.181.91.85

🇹🇼 212.115.54.84

🇺🇸 203.161.39.197