JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 158.94.210.233

158.94.210.233 was found in our database!

This IP was reported 617 times. Confidence of Abuse is 100%: ?

100%

ISP	OMEGATECH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS202412
Domain Name	omegatech.sc
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 158.94.210.233

Whois 158.94.210.233

IP Abuse Reports for 158.94.210.233:

This IP address has been reported a total of 617 times from 209 distinct sources. 158.94.210.233 was first reported on April 28th 2026, and the most recent report was 7 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Epimetheus	2026-06-04 01:12:36 (16 hours ago)	Unauthorized access attempts: [GET] /.git/HEAD UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537 ... show more Unauthorized access attempts: [GET] /.git/HEAD UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 show less	Web App Attack
Anonymous	2026-06-04 01:09:07 (16 hours ago)	IncogNET WAF local CrowdSec decision. Scenario=crowdsecurity/http-sensitive-files; Action=ban; Event ... show more IncogNET WAF local CrowdSec decision. Scenario=crowdsecurity/http-sensitive-files; Action=ban; Events=6; Hosts=admin.incogvps.com; Paths=/api/.env,/app/.env,/laravel/.env,/public/.env,/public_html/.env; Country=NL; ASN=214943 Railnet LLC show less	Hacking Web App Attack
🇦🇹 René Hickersberger	2026-06-03 23:53:26 (18 hours ago)	malicious bot detected: violations="hit-honeypot"; user_agent="Mozilla/5.0 (Kubuntu; Linux x86_64) A ... show more malicious bot detected: violations="hit-honeypot"; user_agent="Mozilla/5.0 (Kubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" show less	Web App Attack
🇫🇷 SpaceHost-Server	2026-06-03 22:27:26 (19 hours ago)		Brute-Force Web App Attack
🇳🇱 Mangelot Hosting	2026-06-03 20:58:02 (21 hours ago)	(modsecurity) srv101 ModSecurity 158.94.210.233 (NL/The Netherlands/-): 10 in the last 3600 secs; Po ... show more (modsecurity) srv101 ModSecurity 158.94.210.233 (NL/The Netherlands/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 antlac1	2026-06-03 20:25:49 (21 hours ago)	crowdsecurity/http-sensitive-files	Brute-Force Web App Attack
🇺🇸 Epimetheus	2026-06-03 20:04:30 (22 hours ago)	Unauthorized access attempts: [GET] /.git/HEAD UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; r ... show more Unauthorized access attempts: [GET] /.git/HEAD UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:109.0) Gecko/20100101 Firefox/115.0 show less	Web App Attack
🇳🇴 Bots.go.to.hell	2026-06-03 18:29:52 (23 hours ago)	This IP was detected by CrowdSec triggering LePresidente/http-generic-403-bf	Web App Attack Brute-Force
🇬🇧 Smish	2026-06-03 17:29:39 (1 day ago)	HONEYPOT HIT --> Fail2ban time=1780507778 log=2026-06-03T18:29:38+01:00 ip=158.94.210.233 host=grafa ... show more HONEYPOT HIT --> Fail2ban time=1780507778 log=2026-06-03T18:29:38+01:00 ip=158.94.210.233 host=grafana.as210667.net method=GET uri="/.git/HEAD" status=404 ua="Mozilla/5.0 (X11; Linux x86_64; rv:136.0) Gecko/20100101 Firefox/136.0" ref="-" rid=9addce1699c28e6bfd70cdce4cdce9d8 show less	Web App Attack
🇳🇿 Antinson	2026-06-03 17:01:59 (1 day ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇭🇰 i553041	2026-06-03 16:46:58 (1 day ago)	158.94.210.233 - - [04/Jun/2026:00:46:56 +0800] "GET /laravel/.env HTTP/1.1" 401 0 "-" "Mozilla/5.0 ... show more 158.94.210.233 - - [04/Jun/2026:00:46:56 +0800] "GET /laravel/.env HTTP/1.1" 401 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" "158.94.210.233" 158.94.210.233 - - [04/Jun/2026:00:46:56 +0800] "GET /vendor/.env HTTP/1.1" 401 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" "158.94.210.233" 158.94.210.233 - - [04/Jun/2026:00:46:57 +0800] "GET /storage/.env HTTP/1.1" 401 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" "158.94.210.233" 158.94.210.233 - - [04/Jun/2026:00:46:57 +0800] "GET /config/.env HTTP/1.1" 401 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.9 ... show less	Brute-Force SSH
🇩🇪 gadix	2026-06-03 16:30:35 (1 day ago)	[03/Jun/2026:18:30:33.104694 +0200] aiBWqb3xQESbhSv-tmImGwAAAAg 158.94.210.233 40384 127.0.0.1 7081 ... show more [03/Jun/2026:18:30:33.104694 +0200] aiBWqb3xQESbhSv-tmImGwAAAAg 158.94.210.233 40384 127.0.0.1 7081 [03/Jun/2026:18:30:33.394688 +0200] aiBWqWIyjQZZ_MeUBRSvkwAAAAk 158.94.210.233 40400 127.0.0.1 7081 [03/Jun/2026:18:30:33.706888 +0200] aiBWqa2DRfAT5hNr2XkSNQAAABI 158.94.210.233 40402 127.0.0.1 7081 ... show less	Web App Attack
🇩🇪 AetherFox	2026-06-03 16:25:48 (1 day ago)	AetherFox VoidGuard detected: [Wed Jun 03 16:25:42.444570 2026] [authz_core:error] [pid 2977433:tid ... show more AetherFox VoidGuard detected: [Wed Jun 03 16:25:42.444570 2026] [authz_core:error] [pid 2977433:tid 2977455] [client 158.94.210.233:41584] AH01630: client denied by server configuration: proxy:https://[MASKED]/ [Wed Jun 03 16:25:43.643561 2026] [authz_core:error] [pid 2977433:tid 2977449] [client 158.94.210.233:41584] AH01630: client denied by server configuration: proxy:https://[MASKED]/ [Wed Jun 03 16:25:46.373710 2026] [authz_core:error] [pid 2977433:tid 2977437] [client 158.94.210.233:41590] AH01630: client denied by server configuration: proxy:https://[MASKED]/.env [Wed Jun 03 16:25:46.882745 2026] [authz_core:error] [pid 2977433:tid 2977448] [client 158.94.210.233:41590] AH01630: client denied by server configuration: proxy:https://[MASKED]/.env.backup [Wed Jun 03 16:25:48.146217 2026] [authz_core:error] [pid 2977433:tid 2977468] [client 158.94.210.233:41590] AH01630: client denied by server configuration: proxy:https://[MASKED]/.env.old ... show less	Bad Web Bot Web App Attack
🇦🇩 bakunin1848	2026-06-03 15:42:04 (1 day ago)	Firewall IPS Detection on 03-06-2026 at 17:42:04	Port Scan Exploited Host
🇩🇪 dbmwebdesign	2026-06-03 14:50:04 (1 day ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack

Showing 16 to 30 of 617 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.134

🇳🇱 109.236.50.3

🇲🇲 37.111.53.110

🇷🇴 2.57.121.25

🇭🇰 199.45.155.79

🇺🇸 195.184.76.220

🇳🇱 195.178.110.30

🇳🇱 190.2.135.111

🇨🇳 175.178.53.31

🇰🇷 121.153.60.137

🇧🇩 103.86.201.144

🇦🇷 45.181.167.34

🇮🇳 125.19.248.162

🇨🇳 120.77.223.211

🇺🇸 104.168.54.192

🇷🇺 94.243.9.55

🇫🇷 62.210.209.225

🇳🇱 45.148.10.147

🇮🇩 43.157.251.177

🇭🇰 199.45.155.106