JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 164.92.206.94

164.92.206.94 was found in our database!

This IP was reported 325 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 164.92.206.94

Whois 164.92.206.94

IP Abuse Reports for 164.92.206.94:

This IP address has been reported a total of 325 times from 216 distinct sources. 164.92.206.94 was first reported on April 16th 2025, and the most recent report was 22 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 WinnieHoneypots	2026-06-03 08:19:48 (17 hours ago)	Spraying garbage or empty requests on HTTP/S - [\x16\x03\x01\x01\x0C\x01\x00\x01\x08\x03\x03\xFB\xA7 ... show more Spraying garbage or empty requests on HTTP/S - [\x16\x03\x01\x01\x0C\x01\x00\x01\x08\x03\x03\xFB\xA7], obvious automated scanner, botnet or whatever scriptkiddie crap could that be show less	Port Scan Web App Attack
🇺🇸 bulkvm.com	2026-06-03 07:28:39 (18 hours ago)	[bulkvm.com/honeypot] Web application vulnerability scan. Port: 39602, request: GET /solr/admin/info ... show more [bulkvm.com/honeypot] Web application vulnerability scan. Port: 39602, request: GET /solr/admin/info/system HTTP/1.1 , user-agent: Go-http-client/1.1, Time: 2026-06-03 07:28:33 UTC show less	Web App Attack
🇺🇸 CBJ	2026-06-03 06:26:17 (19 hours ago)	fail2ban: apache-proxy ...	Web App Attack
🇩🇪 Hary74656	2026-06-03 06:11:22 (19 hours ago)	[Wed Jun 03 08:11:12.091565 2026] [core:info] [pid 48123:tid 48312] [client 164.92.206.94:18840] AH0 ... show more [Wed Jun 03 08:11:12.091565 2026] [core:info] [pid 48123:tid 48312] [client 164.92.206.94:18840] AH00128: File does not exist: /home/harald/www/default_host/solr/admin/info/system ... show less	Bad Web Bot
🇫🇷 SiyCah	2026-06-03 06:00:12 (20 hours ago)	164.92.206.94 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time ... show more 164.92.206.94 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time wasted: 4s. Total bytes sent by tarpit: 262B. Report generated by Endlessh Report Generator v1.2.3 show less	Brute-Force Port Scan SSH Hacking
🇩🇪 Enno	2026-06-03 05:38:51 (20 hours ago)	P04::Fail2Ban: automated bot scanning / credential probing detected.	Web App Attack Bad Web Bot
🇺🇸 conrad10781	2026-06-03 05:14:14 (20 hours ago)	nginx-direct-ip	Port Scan
Anonymous	2026-06-03 04:04:00 (22 hours ago)	Http Port:80 (http_status:400) - Agent:-	Web App Attack
🇧🇷 diego	2026-06-03 03:55:20 (22 hours ago)	[probe-44-49] 2026-06-03 03:40:13, Client: 164.92.206.94, Protocol: 6, Unauthorized activity to HTTP ... show more [probe-44-49] 2026-06-03 03:40:13, Client: 164.92.206.94, Protocol: 6, Unauthorized activity to HTTP: GET / show less	Web App Attack
🇯🇵 joehorn.tw	2026-06-03 02:56:40 (23 hours ago)	2026-06-03T10:56:23.789890+08:00 Galaxy postfix/smtpd[597889]: lost connection after STARTTLS from u ... show more 2026-06-03T10:56:23.789890+08:00 Galaxy postfix/smtpd[597889]: lost connection after STARTTLS from unknown[164.92.206.94] 2026-06-03T10:56:39.599216+08:00 Galaxy postfix/smtpd[597889]: improper command pipelining after CONNECT from unknown[164.92.206.94]: \026\003\003\001\246\001\000\001\242\003\003\025\025p2\v\2631w\3468\273S\261\2179tJ\267G0Dmt\022\000\246\2253\002\311\024\344 wF\330\344Jc\310\250\365\003\270\004,\035n]\035\307\2717\335\203Z\225\302\226\335\207\310\237\212\244\000\212\000\026\0003\000g\300\236\300\242\000\236\0009\000k\300\237\300\243\000\237 2026-06-03T10:56:39.870900+08:00 Galaxy postfix/smtpd[597889]: lost connection after CONNECT from unknown[164.92.206.94] ... show less	Email Spam
🇩🇪 dispaisyenterprises	2026-06-03 01:06:45 (1 day ago)	Honeypot [fra-de-honeypot]: HTTP/1.1 request on 18789 GET /query?q=SHOW+DIAGNOSTICS User-Agent: Go- ... show more Honeypot [fra-de-honeypot]: HTTP/1.1 request on 18789 GET /query?q=SHOW+DIAGNOSTICS User-Agent: Go-http-client/1.1; 18789 [3] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇦🇺 LiftUp Hosting	2026-06-03 00:31:00 (1 day ago)	Honeypot hit: Unauthorized traffic (273 bytes of payload); 9042 [3] TCP	Port Scan
🇷🇺 6o6ep	2026-06-02 23:31:19 (1 day ago)	GET / HTTP/1.0	Port Scan Bad Web Bot
Anonymous	2026-06-02 23:03:41 (1 day ago)	Honeypot hit: HTTP/1.1 request on 8000 GET /cgi-bin/authLogin.cgi User-Agent: Go-http-client/1.1; 8 ... show more Honeypot hit: HTTP/1.1 request on 8000 GET /cgi-bin/authLogin.cgi User-Agent: Go-http-client/1.1; 8000 [3] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇩🇪 Sparxx	2026-06-02 21:44:54 (1 day ago)	2026-06-02T23:44:33.022288+02:00 srv postfix/submission/smtpd[420463]: lost connection after STARTTL ... show more 2026-06-02T23:44:33.022288+02:00 srv postfix/submission/smtpd[420463]: lost connection after STARTTLS from unknown[164.92.206.94] 2026-06-02T23:44:54.125513+02:00 srv postfix/submission/smtpd[420463]: improper command pipelining after CONNECT from unknown[164.92.206.94]: \026\003\003\001\246\001\000\001\242\003\003)zP\020v\213\362\332Kw\373\306\236\251\277]H\270\031=\016m\021_\bi<\255\217\302\271\033 O\324\257\237\331xI+6\037\2357\204WX\177^)OIs\372k\301\273\004\367P7\354\221\311\000\212\000\026\0003\000g\300\236\300\242\000\236\0009\000k\300\237\300\243\000\237 2026-06-02T23:44:54.130007+02:00 srv postfix/submission/smtpd[420463]: lost connection after UNKNOWN from unknown[164.92.206.94] ... show less	Brute-Force

Showing 31 to 45 of 325 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.141.46.157

🇧🇪 198.235.24.184

🇲🇽 189.178.36.53

🇧🇴 181.115.171.57

🇺🇸 144.126.217.239

🇺🇸 98.20.36.34

🇺🇸 76.143.253.230

🇺🇸 57.141.0.9

🇸🇬 43.172.195.100

🇨🇳 220.202.112.221

🇪🇹 196.188.116.56

🇳🇱 185.223.235.31

🇲🇴 182.93.50.90

🇳🇱 89.21.67.145

🇱🇹 77.90.185.79

🇩🇪 69.5.169.63

🇩🇪 69.5.169.27

🇺🇸 64.23.136.159

🇺🇸 49.51.248.237

🇺🇸 18.217.208.51