JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 164.92.73.153

164.92.73.153 was found in our database!

This IP was reported 46 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	Santa Clara, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 164.92.73.153

Whois 164.92.73.153

IP Abuse Reports for 164.92.73.153:

This IP address has been reported a total of 46 times from 32 distinct sources. 164.92.73.153 was first reported on July 15th 2025, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Aetherweb Ark	2026-06-16 21:56:24 (13 hours ago)	(mod_security) mod_security (id:949110) triggered by 164.92.73.153 (US/United States/-): N in the la ... show more (mod_security) mod_security (id:949110) triggered by 164.92.73.153 (US/United States/-): N in the last X secs show less	Web App Attack
🇨🇭 TheCoon	2026-06-16 21:15:01 (14 hours ago)	Automated: Credential theft attempt - JSON bomb served	Web App Attack Hacking
🇩🇪 Petros Stefanakis	2026-06-16 15:26:28 (20 hours ago)	Port Scan detected from 164.92.73.153 (US/United States/-).	Port Scan
🇵🇱 srebrakowski.com	2026-06-16 15:02:41 (20 hours ago)	crowdsec/crowdsecurity/appsec-vpatch	Brute-Force
🇩🇪 4server	2026-06-16 14:49:50 (20 hours ago)	[TueJun1616:49:45.3211882026][security2:error][pid1154380:tid1154406][client164.92.73.153:0]ModSecur ... show more [TueJun1616:49:45.3211882026][security2:error][pid1154380:tid1154406][client164.92.73.153:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Stringmatchwithin\".asa/.asax/.ascx/.backup/.bak/.bat/.cdx/.cer/.cfg/.cmd/.com/.config/.conf/.cs/.csproj/.csr/.dat/.db/.dbf/.dll/.dos/.htr/.htw/.ida/.idc/.idq/.inc/.ini/.key/.licx/.lnk/.log/.mdb/.old/.pass/.pdb/.pol/.printer/.pwd/.rdb/.resources/.resx/.sql/.swp/.sys/.vb/.vbs/.vbproj/.vsdisco/.webinfo/.xsx/\"atTX:extension.[file\"/etc/apache2/conf.d/modsec_rules/00_asl_zz_strict.conf\"][line\"91\"][id\"390716\"][rev\"2\"][msg\"Atomicorp.comWAFRules:URLfileextensionisrestrictedbypolicy\"][data\".backup\"][severity\"ERROR\"][hostname\"mail.danielasilvia.ch\"][uri\"/.env.backup\"][unique_id\"ajFiicPBq2nx2D_R5kxcywAAAFc\"]\,referer:https://www.google.com/search\?q=mail.danielasilvia.ch show less	Port Scan Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-16 14:45:06 (20 hours ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇩🇪 paissangroup	2026-06-16 01:22:42 (1 day ago)	Multiple WAF Violations	Web App Attack
🇩🇪 langenkamp-media	2026-06-15 19:49:19 (1 day ago)	Fail2Ban: Banned from jail nginx-scan-critical on 3dausdu.de	Web App Attack
🇺🇸 Rocky Mountain Bioengineering Symposium	2026-06-15 14:51:33 (1 day ago)	164.92.73.153 - - [15/Jun/2026:08:51:33 -0600] "HEAD /.git/config HTTP/1.1" 300 7602 "https://www.go ... show more 164.92.73.153 - - [15/Jun/2026:08:51:33 -0600] "HEAD /.git/config HTTP/1.1" 300 7602 "https://www.google.com/search?q=ibsis.org" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ChatGPT-User/1.0; +https://openai.com/bot)" ... show less	Web App Attack
🇬🇧 consul.to	2026-06-15 13:48:30 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 masterguru	2026-06-15 11:33:42 (1 day ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-197)	Hacking Web App Attack
🇨🇭 ALPHANET	2026-06-15 11:27:58 (2 days ago)	web exploits	Hacking Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 10:44:38 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 164.92.73.153 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 164.92.73.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 06:44:33.923154 2026] [security2:error] [pid 1796:tid 1796] [client 164.92.73.153:49304] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "igolfallday.com"] [uri "/.env.local"] [unique_id "ai_XkS7HponpNq8ohFOWKgAAAAI"], referer: https://www.google.com/search?q=igolfallday.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Dennis	2026-06-15 10:26:52 (2 days ago)	164.92.73.153 has been banned for triggering http-sensitive-files (5 events over 46.672313ms).	Brute-Force Web App Attack
🇩🇪 curiosity	2026-06-15 10:13:33 (2 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/appsec-vpatch	Web App Attack

Showing 1 to 15 of 46 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 91.92.40.7

🇪🇨 45.224.97.241

🇳🇱 45.148.10.147

🇨🇳 39.104.64.139

🇺🇿 195.158.9.163

🇷🇺 176.97.37.222

🇧🇷 168.0.227.214

🇮🇳 167.71.227.158

🇻🇳 113.185.106.202

🇺🇸 66.132.186.251

🇦🇲 5.77.207.38

🇳🇱 5.61.209.224

🇬🇪 2.57.217.229

🇺🇸 2607:f8b0:4001:c6c::121

🇸🇬 194.5.82.65

🇳🇱 167.99.32.217

🇬🇧 118.193.65.209

🇨🇳 111.32.153.180

🇫🇷 85.217.140.47

🇫🇷 83.171.226.124