JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.92.241.254

91.92.241.254 was found in our database!

This IP was reported 466 times. Confidence of Abuse is 100%: ?

100%

ISP	OMEGATECH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS202412
Domain Name	omegatech.sc
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.92.241.254

Whois 91.92.241.254

IP Abuse Reports for 91.92.241.254:

This IP address has been reported a total of 466 times from 201 distinct sources. 91.92.241.254 was first reported on November 7th 2023, and the most recent report was 29 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ger-stg-sifi1	2026-05-13 22:56:24 (3 weeks ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
Anonymous	2026-05-13 21:50:55 (3 weeks ago)	Aggressive web scan	Web App Attack
🇬🇧 consul.to	2026-05-13 21:46:10 (3 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 SchorelWeb	2026-05-13 15:47:35 (3 weeks ago)	Cluster member (Omitted) (US/United States/-) said, DENY 91.92.241.254, Reason:[Security Patte(Omitt ... show more Cluster member (Omitted) (US/United States/-) said, DENY 91.92.241.254, Reason:[Security Patte(Omitted) Match: \.git/ (URL: /.git/HEAD)] show less	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-05-13 15:35:05 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 91.92.241.254 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 91.92.241.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 11:34:59.520490 2026] [security2:error] [pid 20024:tid 20024] [client 91.92.241.254:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gibit.me"] [uri "/.git/HEAD"] [unique_id "agSaI6rbBLt0ZXkHcPFCaQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ecs.ge	2026-05-13 15:25:43 (3 weeks ago)	Automatic Fail2Ban report from jail plesk-nginx-probes: multiple matching events detected.	Port Scan Web App Attack
🇺🇸 directorioeducativo.com	2026-05-13 14:02:55 (3 weeks ago)	GET URL: "/.git/HEAD"Agent: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHT ... show more GET URL: "/.git/HEAD"Agent: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36" show less	Web App Attack
🇦🇹 René Hickersberger	2026-05-13 13:02:32 (3 weeks ago)	malicious bot detected: violations="hit-honeypot"; user_agent="Mozilla/5.0 (Macintosh; ... show more malicious bot detected: violations="hit-honeypot"; user_agent="Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" show less	Web App Attack
🇦🇪 CG	2026-05-13 10:25:22 (3 weeks ago)	Web application attack, Automated scan	Web App Attack Hacking SQL Injection
🇮🇳 evicky2002	2026-05-13 07:18:32 (3 weeks ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇦🇩 bakunin1848	2026-05-13 07:14:05 (3 weeks ago)	Firewall IPS Detection on 13-05-2026 at 09:14:05	Port Scan Exploited Host
🇩🇪 IVski	2026-05-13 06:55:46 (3 weeks ago)	IVski WAF \| Sensitive file probe detected - looking for .env, .git, backups or credentials	Port Scan Brute-Force Web App Attack
🇮🇹 dwmp	2026-05-13 04:53:33 (3 weeks ago)	Url probing: /.git/HEAD	Web App Attack
🇦🇹 René Hickersberger	2026-05-13 04:13:45 (3 weeks ago)	malicious bot detected: violations="hit-honeypot"; user_agent="Mozilla/5.0 (Macintosh; Intel Mac OS ... show more malicious bot detected: violations="hit-honeypot"; user_agent="Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.4 Safari/605.1.15" show less	Web App Attack
🇳🇱 Site.eu	2026-05-13 03:43:36 (3 weeks ago)	Excessive multi-domain requests	Brute-Force

Showing 376 to 390 of 466 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 204.220.180.205

🇮🇶 185.18.224.29

🇵🇭 175.176.41.71

🇫🇷 163.5.241.53

🇵🇰 103.166.103.173

🇿🇦 102.129.60.126

🇵🇱 80.49.158.68

🇺🇸 64.62.197.6

🇳🇱 45.148.10.121

🇳🇱 185.226.197.34

🇳🇱 185.89.249.3

🇫🇷 163.5.241.46

🇬🇧 143.110.168.160

🇨🇳 115.231.78.11

🇮🇳 106.200.15.235

🇮🇹 79.10.144.18

🇮🇪 18.201.138.131

🇮🇪 4.210.91.174

🇫🇮 209.85.167.43

🇭🇰 199.45.154.112