JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.92.243.210

91.92.243.210 was found in our database!

This IP was reported 395 times. Confidence of Abuse is 100%: ?

100%

ISP	OMEGATECH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS202412
Domain Name	omegatech.sc
Country	🇳🇱 Netherlands
City	Rotterdam, South Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.92.243.210

Whois 91.92.243.210

IP Abuse Reports for 91.92.243.210:

This IP address has been reported a total of 395 times from 95 distinct sources. 91.92.243.210 was first reported on November 8th 2023, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 e.fierstra	2026-06-03 21:20:36 (1 hour ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-06-03 21:05:31 (2 hours ago)	Accessed trap at '/.env'	Web App Attack
🇮🇩 soc-yk	2026-06-03 11:42:11 (11 hours ago)	Type: suspicious_network_activity Risk: 91 Events: 49 Evidence: - Persistent suspicious network act ... show more Type: suspicious_network_activity Risk: 91 Events: 49 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Threat escalation behavior observed show less	Port Scan Hacking
🇦🇺 nzhost.co.nz	2026-06-03 07:17:04 (15 hours ago)	$f2bV_matches	Hacking Brute-Force
🇳🇱 Site.eu	2026-06-03 06:50:40 (16 hours ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-06-03 06:30:05 (16 hours ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇰🇷 stypr	2026-06-03 04:50:39 (18 hours ago)	Malicious activity detected on HTTP/HTTPS	Hacking Brute-Force Web App Attack
🇺🇸 kosada.com	2026-06-03 02:24:50 (20 hours ago)	Web vulnerability probing: /config.yaml	Web App Attack
🇬🇧 Xiaohack	2026-06-02 17:53:32 (1 day ago)	2026-06-02 19:53:31 WARNING: 404 list at URL: /static/js/flashMessages.js.map - Referrer: No referre ... show more 2026-06-02 19:53:31 WARNING: 404 list at URL: /static/js/flashMessages.js.map - Referrer: No referrer - List: 404 Not Found: The requested URL was not found on the server. If you entered the URL manually please check your spelling and try again. - IP: 91.92.243.210 - User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 [in routes : not_found_error : 30] 2026-06-02 19:53:31 WARNING: 404 list at URL: /static/js/cookies.js.map - Referrer: No referrer - List: 404 Not Found: The requested URL was not found on the server. If you entered the URL manually please check your spelling and try again. - IP: 91.92.243.210 - User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 [in routes : not_found_error : 30] 2026-06-02 19:53:31 WARNING: 404 list at URL: /config.json - Referrer: No referrer - List: 404 Not Found: The requested URL was not found on the server. If you en ... show less	Open Proxy Bad Web Bot
🇬🇧 consul.to	2026-06-02 17:12:13 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 Viveronese	2026-06-02 16:13:39 (1 day ago)	HTTP vulnerability scanning	Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 16:11:28 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 91.92.243.210 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 91.92.243.210 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 12:11:24.979418 2026] [security2:error] [pid 21524:tid 21524] [client 91.92.243.210:62784] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ferrarapanent.com"] [uri "/.env"] [unique_id "ah8ArBOYT5Hdi5bnNDE63AAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 14:33:32 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 91.92.243.210 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 91.92.243.210 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 10:33:29.335094 2026] [security2:error] [pid 8028:tid 8028] [client 91.92.243.210:58663] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fernfieldbrooks.com"] [uri "/.env"] [unique_id "ah7puYiz7-47oI-EhP-PFQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 tentwentyfour	2026-06-02 13:43:27 (1 day ago)	Blocked for probing for sensitive web application components	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-02 12:35:11 (1 day ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 15 of 395 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 201.217.246.86

🇻🇳 116.110.7.37

🇻🇳 113.190.252.33

🇸🇬 103.250.11.63

🇺🇬 102.203.209.213

🇷🇴 80.94.92.171

🇸🇬 2404:6800:4003:c06::12a

🇨🇳 175.151.120.94

🇩🇪 8.211.20.67

🇩🇪 217.154.197.64

🇫🇷 213.32.23.140

🇳🇱 192.142.24.39

🇩🇪 167.94.146.61

🇩🇿 154.121.42.231

🇨🇳 124.234.108.205

🇺🇸 93.114.74.131

🇹🇷 88.248.15.56

🇦🇷 45.227.218.39

🇮🇩 45.198.148.27

🇺🇸 192.0.84.142