JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.92.243.216

91.92.243.216 was found in our database!

This IP was reported 948 times. Confidence of Abuse is 100%: ?

100%

ISP	OMEGATECH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS202412
Domain Name	omegatech.sc
Country	🇳🇱 Netherlands
City	Rotterdam, South Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.92.243.216

Whois 91.92.243.216

IP Abuse Reports for 91.92.243.216:

This IP address has been reported a total of 948 times from 226 distinct sources. 91.92.243.216 was first reported on February 15th 2024, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 i-turnradio.nl	2026-06-05 10:05:01 (1 hour ago)	2026-06-05 @ 12:05:01 (CET) ~ Blocked for trying to access: /wp-login.php	Web App Attack
🇮🇩 securejdprop	2026-06-05 09:25:24 (2 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET DROP Spamhaus D ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET DROP Spamhaus DROP Listed Traffic Inbound group 15). Ip 91.92.243.216 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-05 09:25:23.164581309 +0000 UTC show less	Hacking Web App Attack
🇩🇪 london2038.com	2026-06-05 08:58:43 (2 hours ago)	Probing for exploits 91.92.243.216 - - [05/Jun/2026:09:39:49 +0200] "POST /wp-login.php HTTP/1.1" 30 ... show more Probing for exploits 91.92.243.216 - - [05/Jun/2026:09:39:49 +0200] "POST /wp-login.php HTTP/1.1" 301 169 "http://wiki.<REDACTED>/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.243.216 - - [05/Jun/2026:10:58:39 +0200] "POST /wp-login.php HTTP/1.1" 301 169 "http://forum.<REDACTED>/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" show less	Hacking Web App Attack
🇮🇩 soc-yk	2026-06-05 08:36:15 (3 hours ago)	Type: credential_attack Risk: 51 Events: 385 Evidence: - Repeated authentication attack activity de ... show more Type: credential_attack Risk: 51 Events: 385 Evidence: - Repeated authentication attack activity detected - Credential abuse behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Brute-Force SSH
🇩🇪 betternews.app	2026-06-05 08:07:41 (3 hours ago)	"a web request contained keyword "wp-login.php"; Suspicious URL: /wp-login.php"	Web Spam Blog Spam Brute-Force Bad Web Bot Web App Attack
🇹🇷 Detmach	2026-06-05 07:56:18 (3 hours ago)	Security attack detected. Multiple failed attempts from 91.92.243.216. IP banned for 1440 minutes at ... show more Security attack detected. Multiple failed attempts from 91.92.243.216. IP banned for 1440 minutes at 05.06.2026 10:56:09. Failed attempts: 1 show less	Brute-Force
🇨🇿 kronos	2026-06-05 07:03:29 (4 hours ago)	IDS: ET DROP Spamhaus DROP Listed Traffic Inbound group 15 \| SID:2400014 \| session_sigs:2	Hacking
🇷🇴 Fn4ticHz	2026-06-05 06:40:13 (5 hours ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇧🇪 Saec	2026-06-05 06:15:04 (5 hours ago)	Jarvis auto-ban: CF honeypot path /wp-login.php (6× on saec.me)	Port Scan Web App Attack
Anonymous	2026-06-05 05:45:03 (6 hours ago)	Unauthorized SSH login attempts	Brute-Force SSH
🇺🇦 URAN Publishing Service	2026-06-05 04:17:37 (7 hours ago)	91.92.243.216 - - [05/Jun/2026:07:17:37 +0300] "POST /wp-login.php HTTP/1.1" 404 762 "http://pte.ust ... show more 91.92.243.216 - - [05/Jun/2026:07:17:37 +0300] "POST /wp-login.php HTTP/1.1" 404 762 "http://pte.ust.edu.ua/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" ... show less	Web App Attack
🇫🇷 [email protected]	2026-06-05 03:57:24 (7 hours ago)	PrestaShop Security Module: Calls WordPress paths probing known vulnerabilities	Web App Attack
🇫🇮 as211431.net	2026-06-05 03:24:23 (8 hours ago)	Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /wp-admin/ UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇧🇷 Peregrine	2026-06-05 03:21:13 (8 hours ago)	Fail2Ban Jail s2: tomcat-honeypot \| Evidence: - 91.92.243.216 - - [05/Jun/2026:00:17:35 -0300] "POST ... show more Fail2Ban Jail s2: tomcat-honeypot \| Evidence: - 91.92.243.216 - - [05/Jun/2026:00:17:35 -0300] "POST /wp-login.php HTTP/1.1" 404 414 - 91.92.243.216 - - [05/Jun/2026:00:17:36 -0300] "GET /wp-admin/ HTTP/1.1" 404 414 show less	Bad Web Bot
🇬🇧 Oakley	2026-06-05 03:03:48 (8 hours ago)	(mod_security) mod_security (id:900191) triggered by 91.92.243.216 (US/United States/-): 5 in the la ... show more (mod_security) mod_security (id:900191) triggered by 91.92.243.216 (US/United States/-): 5 in the last 900 secs show less	Web App Attack Hacking

Showing 1 to 15 of 948 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 207.219.221.53

🇲🇽 201.149.53.243

🇲🇽 201.145.114.226

🇩🇪 167.94.145.22

🇩🇪 157.230.18.133

🇲🇽 201.145.112.12

🇲🇽 200.77.172.159

🇺🇸 162.17.134.93

🇺🇸 91.132.124.146

🇨🇳 36.32.70.205

🇬🇧 35.203.210.53

🇺🇸 20.65.194.85

🇺🇸 216.180.246.244

🇮🇳 216.10.245.205

🇧🇷 200.196.50.91

🇧🇷 200.155.66.2

🇧🇷 200.108.174.4

🇮🇪 185.18.221.169

🇯🇵 164.52.24.182

🇭🇰 154.81.14.172