JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 92.44.163.210

92.44.163.210 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 36%: ?

36%

ISP	Tellcom Ankara-Cayyolu
Usage Type	Fixed Line ISP
ASN	AS34984
Hostname(s)	host-92-44-163-210.reverse.superonline.net
Domain Name	tellcom.com.tr
Country	🇹🇷 Turkey
City	Istanbul, Istanbul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 92.44.163.210

Whois 92.44.163.210

IP Abuse Reports for 92.44.163.210:

This IP address has been reported a total of 28 times from 18 distinct sources. 92.44.163.210 was first reported on December 12th 2024, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-23 15:14:56 (16 hours ago)	fail2ban apache-modsecurity web [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [uri "/"]	Web App Attack
Anonymous	2026-06-22 20:47:02 (1 day ago)	Malicious activity detected	Hacking Web App Attack
🇩🇪 CK_beats	2026-06-11 16:30:03 (1 week ago)	Blocked by os-abuseipdb on OPNsense firewall KN-FW01; 28 hits, proto=tcp, ports=443,80	Port Scan Hacking
Anonymous	2026-06-10 00:10:05 (2 weeks ago)	Web App Attack, Hacking	Hacking Web App Attack
🇩🇪 HandyTreff.de	2026-06-09 16:11:37 (2 weeks ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -45.553 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -45.553 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Sa show less	Web App Attack Bad Web Bot
🇮🇹 Progetto1	2026-05-10 20:30:07 (1 month ago)	Multiple exploit attempts	Hacking Brute-Force Exploited Host Web App Attack
Anonymous	2026-05-09 22:13:02 (1 month ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-02 15:53:50 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 92.44.163.210 (host-92-44-163-210.reverse.super ... show more (mod_security) mod_security (id:210730) triggered by 92.44.163.210 (host-92-44-163-210.reverse.superonline.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 02 11:53:44.082197 2026] [security2:error] [pid 17758:tid 17758] [client 92.44.163.210:26174] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|civilwarzone.com\|F\|2"] [data ".dll"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "civilwarzone.com"] [uri "/~site/Scripts_ExternalRedirect/ExternalRedirect.dll"] [unique_id "afYeCG7yIBc833Dy2fxGdgAAAAo"], referer: https://civilwarzone.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-01 22:11:43 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 92.44.163.210 (host-92-44-163-210.reverse.super ... show more (mod_security) mod_security (id:210730) triggered by 92.44.163.210 (host-92-44-163-210.reverse.superonline.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 01 18:11:39.284352 2026] [security2:error] [pid 32391:tid 32391] [client 92.44.163.210:12726] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.azcrittergetter.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.azcrittergetter.com"] [uri "/csfitz.com"] [unique_id "afUlG-CDCSE7w3siJt6QaQAAADM"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Gabriel Camargo	2026-05-01 07:15:15 (1 month ago)	92.44.163.210 - - [01/May/2026:02:14:56 -0500] "GET / HTTP/1.1" 301 178 "https://www.google.com/" "M ... show more 92.44.163.210 - - [01/May/2026:02:14:56 -0500] "GET / HTTP/1.1" 301 178 "https://www.google.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" 92.44.163.210 - - [01/May/2026:02:15:06 -0500] "GET / HTTP/1.1" 301 178 "https://www.google.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" 92.44.163.210 - - [01/May/2026:02:15:15 -0500] "GET / HTTP/1.1" 301 178 "http://www.labmontes.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" ... show less	Brute-Force SSH
🇺🇸 LotPhantom	2026-04-24 02:23:09 (2 months ago)	2026/04/24 02:23:09 [error] 1325697#1325697: 15110 connect() failed (111: Connection refused) while ... show more 2026/04/24 02:23:09 [error] 1325697#1325697: 15110 connect() failed (111: Connection refused) while connecting to upstream, client: 92.44.163.210, server: wynnesmiles.com, request: "GET / HTTP/2.0", upstream: "http://127.0.0.1:4001/", host: "www.wynnesmiles.com" ... show less	Web App Attack
Anonymous	2026-04-21 17:47:02 (2 months ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 jkcunningham	2026-04-20 06:55:05 (2 months ago)	Crawler ignores robots.txt. Loads nothing but index html.	Bad Web Bot
🇺🇸 jkcunningham	2026-04-20 06:55:05 (2 months ago)	Referer spam. Loads html only.	Bad Web Bot Web Spam
Anonymous	2026-04-19 17:40:02 (2 months ago)	\| [Dangerous/Turkey] Aggressive IP 92.44.163.210 (~30 hits). Type: DoS Defender- Web server 400 erro ... show more \| [Dangerous/Turkey] Aggressive IP 92.44.163.210 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a880:400:d1:0:4:454c:f001

🇧🇩 223.27.84.58

🇳🇱 185.223.235.8

🇸🇬 173.44.33.102

🇺🇸 162.216.149.203

🇨🇳 117.81.212.152

🇱🇹 46.29.234.126

🇩🇪 213.209.159.231

🇺🇸 209.85.210.170

🇧🇷 200.202.98.162

🇭🇰 154.221.28.214

🇺🇸 147.185.132.184

🇹🇷 85.106.7.41

🇱🇹 77.90.185.80

🇺🇸 74.82.47.56

🇨🇳 8.138.155.88

🇮🇷 5.234.193.233

🇱🇹 2.59.162.146

🇹🇷 213.128.70.19

🇸🇾 212.11.201.194