JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 94.231.206.39

94.231.206.39 was found in our database!

This IP was reported 589 times. Confidence of Abuse is 100%: ?

100%

ISP	FR ONYPHE
Usage Type	Commercial
ASN	AS213412
Hostname(s)	wong.probe.onyphe.net
Domain Name	onyphe.io
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 94.231.206.39

Whois 94.231.206.39

IP Abuse Reports for 94.231.206.39:

This IP address has been reported a total of 589 times from 135 distinct sources. 94.231.206.39 was first reported on December 1st 2025, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇯🇵 mkaraki	2026-06-04 14:29:48 (2 hours ago)	1780583386 # Service_probe # SIGNATURE_SEND # source_ip:94.231.206.39 # dst_port:2095 ...	Port Scan
🇩🇪 anycast_ac	2026-06-04 13:56:11 (3 hours ago)	[mirai-detector honeypot] Inbound attack against our honeypot on tcp/2222 (ssh). Commands captured: ... show more [mirai-detector honeypot] Inbound attack against our honeypot on tcp/2222 (ssh). Commands captured: $ SSH-2.0-perlssh show less	DDoS Attack IoT Targeted Brute-Force
🇧🇷 diego	2026-06-04 01:45:20 (15 hours ago)	[probe-44-49] 2026-06-04 01:29:14, Client: 94.231.206.39, Protocol: 6, Unauthorized activity to HTTP ... show more [probe-44-49] 2026-06-04 01:29:14, Client: 94.231.206.39, Protocol: 6, Unauthorized activity to HTTP: GET / show less	Web App Attack
Anonymous	2026-06-03 21:40:39 (19 hours ago)	Heralding honeypot: pop3 on port 110	Brute-Force
🇺🇸 donarev419	2026-06-03 01:24:28 (1 day ago)	Connection to port 8015 with data transfer. Data preview: GET / HTTP/1.1 Host: 67.215.244.172:8015 ... show more Connection to port 8015 with data transfer. Data preview: GET / HTTP/1.1 Host: 67.215.244.172:8015 Connection: close User-Agent: Mozilla/5.0 (X11; Ubuntu; show less	Port Scan Hacking
🇲🇹 neilcaruana	2026-06-02 22:45:44 (1 day ago)	Sentinel detected an attack on port [8082]	Hacking
🇧🇷 modscleo4	2026-06-02 13:23:40 (2 days ago)	2026-06-02T10:23:40.195795-03:00 salada-de-fruta sshd[690038]: banner exchange: Connection from 94.2 ... show more 2026-06-02T10:23:40.195795-03:00 salada-de-fruta sshd[690038]: banner exchange: Connection from 94.231.206.39 port 40811: invalid format ... show less	Port Scan Brute-Force SSH
🇮🇳 Parth Maniar	2026-06-02 11:43:14 (2 days ago)	This IP address carried out 2 port scanning attempts on 01-06-2026. For more information or to repor ... show more This IP address carried out 2 port scanning attempts on 01-06-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇧🇬 MazenHost	2026-06-02 09:38:40 (2 days ago)	1780393120 - 06/02/2026 12:38:40 Host: 94.231.206.39/94.231.206.39 Port: 2000 TCP Blocked ...	Port Scan
🇩🇪 dispaisyenterprises	2026-06-02 05:15:45 (2 days ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 8000 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 8000 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
Anonymous	2026-06-02 02:02:52 (2 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/postscreen-rbl	Email Spam
🇩🇪 femboy.cat	2026-06-01 14:27:09 (3 days ago)	Port scan to tcp/51005 from 94.231.206.39	Brute-Force
🇺🇸 donarev419	2026-06-01 04:47:13 (3 days ago)	Connection to port 5357 with data transfer. Data preview: GET / HTTP/1.1 Host: 67.215.244.172:5357 ... show more Connection to port 5357 with data transfer. Data preview: GET / HTTP/1.1 Host: 67.215.244.172:5357 Connection: close User-Agent: Mozilla/5.0 (X11; Ubuntu; show less	Port Scan Hacking
🇯🇵 mkaraki	2026-06-01 03:42:15 (3 days ago)	1780285334 # Service_probe # SIGNATURE_SEND # source_ip:94.231.206.39 # dst_port:58603 ...	Port Scan
🇳🇱 soverin	2026-05-31 12:01:56 (4 days ago)	Network scan on port 3306	Email Spam

Showing 1 to 15 of 589 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 66.132.195.47

🇳🇱 45.148.10.152

🇳🇱 45.148.10.62

🇮🇩 2406:da19:776:6e02:4fdc:c602:6f78:4bd6

🇩🇪 194.88.98.99

🇩🇪 167.94.146.77

🇨🇳 150.255.254.48

🇵🇰 111.68.98.152

🇨🇳 60.166.82.166

🇺🇸 34.67.144.12

🇺🇸 205.210.31.81

🇨🇳 203.189.221.17

🇲🇾 203.56.25.193

🇸🇬 152.42.160.174

🇫🇮 147.185.133.0

🇨🇳 122.97.209.137

🇮🇳 106.192.196.185

🇮🇩 103.151.227.222

🇷🇴 2.57.121.112

🇮🇳 223.181.125.16