JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 131.196.22.217

131.196.22.217 was found in our database!

This IP was reported 280 times. Confidence of Abuse is 74%: ?

74%

ISP	CYBER TELECOM LTDA
Usage Type	Fixed Line ISP
ASN	AS265903
Hostname(s)	217-22-196-131.cybertelecom.net.br
Domain Name	cybertelecom.net.br
Country	🇧🇷 Brazil
City	Sanclerlandia, Goias

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 131.196.22.217

Whois 131.196.22.217

IP Abuse Reports for 131.196.22.217:

This IP address has been reported a total of 280 times from 65 distinct sources. 131.196.22.217 was first reported on March 2nd 2026, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-05-15 11:42:24 (3 weeks ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇬🇧 Andrew	2026-05-15 02:24:54 (3 weeks ago)	Blocked by UFW (TCP on port 23). Source port: 3864 TTL: 50 Packet length: 44 TOS: 0x00 This report ... show more Blocked by UFW (TCP on port 23). Source port: 3864 TTL: 50 Packet length: 44 TOS: 0x00 This report (for 131.196.22.217) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇫🇷 security.rdmc.fr	2026-05-14 17:49:55 (3 weeks ago)	Port Scan Attack proto:TCP src:3864 dst:23	Port Scan
🇦🇹 urnilxfgbez	2026-05-13 22:45:00 (3 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇬🇧 PeravixGroup	2026-05-13 21:45:32 (3 weeks ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇺🇸 MPL	2026-05-13 19:35:21 (3 weeks ago)	tcp/23	Port Scan
🇫🇷 security.rdmc.fr	2026-05-13 07:07:33 (3 weeks ago)	Port Scan Attack proto:TCP src:3864 dst:23	Port Scan
🇫🇷 sthoyer.de	2026-05-13 05:36:20 (3 weeks ago)	May 13 07:36:19 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more May 13 07:36:19 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=131.196.22.217 DST=173.212.223.67 LEN=44 TOS=0x00 PREC=0x00 TTL=51 ID=35563 PROTO=TCP SPT=3864 DPT=23 WINDOW=56049 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇦🇹 urnilxfgbez	2026-05-12 22:45:00 (3 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇬🇧 PeravixGroup	2026-05-12 19:11:35 (3 weeks ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇺🇸 MPL	2026-05-12 07:36:16 (3 weeks ago)	tcp/23	Port Scan
🇨🇳 ThreatBook.io	2026-05-11 22:43:08 (3 weeks ago)	ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/131.196.22.217	SSH
🇬🇧 PeravixGroup	2026-05-11 14:34:23 (3 weeks ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇫🇷 security.rdmc.fr	2026-05-11 10:31:06 (3 weeks ago)	Port Scan Attack proto:TCP src:3864 dst:23	Port Scan
🇺🇸 RAP	2026-05-11 00:18:40 (3 weeks ago)	2026-05-11 00:18:40 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan

Showing 1 to 15 of 280 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 219.159.25.89

🇻🇳 160.30.20.178

🇨🇳 139.226.100.249

🇨🇳 117.159.34.146

🇺🇸 72.44.39.53

🇺🇸 11.1.1.80

🇷🇴 92.118.39.236

🇩🇪 84.200.87.106

🇸🇬 47.84.188.152

🇳🇱 45.148.10.147

🇬🇧 35.203.211.168

🇩🇪 193.124.20.233

🇱🇹 45.227.254.170

🇬🇧 213.166.84.50

🇺🇸 205.210.31.96

🇮🇩 115.124.73.190

🇳🇱 89.248.168.122

🇵🇱 87.251.64.157

🇺🇸 66.132.172.215

🇩🇪 46.101.170.139